The US Department of Health and Human Services (HHS) has expanded its Healthcare Sector Cybersecurity Concept Paper with cybersecurity performance goals (CPG) for healthcare and public health sectors. This includes ten essential goals such as mitigating known vulnerabilities and providing basic cybersecurity training, and enhanced goals that focus on improving cybersecurity including asset management and inventory identification. The CPGs aggregate cyber best practices from NIST, 405d, and CISA.

The NHS needs to tighten its third-party supplier cybersecurity
The NHS should proactively fortify cybersecurity within its third-party software suppliers following recent damaging ransomware attacks, says Jonathan Lee from Trend Micro. He suggests implementing