CISO, Healthcare and Risk - Cyber Security Informer

Healthcare Now Third-Most Targeted Industry for Ransomware

SecureWorld News

NOVEMBER 14, 2024

Ransomware attacks on healthcare organizations have sharply increased in 2024, as shown by recent research from Safety Detectives. Compared to 2023, healthcare providers are facing a higher frequency of ransomware incidents, impacting their ability to deliver essential services and protect sensitive patient data.

Healthcare

Healthcare Ransomware Identity Theft Data breaches

Healthcare Cybersecurity Market Soars: Key Trends and Insights

SecureWorld News

MAY 2, 2025

Healthcare cybersecurity is undergoing explosive growth, reflecting both escalating threats and urgent investments to protect patient data and systems. According to a new report, the global healthcare cybersecurity market was valued at US $21.25 billion in 2024 and is projected to reach $82.90 billion by 2033, at a robust 18.55% CAGR.

Healthcare

Healthcare Marketing Cybersecurity CISO

LW ROUNDTABLE — How 2024’s cyber threats will transform the security landscape in 2025

The Last Watchdog

DECEMBER 16, 2024

Businesses must adopt tools and automation capable of invoking immediate action, even at the risk of false positives. Raising security baselines across industries is essential, with risk mitigationnot acceptancebecoming the standard. Security teams will need to address the unique risks posed using LLMs in mission critical environments.

Cyber threats

Cyber threats CISO IoT Phishing

LW ROUNDTABLE: Compliance pressures intensify as new cybersecurity standards take hold

The Last Watchdog

DECEMBER 18, 2024

This shift is expected to place significant pressure on organizations that haven’t yet developed trusted data to manage risk effectively. And industries like healthcare face persistent targeting due to their outdated systems and high-value data. Failure risks fines or supplier bans. EU AI Act) demand proactive adaptation.

Cybersecurity

Cybersecurity CISO Risk Government

The Dangers of AI Acceleration: Why a Deregulatory Stance Threatens Humanity

Jane Frankland

MAY 30, 2025

Everyone’s talking about AI aren’t they, and when I gave a keynote on Artificial Intelligence and cybersecurity recently, I relayed how the rise of AI has brought us to a pivotal moment in historya moment brimming with both extraordinary opportunity and unparalleled risk. AI amplifies these risks exponentially.

Risk

Risk Artificial Intelligence Government Technology

Passwordless Authentication without Secrets!

Thales Cloud Protection & Licensing

OCTOBER 11, 2024

However, industries reliant on shared devices—such as healthcare, retail, and manufacturing—face unique challenges. For example, in healthcare, constant authentication interruptions can impact both patient care and productivity. These fast-paced environments need a more flexible approach to balance security, speed, and user privacy.

Authentication

Authentication Retail Healthcare Manufacturing

Secure Communications: Relevant or a Nice to Have?

Jane Frankland

FEBRUARY 7, 2025

But as a CISO or cyber risk owner, it’s not just about locking down sensitive informationits about doing it without slowing down your people. It encompasses everything from ensuring the confidentiality and integrity of information to reducing risks, maintaining compliance, and building trust with customers.

Cyber Risk

Cyber Risk CISO Risk Encryption

Ghost Ransomware a Persistent Global Threat to Critical Infrastructure

SecureWorld News

FEBRUARY 20, 2025

Tim Mackey, Head of Software Supply Chain Risk Strategy at Black Duck, explains: "Attacks on legacy cyber-physical, IoT, and IIoT devicesparticularly in an OT environmentare to be expected and must be planned for as part of the operational requirements for the device.

Ransomware

Ransomware IoT Encryption Social Engineering

Hello, I am CISO Helen. Nice To Meet You :-)

Duo's Security Blog

FEBRUARY 23, 2021

Hello, I am Helen Patton, and I am the newest Advisory CISO at Duo. While I was a CISO at Ohio State we partnered with Duo to implement MFA across our organization. Talk to a Higher Education CISO (note to security product engineers – if you ever want a testbed for your ideas, partner with a university). We don’t care.

