Cybersecurity Challenges Facing Healthcare Organizations

Biomedical engineers responsible for healthcare technology management (HTM) make significant decisions that affect your hospital’s cyber security posture. Whether it is procuring new medical devices, managing device end-of-life, or connecting devices to your network, it’s critical that any decisions they make consider device security, data integrity, and patient safety. In this webinar, we’ll discuss some of the challenges facing biomedical engineers – from procuring devices that have potential vulnerabilities to lack of device visibility and centralized management – and how to support their initiatives and integrate them into your overall cyber security strategy.

There has been a sharp increase in the number of vulnerabilities affecting medical devices in the past few years. Surprisingly, the CyberMDX team has repeatedly encountered some specific issues across many of these.

As the Head of Research at CyberMDX, Elad and his team work with medical device manufacturers, security vendors and regulatory organizations (e.g. CISA, FDA, MITRE) in the responsible disclosure of security vulnerabilities, including MDHex, Ripple20 (assisted JSOF), MDhex-Ray and more.

In this webinar, Elad will discuss specific pain-points surrounding the security of connected medical devices, deep dive into examples that exploit this issue with some recent vulnerabilities, and examine various prevention methodologies.

Agenda

5 mins - Intro
10 mins - A common pitfall for connected medical devices
15 mins - Vulnerabilities exploiting the issue
15 mins - Preventing current & future vulnerabilities of such kind
15 mins - Q&A

This 60-minute webinar features Motti Sorani, CTO of CyberMDX as he discusses how to conduct an on-going risk assessment of all your connected medical assets including vulnerability and compliance profiles, as well as prioritizing asset groups and recommended actions to remediate or mitigate the risks associated with these assets on three distinct layers of protection: on-device, on-network, and on-perimeter. Sorani will also discuss a new method – Device-Centric Risk Management (DCRM) – a layered approach to cybersecurity that protects each device, streamlining vulnerability remediation and driving mitigation directly on your medical and IoT assets.

CISA, HHS, and the FBI are warning healthcare providers to take timely and reasonable precautions to protect their networks from Ryuk ransomware attacks - over 400 hospitals in the United States are being actively targeted by malicious actors.

Recommendations and best practices for what to do if a ransomware attack occurs are outlined in CISA alert AA20-302A, yet many healthcare organizations are unprepared for the threat, potentially exposing ePHI data to hackers or impacting the safety of their patients.

Join Motti Sorani, CTO of CyberMDX and John Riggi, Senior Advisor for Cybersecurity and Risk Experience for the AHA, for a 60-minute webinar as they provide details on:

• The Ryuk ransomware threat
• The various attack vectors
• How to shore up your defenses to mitigate the impact of a ransomware attack

This webinar will increase awareness of the existing cyber threat that faces hospitals today. As the threat continues to evolve, the impact is not just reputational or financial – it's life-threatening and hospitals need to be prepared if (or when) a breach occurs. In this webinar, we'll discuss three aspects:
- An overview of the threat and the current state of healthcare cybersecurity;
- The methods attackers use to gain unauthorized access, and why they do it;
- What can be done to mitigate the risk of attack

In 2019 alone some 1,185 separate known attacks/breaches targeted healthcare organizations. The current state of healthcare cybersecurity is critical to know so you can be prepared. More importantly, the best practices with end-to-end risk management will help HDOs to mitigate breaches and prevent future attacks.

Join us for a discussion on risk assessment and how you can better protect your medical devices, your patients, and your healthcare workers.

In this webinar, you will:
- Understand the current state of healthcare cybersecurity and challenges
- Receive an overview for the security lifecycle management of risks to your devices
- Leverage the best practices for overcoming these challenges

A discussion on the evolving healthcare IoT and medical device landscape.
Over the course of this webinar, attention will be given to:
Immediately actionable best practices for improved medical device cybersecurity
How to go beyond traditional vulnerability reports to automatically identify, granularly profile, and intelligently manage network endpoints
Demonstrating how leading cybersecurity solutions assist in risk avoidance and management efforts

In order to stay competitive while improving patient care, hospitals increasingly turn to technology.

The result is a rapid expansion and diversification of the medical device and IoT network. Along with that comes an expanded and more difficult to manage attack surface. As cyber threats grow and the potential for operational asynchronicities compound, connected clinical assets are quickly becoming liabilities.

Watch this 30-minute webinar-on-demand to learn about the digital health challenges facing HDOs and the best-practice strategies used to mitigate those threats.
Specifically, we'll address:

An overview of the currently prevailing state of cyber risk across hospitals
A practical review of specific data compromises and what can be learned
A breakdown of the most persistent challenges faced