Cyber Defense eMagazine July 2021 Edition

More documents

Recommendations

Info

Cybersecurity is not optional Let’s be clear: Hospital cybercrime is not going away anytime soon. With nearly 70% of medical devices expected to be network-connected by 2025, hospitals will be more vulnerable than ever, creating a need for awareness of what they own and who's responsible for it. While not the prime entry point for a cyberattack, connected devices are an opening for cybercriminals to exploit. Criminals have recognized the ability to “kidnap” devices, shut down critical hospital operations and demand a ransom. A recent joint advisory by the Cybersecurity and Infrastructure Security Agency, the Department of Health and Human Services and the FBI says there’s “credible information of an increased imminent cybercrime threat to U.S. hospitals and healthcare providers.” Not only are hospital cyberattacks dangerous for patients, but they’re costly. According to research by Comparitech, last year alone over 91 US healthcare organizations suffered some type of ransomware attack, with an estimated cost of nearly $21 billion. The resulting administrative effects of an attack — canceled appointments, lost records and potential lawsuits — can prove damaging both financially and reputationally. Step 1: The framework The first step toward establishing medical device cybersecurity is to develop an overall idea of what effective cybersecurity efforts look like. The NIST Cybersecurity Framework Core defines five basic activities to get there: Identify: Analyze existing inventory to establish an accurate baseline to work with. Determine whether security policies and procedures are aligned across CE and IT responsibilities. Protect: Ensure that physical and remote access to CE assets are protected. Develop a formal management process for any clinical assets that lasts throughout installation, maintenance, transfers and disposition. Detect: Monitor personnel activity to detect potential cybersecurity threats. Continuously improve detection processes through monitoring and adjustment. Respond: Establish a response plan in case of an incident. Implement established criteria for any incident reports. Recover: Plan recovery training and testing for CE and IT teams in response to an incident. Consider hospital reputation in recovery plan development. The first and most important step toward effective cybersecurity efforts is to ensure that CE and IT teams are aligned on ownership of devices with a roadmap for shared responsibility. Step 2: The action plan After you’ve walked through the framework to develop a sense of where you’re currently at, the next step is to implement a plan of action. Be sure to empower your core CE team with reliable inventory assets before it joins the cybersecurity effort. Having a comprehensive assessment of inventory allows both teams to better identify risks and cross-reference vulnerabilities. Once teams have been assigned responsibilities, move to other functions to ensure device security. Prioritize data collection and vulnerability tracking and research, as well as OEM management and relationships. Monitor patches and address them efficiently. Having an idea of current and potential device vulnerabilities can best help CE and IT teams spot problems before they become threats. Cyber Defense eMagazine – July 2021 Edition 80 Copyright © 2021, Cyber Defense Magazine. All rights reserved worldwide.
As threats continue to evolve, it’s important that cybersecurity action plans evolve with them. Implementing all of these pieces together enables CE and IT teams to reduce, detect and counter threats before they have a chance to do lasting damage. Step 3: The execution With a tailored action plan in place, you’re finally ready to set everything moving. Don’t treat medical devices like normal workplace devices — they aren’t. A laptop in the office is not the same as a monitor in the hospital. OEMs are great resources for helping to address vulnerabilities because they know the devices better than anyone. Ensure that all patches and remediations are validated by the manufacturer before implementing them. If unsure of installation procedures, request instructions and updated manuals. The best way to start is by identifying clinical equipment with critical vulnerabilities for which there are already OEM-validated patches to install. Be sure to record those efforts in the computerized maintenance management system (CMMS) inventory. Consider integrating a network-based medical device monitoring solution as well. These tools help in streamlining and expanding connected device inventory, and they enable collaboration and transparency between CE and IT teams. It’s easy to be shaken by