CISO

CISO Education Banking Retail

HHS Mandates Patient Notification After Change Healthcare Data Breach

SecureWorld News

JUNE 5, 2024

Department of Health and Human Services (HHS) has stepped in to ensure patients are made aware if their sensitive data was compromised during February's massive cyberattack on health IT firm Change Healthcare. The unprecedented directive stems from Change Healthcare's business acquisition by UnitedHealth in 2022.

Healthcare

Healthcare Data breaches Identity Theft Insurance

UnitedHealth Reveals Escalated Costs from Change Healthcare Attack

SecureWorld News

JULY 18, 2024

UnitedHealth Group, the Minnesota-based health insurance giant, recently announced its second quarter results, revealing a stark financial impact from the cyberattack on Change Healthcare. The breach's scale and complexity have made it one of the most significant cyber incidents in the healthcare sector in recent years. billion and $2.45

Healthcare

Healthcare Risk Data breaches Insurance

Is fighting cybercrime a losing battle for today’s CISO?

CyberSecurity Insiders

JANUARY 12, 2022

In this blog, we’ll look at the root causes of concern for today's CISO and share some practical strategies to deter cybercriminals. The CISO role can be an unenviable one. Is the cyber deck stacked against today's CISO? If you own the risks, who owns the elimination? What about risk management?

CISO

CISO Cybercrime Risk Healthcare

Israel–Iran Conflict Escalates in Cyberspace: Banks and Crypto Hit, Internet Cut

SecureWorld News

JUNE 19, 2025

cybersecurity groups—including the IT‑ISAC and Food & Ag‑ISAC— issued advisories warning that Iranian-affiliated threat actors may retaliate globally, targeting American companies across sectors like energy, finance, healthcare, and logistics. It's a call to action for every CISO watching the horizon.

Internet

Internet Internet Banking Media

FDA Playbook Engineers Safety Into Medical Device Manufacturing

SecureWorld News

JUNE 25, 2025

As connected healthcare devices become more pervasive and critical to patient outcomes, the cyber risks tied to their design, production, and deployment grow exponentially. According to the report, "Cybersecurity risk management should begin during product concept and continue throughout the total product lifecycle (TPLC)."

Verizon's 2025 DBIR: Threats Are Faster, Smarter, and More Personal

SecureWorld News

APRIL 23, 2025

Healthcare: Insider threats and error-related breaches dominate. Manufacturing: IP theft and ransomware are top risks; OT/ICS systems still lag in basic controls. The 2025 DBIR is a call to arms for CISOs and security leaders to rethink how they detect, respond to, and recover from breaches. Your response must be equally fast."

CISO

CISO Ransomware Backups Risk

Innovation in the Fast Lane: Lessons from Motorsport and Cybersecurity

Trend Micro

JUNE 10, 2025

Move faster than your adversaries with powerful purpose-built XDR, cyber risk exposure management, and zero trust capabilities Learn more Extend Your Team Extend Your Team.

Cybersecurity

Cybersecurity Cyber Risk Risk Artificial Intelligence

3 Reasons Why CISOs are Prioritizing Cyber Risk Quantification

Security Boulevard

AUGUST 19, 2022

Recently, I was part of four conversations with security leaders across several industries – manufacturing, financial services, natural resources and healthcare – about some of the challenges they face with cyber risk management.

Cyber Risk

Cyber Risk CISO Risk Financial Services

Cost-Effective Steps the Healthcare Industry Can Take To Mitigate Damaging Ransomware Attacks

CyberSecurity Insiders

OCTOBER 25, 2022

Cyberattacks are rapidly overwhelming the healthcare sector. Both large and small healthcare providers continue to be a tantalizing target for repeated ransomware attacks due to limited security budgets that lead to an overall weakened cyber defense system. By Tom Neclerio , Vice President of Professional Services at SilverSky.

