- Be Aware, Get Educated: Everyone in a healthcare system needs ongoing and regular training to understand how to identify phishing and potential breach scenarios. Have you deployed ongoing training or do you just do it once a year?
- Monitoring, Detection and Response – 24/7 SOC-as-a-Service: Ok this one is self-serving because my company is a SOC-as-a-Service for healthcare providers. But every single healthcare organization needs machine learning technology and cyber experts watching their endpoints, networks, devices and cloud 24/7 to detect anomalous behaviors across your entire digital infrastructure. And if a vulnerability is detected you need human intervention and response within 30 minutes, not tomorrow morning when the team gets in.
- User Behavior Analytics: Monitoring networks, clouds and medical devices is one thing but truly understanding internal and external user behaviors and anomalies is critical. Predicting vulnerabilities and attacks and how you can protect your entities from human negligence and maliciousness is the next generation of understanding how secure your cyber posture truly is.
- Hardening, Patching and 3rd Parties: Have you deployed multi-factor authentication, is your cyber strategy reviewed and up to date, have you implemented the latest security patches and deployed tools to ensure you are on top of everything in your hybrid digital infrastructure. Finally have reviewed and audited your most critical third party partners. Because they can often be the weakest link in your cyber posture.
It’s the end of January 2023, and the numbers are in– below is a list of the most malicious cyber-attacks over the last month. As reported by Kon Briefing, cyber-attacks have affected more than...