Cybersecurity Awareness Month: Resources and Reports

Every year in October it is Cybersecurity Awareness Month. Throughout the month we highlight the trends and challenges we find in the the healthcare industry. We look to our experts for best practices and solutions to consider as we all navigate the very complex cybersecurity outlook. Thank you to all our experts who took the time to be a part of this year’s campaign. We conclude our month with reports, surveys, and guides we have found throughout the month.

See all of our coverage of October is Cybersecurity Awareness Month.

Health Industry Cybersecurity Information Sharing Best Practices (HIC-ISBP)

Information-sharing programs produce significant benefits at minimal risk for the organizations that participate. This document provides Healthcare and Public Health Sector (HPH) organizations with a set of guidelines and best practices for efficient and effective information sharing strategies.

Healthcare Sector Report – 2023 Threat Landscape

The healthcare industry has been hit hard this year, with breaches constantly making headlines across the United States. The value of patient data isn’t the only reason for spikes though, recent advancements in AI have enabled faster deployments for threat actors, allowing them to expedite their attacks.

In fact, according to a recent report from external cybersecurity platform ZeroFox, the team has seen that ransomware and digital extortion attacks targeting the healthcare sector are likely on an upward trajectory — with attacks in Q2 2023 at their highest since 2021.

CISO PLAYBOOK: Achieve SEC Compliance Before It’s Too Late

This guide provides an in-depth look at how to best achieve compliance for your organization, offering practical advice and 5-step playbook that you can put into action today.

GUIDE: Ace Cyber Risk Reporting to the Board

Explore strategies and best practices to create robust and effective board-level reporting.

Cybersecurity: The 2023 Board Perspective

Proofpoint published its second annual Cybersecurity: The 2023 Board Perspective report and found that almost 75% of the board members believe that their organizations face a risk of a major cyberattack in the next 12 months, up from 65% the previous year and 53% of those board members believe their organization is not prepared, a slight increase over the prior year. Meanwhile, 61% of CISOs feel underprepared, up from 50% in 2020.

The Cost and Impact on Patient Safety and Care

According to a report conducted by the Ponemon Institute for Proofpoint, of the 653 health care IT and security practitioners in the study, 88% had experienced an average of 40 attacks in the past 12 months with the average total cost of successful cyber attacks reaching almost $5 million.

Cybersecurity Audits for Healthcare

As tempting as it may be to check off compliance requirements and leave them until the following year, these items require continuous attention. In this blog, Art Gross explores the significance of cybersecurity audits for healthcare organizations and how they can enhance the overall security posture while staying HIPAA compliant.

CISA, HHS Release Collaborative Cybersecurity Healthcare Toolkit

The Cybersecurity and Infrastructure Security Agency (CISA) and the Department of Health and Human Services (HHS) co-hosted a roundtable discussion on the cybersecurity challenges that the U.S. healthcare and public health (HPH) sector system faces, and how Government and industry can work together to close the gaps in resources and cyber capabilities. Ahead of the roundtable, CISA and HHS released a cybersecurity tool kit that includes resources tailored for the healthcare and public health sector.