Healthcare

Healthcare Ransomware Social Engineering Backups

How Jefferson Health enhanced cybersecurity via its cloud transformation

CSO Magazine

AUGUST 16, 2021

The cybersecurity mantra at Jefferson Health is “if we can’t do it well, we’re not going to do it” says Mark Odom, CISO of the Philadelphia-based healthcare organization. Learn the 7 keys to better risk assessment. | Get the latest from CSO by signing up for our newsletters. ]. The pandemic accelerated things of course.”

Cybersecurity

Cybersecurity CSO Healthcare CISO

CISA Cuts: What They Mean for Cyber Defense for All

SecureWorld News

APRIL 10, 2025

Regardless of your political views, we must all agree that equipping our government with best cybersecurity talent, technology, and resources is critical to protecting our national interests," said Bruce Jenkins, CISO at Black Duck. The planned cuts to CISA underscore a critical juncture for U.S.

Energy and Utilities

Energy and Utilities Backups Healthcare Cybersecurity

Security Roundup January 2025

BH Consulting

JANUARY 30, 2025

Cyber risk remains top of mind for business leaders A regular January fixture, the World Economic Forums Global Risk Report 2025 features two technology-related threats among the top five risks for the year ahead and beyond. The report ranks risks by severity over two-year and 10-year timeframes.

Cyber Risk

Cyber Risk Computers and Electronics Risk CISO

The Unseen Threats: Anticipating Cybersecurity Risks in 2024

Security Boulevard

JANUARY 18, 2024

Cybersecurity risks increase every year and bludgeon victims who fail to prepare properly. For those interested in a better understanding of the oncoming risks, this is the information you are looking for. It can feel like crossing a major highway while blindfolded. Many never see the catastrophe about to happen, until it occurs.

Risk

Risk Cybersecurity CISO Technology

Why Do Healthcare Departments Need Managed IT Services?

Security Boulevard

MARCH 4, 2021

With the use of technology in the healthcare industry, cyber crimes are increasing, threatening clients' confidential information. Therefore, more and more healthcare organizations realize the imperativeness of managed IT support and services in their facilities. The post Why Do Healthcare Departments Need Managed IT Services?

Healthcare

Healthcare Technology Big data CISO

New Guidelines: Cybersecurity Resilience in the Healthcare Industry

Security Boulevard

FEBRUARY 21, 2025

Lou Morentin, VP of Compliance & Privacy There are a number of significant changes coming to Healthcare Cybersecurity requirements. The post New Guidelines: Cybersecurity Resilience in the Healthcare Industry appeared first on Security Boulevard.

Healthcare

Healthcare Cybersecurity CISO Risk

Breach of healthcare debt collection firm exposes 1.9M patients – cyber experts weigh in

CyberSecurity Insiders

JULY 19, 2022

The Professional Finance Company, PFC, suffered a ransomware attack on February 26 and on July 1 confirmed that over 650 healthcare providers were affected by the breach. “As ransomware attacks continue to devastate the healthcare industry, leaders must increase their cybersecurity visibility of known and unknown assets.

Healthcare

Healthcare Encryption Ransomware Penetration Testing

4 ways to keep the cybersecurity conversation going after the crisis has passed

CSO Magazine

MARCH 8, 2021

CISO Bill Brown knows how high-profile cybersecurity breaches like SolarWinds can raise alarm bells among executives and board members when they become headline news. But nothing more than that.” [ Learn the 7 keys to better risk assessment. | Should we be concerned? Get the latest from CSO by signing up for our newsletters. ].

CSO

CSO Cybersecurity CISO Healthcare

$12M Ransomware Attack Hit Because Nobody Listened to the Security Team

SecureWorld News

APRIL 3, 2025

A mid-sized healthcare provider had identified serious vulnerabilities in their patient data systems. A healthcare CISO I mentored was frustrated by apparent lack of support for a medical device security program. This response acknowledges their point while introducing compelling evidence of the evolving risk.

