The US Department of Health and Human Services (HSS) Health Sector Cybersecurity Coordination Center (HC3) released a new brief offering tips on how to protect healthcare organizations from basic web application attacks, the American Hospital Association (AHA) July 26 reports. These attacks target patient portals and expose patient data, often resulting in stolen credentials and other known vulnerabilities.
Web applications, in a nutshell:
“This type of attack, which involves cyber adversaries exploiting flaws in internet or public-facing websites such as patient portals, is a serious issue for healthcare,” said AHA’s national advisor for cybersecurity and risk, John Riggi. “These types of attacks have been leveraged in the past year to conduct high-impact ransomware attacks against at least one large health system and a major healthcare scheduling and payroll vendor, both of which disrupted health care delivery services for several weeks."Read More >>