CGI image of a padlock on a digital platform
Cybersecurity In Focus

With stakes higher than ever, healthcare cybersecurity must rise to meet the moment

The days when a healthcare organization's biggest security worry was a data breach or a HIPAA violation are over. The cyber landscape has changed utterly with the advent of near-daily attacks on hospitals and health systems. Ransomware has become a near-daily occurrence and now routinely disrupts critical IT systems for days, weeks, even months – posing serious threats to patient safety and essential financial functions.

Thankfully, healthcare organizations are now taking the threat seriously in a way they may not have several years ago. As IT and security leaders guard against current threats and try to forecast future ones, they face a challenging task.

Photo: zf L/Getty Images

George Pappas of Intraprise Health on cybersecurity
News

How to protect telemedicine from cyberattacks

A cybersecurity CEO offers advice on tactics healthcare CISOs and CIOs should use to protect...
By Bill Siwicki |
November 18, 2024
Rebecca Herold from the IEEE on AI and cybersecurity
News

IEEE deep dive: What you really need to know about AI and cybersecurity

How is artificial intelligence being used to identify anomalies in sensitive healthcare data to...
By Bill Siwicki |
October 17, 2024
IOT security concept image Photo by John M Lund Photography Inc/Getty Images
News

Thousands of medical devices and systems pose IoT security risk

Himaja Motheram, a security researcher, walks CISOs and other security leaders through the various...
By Nathan Eddy |
October 11, 2024
Patient sits in a patient gown in a medical exam room
News

The Light Collective amplifies its call for patient data rights

A week of discussion spearheaded by the patient advocate group aims to highlight the risks of harm...
By Andrea Fox |
September 16, 2024
David Heaney of Mass General Brigham on cybersecurity and AI
News

How AI is transforming cybersecurity, on defense and offense

Understanding the threat environment, knowing where controls are deployed and other core...
By Bill Siwicki |
September 05, 2024
Mass General Brigham and generative AI
News

Generative AI is this CISO's 'really eager intern'

David Heaney, chief information security officer at Mass General Brigham, explains how genAI can...
By Bill Siwicki |
September 06, 2024
Doctor looking at medical images on PACs
News

CISA issues new PACs security advisory

The Homeland Security agency points to 13 vulnerabilities with the networked medical imaging and...
By Andrea Fox |
July 24, 2024
Sunil Dadlani of Atlantic Health System on AI
News

Atlantic Health System CIDO offers lessons on AI in cybersecurity

At the upcoming HIMSS AI in Healthcare Forum, Chief Information and Digital Officer Sunil Dadlani...
By Bill Siwicki |
July 18, 2024
Cybersecurity professional checks incident monitoring logs
News

WEDI offers feedback on CISA's cyber incident reporting rules

While the healthcare group "strongly supports" CIRCIA's security goals, it's...
By Mike Miliard |
July 08, 2024
Exterior of small rural hospital
News

With Microsoft and Google, White House offers cybersecurity tools for rural hospitals

The AHA and National Rural Health Association are also onboard for the initiative, which will offer...
By Mike Miliard |
June 11, 2024
Steve Cagle at Clearwater_Doctor using tablet with holograms photo by PeopleImages/iStock/Getty Images Plus
Video

How threat hunting can improve cyber maturity

All organizations need to define where their cybersecurity risks lie, and consider gaps in threat...
By HIMSS TV |
May 07, 2024
Clinicians consult a tablet
News

Patch management advice for fixing IoT vulnerabilities

To improve healthcare cybersecurity, an organization can shore up Internet-enabled device...
By Andrea Fox |
April 24, 2024
Woman works IT help desk in a support center
News

HC3 warns of social engineering attacks targeting IT help desks

The agency says threat actors are targeting organizations' IT help desks with phone calls from...
By Andrea Fox |
April 08, 2024
Stethoscope on an iPad
News

HIMSSCast: The latest cybersecurity challenges pose serious problems for health systems

Poorly controlled cloud environments, growing access to systems, heightened regulatory scrutiny and...
By Bill Siwicki |
April 05, 2024
Darren Lacey of Johns Hopkins on cybersecurity
News

Johns Hopkins CISO: Don't overlook the critical importance of foundational infrastructure

Darren Lacey discusses the key foundational technologies underlying healthcare's IT...
By Bill Siwicki |
April 02, 2024
IT and cybersecurity leaders in server room
News

Proposed CISA rule would require reporting for cyber incidents and ransom payments

In healthcare, larger hospitals, all critical access hospitals, essential drug manufacturers and...
By Andrea Fox |
March 28, 2024
Digital abstract of a padlock
News

Change Healthcare roundup: UHG pays out $2B, while feds mull cyber compliance rules

Also: Availity clarifies reports that it has cut ties with the clearinghouse and says it "...
By Andrea Fox |
March 19, 2024
A doctor in a lab coat standing and texting in a hallway
News

CMS clarifies rules for HIPAA compliance when texting patient data

Texting of patient orders among members by healthcare teams is now permissible at hospitals and...
By Andrea Fox |
February 12, 2024
Physician uses fax machine
News

DirectTrust working on new faxing standard for secure interoperability

The nonprofit group's Interoperable Secure Cloud Fax Consensus Body aims to add cross-platform...
By Mike Miliard |
February 12, 2024
Map of Florida
News

Florida cybersecurity safe harbor bill advances

The Sunshine State's proposed law would shield governments and businesses against liability...
By Andrea Fox |
January 30, 2024
Three colleagues are seated and working on various devices.
News

HHS proffers cyber performance goals to health systems

Ahead of new enforceable standards, U.S. Health and Human Services has released voluntary...
By Andrea Fox |
January 24, 2024
computer code on a screen
News

How to implement healthcare cyber insurance

The HHS 405(d) program has new resources to help small to large healthcare organizations navigate...
By Andrea Fox |
December 21, 2023
FBI seal on an interior wall
News

FBI seizes Blackcat ransomware's server and site

The DOJ announced that the FBI also has decryptor keys for Blackcat ransomware victims and will...
By Andrea Fox |
December 21, 2023
The draft NIST differential privacy pyramid
News

NIST drafts privacy protection guidance for AI-driven research

The National Institute of Standards and Technology created guidance for evaluating differential...
By Andrea Fox |
December 13, 2023
Three cybersecurity professionals talk in a network control room.
News

AHA pushes back on HHS proposal to penalize hospitals for cyberattacks

"The AHA cannot support proposals for mandatory cybersecurity requirements being levied on...
By Andrea Fox |
December 08, 2023
Hands using a cellular device
News

Tips to manage safe pixel tracking

Some healthcare organizations use homegrown tracking technologies to avoid third-party disclosures...
By Neil Versel |
December 04, 2023
Abstract of a lock as part of a printed circuit
News

CISA launches Secure by Design Alerts

"When we see a vulnerability or intrusion campaign that could have been reasonably avoided if...
By Andrea Fox |
December 04, 2023
Healthcare patient at home desk with laptop
News

AHA files suit against HHS over online tracking rules

In a complaint filed in federal court in Texas, the hospital group says enforcement of the Office...
By Neil Versel |
November 06, 2023
Code on a computer monitor
News

CISA, HHS and HSCC release healthcare cybersecurity toolkit

The Cybersecurity and Infrastructure Security Agency and the Department of Health and Human...
By Andrea Fox |
October 26, 2023

Other special projects

Person in front of laptop with remote medical device on finger

Remote patient monitoring and virtual care – a paradigm shift

Group of healthcare workers sharing a high-five

Health systems are notching big wins with their IT investments