Ransomware

Ransomware CISO Authentication Healthcare

RSAC Fireside Chat: VISO TRUST replaces questionaires with AI analysis to advance ‘TPRM’

The Last Watchdog

JUNE 12, 2024

We had a wide-ranging discussion about the limitations of traditional third-party risk management ( TPRM ), which uses extensive questionnaires—and the honor system – to judge the security posture of third-party suppliers. With “companies approaching 100 percent third-party integration,” CISOs are making TPRM a top priority, he says. “It’s

CISO

CISO Cyber Risk Risk Healthcare

Webinar Recap: Critical Concerns for Healthcare Providers in 2024

Security Boulevard

JUNE 3, 2024

Baptist Health CISO James Case shared insights on transforming cybersecurity through a risk-focused lens at a recent webinar we hosted. The discussion was moderated by Axio President, David White and Read More The post Webinar Recap: Critical Concerns for Healthcare Providers in 2024 appeared first on Axio.

Healthcare

Healthcare CISO Risk Cybersecurity

BlackCat Eats into Its Nine Lives, Threatens More Attacks on Hospitals

SecureWorld News

FEBRUARY 29, 2024

Change Healthcare, a major provider of IT services to hospitals, continues to battle the BlackCat ransomware syndicate. BlackCat has made the healthcare industry a prime target over the past year, victimizing providers, insurers, and now healthcare IT suppliers like Change Healthcare, a unit of Optum. authorities.

Healthcare

Healthcare Ransomware Cyber threats Encryption

Cybersecurity Snapshot: NIST Aligns Its Privacy and Cyber Frameworks, While Researchers Warn About Hallucination Risks from GenAI Code Generators

Security Boulevard

APRIL 18, 2025

Plus, learn why code-writing GenAI tools can put developers at risk of package-confusion attacks. Both frameworks have a Core section, which outlines detailed activities and outcomes aimed at helping organizations discuss risk management. Check out NISTs effort to further mesh its privacy and cyber frameworks.

Risk

Risk Cybersecurity Data privacy Software

A Cybersecurity Role Has Topped List of Best Jobs

CyberSecurity Insiders

JANUARY 14, 2022

The list ranks the 100 best jobs across 17 sectors including business, healthcare and technology, taking into account factors such as growth potential, salary and work-life balance. Information security analyst beat out some strong contenders on a list where nearly four in 10 jobs were in healthcare and healthcare support roles.

Cybersecurity

Cybersecurity Healthcare Information Security CISO

CISO Stories Podcast: Effective Health Care Security is More Than HIPAA

Security Boulevard

MAY 13, 2021

Healthcare security today is extremely complex due to the integrated clinical systems and connected community networks. The post CISO Stories Podcast: Effective Health Care Security is More Than HIPAA appeared first on Security Boulevard. As well, no longer are the medical records stored with a single provider.

CISO

CISO Healthcare Risk Government

“Left of Boom” Cybersecurity: Proactive Cybersecurity in a Time of Increasing Threats and Attacks

Cisco Security

OCTOBER 18, 2021

The phrase “Left of Boom” was catchy and caught on in other domains, like healthcare and critical infrastructure, or any domain in which preventive and proactive measures should be taken to prevent or limit harmful consequences. Achieving “Left of Boom” cybersecurity is a journey on which every CISO should be embarked.

Cybersecurity

Cybersecurity CISO Insurance Risk

Cybersecurity Automation in Healthcare Program Launched by HHS Agency

Security Boulevard

JUNE 3, 2024

The UPGRADE program seeks to enhance and automate cybersecurity for healthcare facilities, focused on protecting operations and ensuring continuity of patient care. The post Cybersecurity Automation in Healthcare Program Launched by HHS Agency appeared first on Security Boulevard.

