cyberattacks

---

The Office of the National Coordinator for Health Information Technology

https://www.healthit.gov/

Department of Homeland Security - Cybersecurity

https://www.dhs.gov/topics/cybersecurity

National Institute of Standards and Technology (NIST)

https://www.nist.gov/cybersecurity

"On the Dark Web Medical Records are a Hot Commodity" https://www.fastcompany.com/3061543/on-the-dark-web-medical-records-are-a-hot-commodity

Ponemon Institute

"THE STATE OF  CYBERSECURITY  IN HEALTHCARE  ORGANIZATIONS  IN 2016"

"Hollywood hospital pays $17,000 in bitcoin to hackers; FBI investigating"

https://www.latimes.com/business/technology/la-me-ln-hollywood-hospital-bitcoin-20160217-story.html

“Hack DHS” Program Successfully Concludes First Bug Bounty Program

https://www.dhs.gov/news/2022/04/22/hack-dhs-program-successfully-concludes-first-bug-bounty-program

"New virus forces people to donate to the poor if they want their data recovered"

Metro-MSN

Join and Engage with Cybersecurity Organizations

CISA, FBI, and HHS recommend that healthcare organizations take the following initial steps:  Join a healthcare information sharing organization, H-ISAC: Health Information Sharing and Analysis Center (H-ISAC): 

https://h-isac.org/membership-account/join-h-isac/ 

Sector-based ISACs - National Council of ISACs: https://www.nationalisacs.org/member-isacs 

Information Sharing and Analysis Organization (ISAO) Standards Organization: https://www.isao.org/information-sharing-groups/ 

Engage with CISA and FBI, as well as HHS—through the HHS Health Sector Cybersecurity Coordination Center (HC3)—to build a lasting partnership and collaborate on information sharing, best practices, assessments, and exercises. 

CISA: cisa.gov, 

https://us-cert.cisa.gov/mailing-lists-and-feeds,

 central@cisa.gov   

FBI: ic3.gov, www.fbi.gov/contact-us/field, CyWatch@fbi.gov 

HHS/HC3: http://www.hhs.gov/hc3, HC3@HHS.gov 

Engaging with the H-ISAC, ISAO, CISA, FBI, and HHS/HC3 will enable your organization to receive critical information and access to services to better manage the risk posed by ransomware and other cyber threats.

 “Ransomware Attack Shuts Down A Top U.S. Gasoline Pipeline” 

“Hackers Breached Colonial Pipeline Using Compromised Password”  

“One Stolen Password Took Down The Colonial Pipeline — Is Your Business Next?”

https://www.cisa.gov/

Ransomware Activity Targeting the Healthcare and Public Health Sector Original release date: October 28, 2020

https://www.cisa.gov/uscert/ncas/alerts/aa20-302a

What is Ransomware? - An Introduction to Ransomware

https://www.cisa.gov/stopransomware

Every ransomware incident should be reported to the U.S. government. Victims of ransomware incidents can report their incident to the FBI, CISA, or the U.S. Secret Service. A victim only needs to report their incident once to ensure that all the other agencies are notified.  CISA is the nation’s cyber defense center dedicated to preventing and responding to cyber incidents. You can report incidents through CISA's reporting tool. Additionally, organizations should report anomalous cyber activity and/or cyber incidents 24/7 to report@cisa.gov or 

(888) 282-0870.

CISA CYBERSECURITY AWARENESS PROGRAM

https://www.cisa.gov/cisa-cybersecurity-awareness-program

In the book Functional Emergency Preparedness there is material on Container Ships being too large and supply chain constraints.  A severe supply chain problem could force an LTCF to activate its Emergency Operation Plan (EOP).  However, another problem for container ships is the possibility of Cyberattacks.  

"Hackers can bring ships and planes to a grinding halt. And it could become much more common"

CNBC Article

Author-Sam Shead

PUBLISHED MON, JUN 27, 2022