Healthcare systems are increasingly targeted in ransomware attacks. Despite efforts to boost cybersecurity, patching vulnerabilities is insufficient due to the sophistication of ransomware and the complexity of IT in healthcare. Attackers are exploiting previously undiscovered ‘zero-day’ vulnerabilities, even accessing fully-patched systems. Among recommended strategies are implementing advanced threat protection (ATP) solutions, segmenting networks, recognising phishing attempts, incident response planning and backing up data. Rather than simple patch management, a proactive, broad approach encompassing enterprise-wide risk management is needed.
Why Healthcare Organisations Have To Act Decisively In The Shadow Of New HIPAA Updates
The recent amendments to the Health Insurance Portability and Accountability Act (HIPAA) represent a significant overhaul in healthcare data privacy, addressing the need to protect