Healthcare

Healthcare Cybersecurity CISO Government

New York Takes Bold Stance Against Hospital Cyber Attacks

SecureWorld News

DECEMBER 6, 2023

In a groundbreaking move, New York Governor Kathy Hochul has unveiled a comprehensive cybersecurity strategy that aims to safeguard the state's critical infrastructure, specifically its healthcare sector. I view it as a welcomed step in helping security teams secure the funding and support they need to keep our heads above water.

Cyber Attacks

Cyber Attacks Healthcare Computers and Electronics Financial Services

NYDOH Cybersecurity Regulations: What Healthcare Providers Need to Know in 2025

Centraleyes

DECEMBER 19, 2024

They address data privacy and the escalating threat of cyberattacks targeting healthcare institutions. The new healthcare cyber regulations will go into effect in October 2025. These new requirements align with a growing trend in healthcare: recognizing cybersecurity as foundational to both patient safety and institutional resilience.

Healthcare

Healthcare Penetration Testing Cybersecurity CISO

Five Interesting Israeli CyberSecurity Companies

Joseph Steinberg

APRIL 7, 2021

This list is not in any particular order, nor is it even remotely comprehensive (I am personally aware of well over 100 privately-held Israeli cybersecurity companies) – it is, however, illustrative of some of the areas of risk and of innovation that are presently on my mind.

Cybersecurity

Cybersecurity Small Business IoT Computers and Electronics

Scattered Spider Strikes Again: U.K. Attacks Spark U.S. Retailer Alarm

SecureWorld News

MAY 16, 2025

The group seems to be comprised of British and American teenagers based upon those arrested so far, but they operate with uncanny stealth and accuracy, defeating mafia-level cybersecurity defenses in many cases," said Richard Staynings , Board Member and International Healthcare Cybersecurity Leader; Teaching Professor, University of Denver.

Retail

Retail Social Engineering Engineering Telecommunications

Listen: Children’s Hospitals and Clinics of Minnesota’s Paul Hypki on reducing risk

SC Magazine

APRIL 9, 2021

Since Paul Hypki moved from the finance world (or, what he calls, “wealth and hellness”) to healthcare, he’s had to convince industry leaders of why they need to invest in information security — something that was a given in his previous environment. Listen to episode 7 of CISO Stories, Is CyberSecurity ROI Necessary?

Risk

Risk CISO Healthcare Education

Cybersecurity Dashboards: Enhancing Security Monitoring and Decision-Making

Centraleyes

APRIL 3, 2025

But as weve learned from major incidents in industries ranging from healthcare to finance, compliance alone isnt enough. True resilience requires continuous monitoring , adaptation, and an integrated approach that intertwines compliance with risk management.

Cybersecurity

Cybersecurity Risk CISO Cyber Risk

Cybersecurity Insights with Contrast CISO David Lindner | 01/17/25

Security Boulevard

JANUARY 17, 2025

Like forcing already overwhelmed healthcare providers to jump through more hoops with multifactor authentication (MFA) and encryption is going to stop determined attackers. The post Cybersecurity Insights with Contrast CISO David Lindner | 01/17/25 appeared first on Security Boulevard. Insight No. Yeah, right.

CISO

CISO Cybersecurity Healthcare Encryption

GUEST ESSAY: Leveraging best practices and an open standard to protect corporate data

The Last Watchdog

MARCH 21, 2022

Evolving privacy regulations like the General Data Protection Regulation (GDPR) and California Consumer Privacy Act (CCPA) mean ongoing headaches for cybersecurity, compliance and risk management teams. Conduct risk analysis. Some regulations require a proactive approach to identifying and mitigating data risk.