the potential of a cybersecurity threat, especially given what attacks can do to hospital systems. Luckily, there are solutions available for administrators who are ready to implement them. By using a framework to get started, a plan of action and effective execution, hospitals have the ability to help their teams protect against the damage that cyberattacks can cause. About the Author Doug Folsom is president of cybersecurity and chief technology officer for TRIMEDX, an industry-leading, independent clinical asset management company delivering comprehensive clinical engineering services, clinical asset informatics and medical device cybersecurity. Doug has nearly 30 years of information technology leadership experience. Previously, he held positions at Kohl’s Department Stores, Sterling Commerce and The Spiegel Group. He earned his master’s degree in business from Ohio University and a bachelor’s degree in electrical engineering technology from DeVry Institute of Technology. Cyber Defense eMagazine – July 2021 Edition 81 Copyright © 2021, Cyber Defense Magazine. All rights reserved worldwide.
Page 1 and 2:
Colonial Key Business Pipeline, Les
Page 3 and 4:
Ransomware, the Ultimate Cyber Thre
Page 5 and 6:
@MILIEFSKY From the Publisher… Ne
Page 7 and 8:
Welcome to CDM’s July 2021 Issue
Page 9 and 10:
Cyber Defense eMagazine - July 2021
Page 11 and 12:
Page 13 and 14:
Page 15 and 16:
Page 17 and 18:
Page 19 and 20:
Page 21 and 22:
Page 23 and 24:
Page 25 and 26:
Page 27 and 28:
Page 29 and 30: Cyber Defense eMagazine - July 2021
Page 31 and 32: Cyber Defense eMagazine - July 2021
Page 33 and 34: Colonial Pipeline, JBS Cyber Attack
Page 35 and 36: is clear: Cyberattacks will continu
Page 37 and 38: of management complexity for any bu
Page 39 and 40: Flipping the Cyber Script Getting A
Page 41 and 42: Trust strategies, they will prevent
Page 43 and 44: The growing threat In the last 12 m
Page 45 and 46: Common Sense Cybersecurity Steps fo
Page 47 and 48: The next big thing: addressing remo
Page 49 and 50: Applying PR tactics is a new page i
Page 51 and 52: NATO to Consider Military Response
Page 53 and 54: The number of open positions in var
Page 55 and 56: 3. Delivery - Transmission of the p
Page 57 and 58: Uncovering the Dark Side of the Col
Page 59 and 60: Energy and Utilities - You Have No
Page 61 and 62: a cyberattack that shut down approx
Page 63 and 64: Ransomware and the Cybersecurity In
Page 65 and 66: About the Author Jack Blount is Pre
Page 67 and 68: The airline industry’s poor recor
Page 69 and 70: Ransomware, the Ultimate Cyber Thre
Page 71 and 72: About the Author Yehudah Sunshine,
Page 73 and 74: A second reason for the increase in
Page 75 and 76: A Case of Identity: A New Approach
Page 77 and 78: Implementing a digital trust ecosys
Page 79: A 3-Part Plan for Getting Started w
Page 83 and 84: 1. Endpoint and user protection Des
Page 85 and 86: The Risks of The Vulnerable Iot Dev
Page 87 and 88: Insecure Data Transfer and Storage
Page 89 and 90: Three Steps to Building Email Cyber
Page 91 and 92: Plan Ahead and Avoid Disaster The H
Page 93 and 94: NDR technology is built on three pr
Page 95 and 96: Hardware Trojan Detection By Sylvai
Page 97 and 98: the properties (user mode, memory a
Page 99 and 100: About the Author My Name is Sylvain
Page 101 and 102: outside coaches - to help them impr
Page 103 and 104: Tips for Avoiding Online Scams Duri
Page 105 and 106: Phishing Example 1 Phishing refers
Page 107 and 108: About the Author Cindy Murphy is th
Page 109 and 110: The recent Feedzai report confirms
Page 111 and 112: Why Cyber Risk Is the Top Concern o
Page 113 and 114: (BEC) attacks, also known as “fak
Page 115 and 116: What Educational Institutions Need
Page 117 and 118: Firewall Security VPN connectivity,
Page 119 and 120: Business Continuity: Where InfoSec
Page 121 and 122: ● ● ● ● How educated are em
Page 123 and 124: Biometrics Challenges By Milica D.
Page 125 and 126: Epic V. Apple Trial - Impact of Big
Page 127 and 128: About the Author Brad Ree is the Ch
Page 129 and 130: eaches because large amounts of hig
Page 131 and 132:
• securing mobile and remote work
Page 133 and 134:
This topic has great relevance beca
Page 135 and 136:
I recommend that leaders of private
Page 137 and 138:
fail that promptly. After, say, sev
Page 139 and 140:
1. Infosecurity Europe Where: Olymp
Page 141 and 142:
leaders, and help each other advanc
Page 143 and 144:
Page 145 and 146:
Page 147 and 148:
Page 149 and 150:
Page 151 and 152:
Page 153 and 154:
You asked, and it’s finally here
Page 155 and 156:
9 Years in The Making… Thank You
Page 157 and 158:
show all

Cyber Defense eMagazine July 2021 Edition

Create successful ePaper yourself

Delete template?

Save as template?