Tag Archives: Cybersecurity and Infrastructure Security Agency

How the Healthcare Industry Is Working to Become Immune to Ransomware

Posted on by

The first known ransomware attack occurred in 1989 and was targeted at the healthcare industry. The attention and attractiveness of healthcare organizations to ransomware hackers have not waned in the decades since. In fact, attacks are growing by 70-100 percent year over year. In 2023, there were over 460 ransomware attacks impacting U.S. health organizations, making it the most targeted industry.

This year, a major attack delayed prescription fillings and led to cash flow issues at facilities across the country. The American Healthcare Association said that 94% of hospitals have reported financial impact from the incident, with some losing upward of $1 billion per day in revenues. Continue reading

Department Spotlight: Health and Human Services

Posted on by

In its work to "enhance the health and well-being of all Americans," the Department of Health and Human Services (HHS) oversees more than 100 programs across 13 agencies. Ten of these agencies are focused on public health, with three having human services as their main mission.

Across all of these agencies, there is a shared focus on the secure and ethical use of technology to improve public health and wellbeing. In 2023, HHS had an IT budget of $8.5 billion. Despite this spending, HHS has struggled to meet federal requirements. It did not score well on a cybersecurity audit, partly due to a lack of coordination among the operating units. Continue reading

Agency Spotlight: Environmental Protection Agency

Posted on by

The Environmental Protection Agency's (EPA) mission is to protect human health and the environment. That is accomplished through a number of key efforts, including developing and enforcing regulations, providing grants, studying environmental issues, sponsoring partnerships, and educating the public about the environment through programs and publications.

While the mission of the EPA is decidedly focused on the health of the earth, the challenges it addresses are increasingly coming from cyberspace, with cyber threats becoming a key focus of organizations utilizing natural resources. Continue reading

Checking Up on Digital Health Solutions

Posted on by

The health industry has always leaned into emerging technologies to help it become more efficient and effective in delivering patient care. Like a doctor's stethoscope or an X-ray machine, today's digital solutions are part of a continuing evolution of medical tools that enhance and inform provider care. Of course, this use of technology must be thoughtful and careful not to replace doctors or their decisions with computer-generated suggestions.

The government's role of oversight into healthcare delivery is a careful balancing act of encouraging innovation while ensuring patient safety. From medical devices to artificial intelligence (AI), regulations are evolving to ensure healthcare gains efficiencies and insights from digital solutions while maintaining patient protections. In fact, the Food and Drug Administration recently created a new Digital Health Advisory Committee to help support the development of digital health technologies and their regulation. This committee will examine a wide variety of technologies and issues, including AI, cyber security, and equity in healthcare delivery. Continue reading

As Students Go Back to School Threat Actors Go Back to Work

Posted on by

School systems are at high risk for cyber attacks because threat actors know they are traditionally underfunded and understaffed, meaning many vulnerabilities may remain open.

Once in, hackers have access to incredibly valuable and personal information on children and their families, leading to ransom requests. In fact, the education sector is now the number one sector for ransomware attacks, with a 44% increase in the past year.

The eye-opening statistics don't stop there.

  • The education sector sees an average of 2,297 attacks weekly.
  • By the end of 2021, nearly one in three U.S. districts had experienced a breach.
  • The monetary losses to school districts following a cyber incident range from $50,000 to $1 million.
  • Six months into 2023, at least 120 schools faced a ransomware attack, compared to 188 in all of 2022.

Continue reading