Encryption

Encryption Data privacy Cloud Migration Risk

Safeguarding Patient Data with HITRUST Compliance: A Comprehensive Guide for Healthcare Technology Companies

Security Boulevard

MARCH 21, 2024

Healthcare organizations increasingly rely on technology to store, manage, and transmit sensitive patient information. The post Safeguarding Patient Data with HITRUST Compliance: A Comprehensive Guide for Healthcare Technology Companies appeared first on Hyperproof.

Healthcare

Healthcare Technology Cyber threats CISO

Healthcare Now Third-Most Targeted Industry for Ransomware

Healthcare Cybersecurity Market Soars: Key Trends and Insights

Trending Sources

LW ROUNDTABLE — How 2024’s cyber threats will transform the security landscape in 2025

LW ROUNDTABLE: Compliance pressures intensify as new cybersecurity standards take hold

The Dangers of AI Acceleration: Why a Deregulatory Stance Threatens Humanity

Passwordless Authentication without Secrets!

Secure Communications: Relevant or a Nice to Have?

Ghost Ransomware a Persistent Global Threat to Critical Infrastructure

Hello, I am CISO Helen. Nice To Meet You :-)

HHS Mandates Patient Notification After Change Healthcare Data Breach

UnitedHealth Reveals Escalated Costs from Change Healthcare Attack

Is fighting cybercrime a losing battle for today’s CISO?

Israel–Iran Conflict Escalates in Cyberspace: Banks and Crypto Hit, Internet Cut

FDA Playbook Engineers Safety Into Medical Device Manufacturing

Verizon's 2025 DBIR: Threats Are Faster, Smarter, and More Personal

Innovation in the Fast Lane: Lessons from Motorsport and Cybersecurity

3 Reasons Why CISOs are Prioritizing Cyber Risk Quantification

Cost-Effective Steps the Healthcare Industry Can Take To Mitigate Damaging Ransomware Attacks

How Jefferson Health enhanced cybersecurity via its cloud transformation

CISA Cuts: What They Mean for Cyber Defense for All

Security Roundup January 2025

The Unseen Threats: Anticipating Cybersecurity Risks in 2024

Why Do Healthcare Departments Need Managed IT Services?

New Guidelines: Cybersecurity Resilience in the Healthcare Industry

Breach of healthcare debt collection firm exposes 1.9M patients – cyber experts weigh in

4 ways to keep the cybersecurity conversation going after the crisis has passed

$12M Ransomware Attack Hit Because Nobody Listened to the Security Team

RSAC Fireside Chat: VISO TRUST replaces questionaires with AI analysis to advance ‘TPRM’

Webinar Recap: Critical Concerns for Healthcare Providers in 2024

BlackCat Eats into Its Nine Lives, Threatens More Attacks on Hospitals

Cybersecurity Snapshot: NIST Aligns Its Privacy and Cyber Frameworks, While Researchers Warn About Hallucination Risks from GenAI Code Generators

A Cybersecurity Role Has Topped List of Best Jobs

CISO Stories Podcast: Effective Health Care Security is More Than HIPAA

“Left of Boom” Cybersecurity: Proactive Cybersecurity in a Time of Increasing Threats and Attacks

Cybersecurity Automation in Healthcare Program Launched by HHS Agency

New York Takes Bold Stance Against Hospital Cyber Attacks

NYDOH Cybersecurity Regulations: What Healthcare Providers Need to Know in 2025

Five Interesting Israeli CyberSecurity Companies

Scattered Spider Strikes Again: U.K. Attacks Spark U.S. Retailer Alarm

Listen: Children’s Hospitals and Clinics of Minnesota’s Paul Hypki on reducing risk

Cybersecurity Dashboards: Enhancing Security Monitoring and Decision-Making

Cybersecurity Insights with Contrast CISO David Lindner | 01/17/25

GUEST ESSAY: Leveraging best practices and an open standard to protect corporate data

Safeguarding Patient Data with HITRUST Compliance: A Comprehensive Guide for Healthcare Technology Companies

Stay Connected