All posts in category Privacy and Security

Protecting Your Organization and Yourself from Coronavirus-Related Scams and Malware

By Justin Armstrong
Chair, EHRA Privacy & Security Workgroup

For updated COVID-19 resources for health IT developers and other stakeholders, click here.

Untitled design(5)In the midst of a healthcare crisis like COVID-19, the furthest things from the minds of many may be cybersecurity. However, now is the time for a heightened alert level. Attackers frequently take advantage of current news and distracted organizations, and the COVID-19 crisis is no different. 

Forbes reports that “there are now more than 40,000 ‘high-risk’ COVID-19 threats on the web.” Hackers have already attacked or attempted attacks on the U.S. Department of Health & Human Services, the World Health Organization, a vaccine test center, hospitals, a public health department, and other healthcare organizations in the U.S. and around the world. The increase in teleworking opens up new avenues of risk

(more…)

Leave a comment
by EHRA on April 30, 2020  •  Permalink
Posted in COVID-19, Privacy and Security

Posted by EHRA on April 30, 2020

https://ehrablog.org/2020/04/30/protecting-your-organization-and-yourself-from-coronavirus-related-scams-and-malware/

Recruiting Healthcare Cybersecurity Staff Takes Creativity

By Justin Armstrong
Chair, EHRA Privacy & Security Workgroup

Cybersecurity help wanted(2)It’s not news that, from the front line security analyst to the CISO level, there’s a shortage of skilled healthcare cybersecurity staff.  

Thankfully, interest in cybersecurity has never been greater! There is a career in cybersecurity to fit every personality, temperament, and level of technical acumen. Some positions require intense focus and deep technical knowledge, while others require interpersonal skills.

How can you find talent in such a tight market? There are several good avenues.

(more…)

Leave a comment
by EHRA on February 13, 2020  •  Permalink
Posted in Privacy and Security

Posted by EHRA on February 13, 2020

https://ehrablog.org/2020/02/13/recruiting-healthcare-cybersecurity-staff-takes-creativity/

Ransomware Trends, the $64,000 Question, and Preparedness

ransomware

By the EHRA Privacy & Security Workgroup

One of the latest ransomware variants making the rounds is Ryuk. It’s deployed using malware believed to be managed by Russian criminal groups with code names “Wizard Spider” and “Grim Spider” (learn more here).

Ransomware Trends

The Crowdstrike 2019 Global Threat Report highlights disturbing new trends that make cyberattacks increasingly difficult to detect and block without more advanced tools. These include:

(more…)

Leave a comment
by EHRA on October 29, 2019  •  Permalink
Posted in Privacy and Security

Posted by EHRA on October 29, 2019

https://ehrablog.org/2019/10/29/ransomware-trends-the-64000-question-and-preparedness/

Preventing Malware Infections Starts With Good Cyber Hygiene

By the EHRA Privacy & Security Workgroup

Danger enter keyJust as healthcare clinical staff recognize the value of good physical hygiene to prevent infection, good cyber hygiene can prevent malware infections. 

The number one preventative step? Staff vigilance. Everyone must be careful with clicks — whether it be an email, website link, or file attachment. Even as we’re inundated with information in today’s fast-paced digital world, taking the time to think before you click is just as important in preventing digital infections as washing hands between patients is in preventing bacterial infection.

(more…)

2 Comments
by EHRA on October 22, 2019  •  Permalink
Posted in Privacy and Security

Posted by EHRA on October 22, 2019

https://ehrablog.org/2019/10/22/preventing-malware-infections-starts-with-good-cyber-hygiene/

Strategic Healthcare Leaders Recognize Cybersecurity As A Patient Safety Risk

By the EHRA Privacy & Security Workgroup

Cybersecurity leadership quote(1)For many C level executives in a healthcare organization, cybersecurity equates to risk of a cyberattack that results in a Health Insurance Portability and Accountability Act (HIPAA) breach and fine. 

The bigger risk posed by a cyberattack, however, is to patient safety. If you get anything from this blog post, it should be this: Cybersecurity incidents affect more than HIPAA compliance, and should be treated as a patient safety risk. 

By categorizing cyberattacks as a patient safety risk, it escalates the importance of cybersecurity as more than mitigating a potential HIPAA fine.

(more…)

2 Comments
by EHRA on October 15, 2019  •  Permalink
Posted in Patient Safety and Health IT, Privacy and Security

Posted by EHRA on October 15, 2019

https://ehrablog.org/2019/10/15/strategic-healthcare-leaders-recognize-cybersecurity-as-a-patient-safety-risk/

Ransomware: Lessons from the Front Lines

By EHRA Privacy & Security Workgroup

The ER was bustling with a full cast of colorful characters, as it always is on Halloween, when creepy messages started appearing on every single device: 

Ransomware message3

(more…)

2 Comments
by EHRA on October 8, 2019  •  Permalink
Posted in Case Studies and Personal Stories, Privacy and Security

Posted by EHRA on October 8, 2019

https://ehrablog.org/2019/10/08/ransomware-lessons-from-the-front-lines/

« Older Posts

  • Categories

  • Follow EHRA on Twitter

  • Enter your email address to follow this blog and receive notifications of new posts by email.

    Join 162 other followers

  • Contact Us

    Kristi Feliksik
    kfeliksik @ ehra.org

    Elinore Boeke
    Communications and Media
    elinore @ kecommunications.net