Archive

All entries

The HHS Office for Civil Rights proposes substantial rule changes to the long-standing Health Insurance Portability and Accountability Act (HIPAA) Security Rule. While details on the proposed rule changes remain unclear, HHS plans to issue a Notice of Proposed Rulemaking (NPRM) by the end of the year. These changes are believed to be the most substantial changes since the HIPAA Security rule went into effect in 2003
Healthcare
Ransomware

Significant Changes to HIPAA Security Rule on the Way

George V. Hulme
accuray-s34fezwt6ee-unsplash.jpg
Healthcare

How Under-Resourced Healthcare Providers Can Up Their Cybersecurity Game

George V. Hulme
nexus_med-dev-classification.jpg
Healthcare
Vulnerability Management
Risk Management

Better Medical Device Classification for Enhanced Risk Management

Manan Kakkar
Sam Templeton
Claroty Chief Strategy Officer Grant Geyer recaps and provides important context to the results of a Claroty survey looking at the impact of business disruptions resulting from cyberattacks on cyber-physical systems. The survey queried 1,100 cybersecurity leaders and practitioners globally on questions about the disruptive impact of attacks on operational technology, connected medical devices and systems, building automation systems, and the internet of things.
Industrial
Healthcare
Ransomware
Cyber Resilience
Operational Resilience
Operational Technology

Nexus Podcast: Grant Geyer on the Business Impact of Disruptions from Cyberattacks

Michael Mimoso
nexus_red-lines-rogers-deterrence.jpg
Cyber Resilience
Healthcare
Industrial
Risk Management

Deterrence in Cyberspace Proving to be a Difficult Exercise

ADM. Michael S. Rogers, USN (Ret.)
nexus_rogers-and-elinburg.png
Healthcare
Industrial
Nexus Conference

Mike Rogers and Corey Elinburg on the Value of Business Impact Assessments

Mike Rogers, CISO and Director Information Security and Compliance at Hormel Foods, and Corey Elinburg, SVP and the Chief Information Security Officer for…
Michael Mimoso
nexus_greg-garcia.png
Nexus Conference
Healthcare

Greg Garcia on Mapping Cybersecurity Risk within Healthcare

Greg Garcia, the Executive Director for Cybersecurity of the Health Sector Coordinating Council, explains how the Change Healthcare ransomware attack disclosed…
Michael Mimoso
nexus_anahi-santiago.png
Nexus Conference
Healthcare

Anahi Santiago on Cybersecurity for Hospital Care at Home

ChristianaCare CISO Anahi Santiago explains her team's role in protecting her organization's Hospital Care at Home program. Patients in this program are not…
Michael Mimoso
nexus_sign.jpg
Cyber Resilience
Healthcare
Industrial
Operational Technology
Risk Management

CPS Security Leaders Convene on One Goal: Protect Mission-Critical Infrastructure

Upa Campbell
Mike Ratliff, AVP Security Engineering and Operations at Providence, writes about five steps healthcare delivery organizations should take to mitigate the risk of ransomware and extortion-based attacks.
Ransomware
Healthcare
Cyber Resilience

5 Things Hospitals Can Do to Mitigate Threats of Ransomware

Mike Ratliff
Sam Templeton
In this episode of the Nexus Podcast, Alethe Denis, a senior security consultant at Bishop Fox, joins to discuss the ongoing effectiveness of open-source intelligence analysis and social engineering tactics as a precursor to larger intrusions against critical infrastructure.
Cyber Resilience
Healthcare
Industrial
Risk Management

Nexus Podcast: Alethe Denis on Social Engineering, Red-Teaming

Michael Mimoso
Healthcare delivery organizations using open-source software experience a balance of development advantages and security tradeoffs. Visibility, oversight, and tracking the use of OSS is critical to reducing risks it introduces. SBOMs, meanwhile, can be an advantage, in particular with regard to vulnerability management.
Cyber Resilience
Healthcare
Vulnerability Management
Risk Management

Understanding the Risks of Open Source Software in Healthcare

George V. Hulme
Latest on Nexus Podcast