Home » CTEK in the News » HHS urges healthcare entities to address security for legacy systems

× Share this Article

Facebook
Twitter
Email
LinkedIn

HHS urges healthcare entities to address security for legacy systems

November 4, 2021

Share this Article
Facebook
Twitter
Email
LinkedIn

Many healthcare provider organizations continue to rely on outdated, unsupported, legacy technology like Windows XP, which poses critical risks to the enterprise. Pictured: A CompUSA sales associate stands near a display of Microsoft Windows XP software March 22, 2006, in San Francisco. (Photo by Justin Sullivan/Getty Images)

The Department of Health and Human Services Office for Civil Rights’ latest cybersecurity newsletter urges covered entities and relevant business associates to review and address the security measures put in place for legacy systems within the enterprise, in light of ongoing threats and risks posed by the use of these technologies.

In an ideal world, healthcare organizations would replace all legacy tech with newer platforms meant to be connected to the internet and supported by the vendor with routine software updates.

In this article Mac McMillan, CEO of CynergisTek, shares insights into how security leaders can broach the topic of replacing legacy tech with hospital leadership.

Read the full article here.

Attracting, retaining healthcare CISOs: Maybe it’s not a money problem

Mac McMillan discusses financial compensation for security leaders and challenges with attracting and retai...

5 Strategies to Improve Healthcare Cyber Resiliency

Mac McMillan suggests that organizations change the way they approach cybersecurity and focus on strengthen...

Most Recent Articles

Philips, CISA Warn of Medical Device Product Security Flaws

Benjamin Denkers, CIO Privacy and Security at CynergisTek, discusses vulnerabilities identified in the Philips products and common issues in many medical devices.

CISA Warns About Siemens, Philips Medical Device Flaws

Benjamin Denkers, CIO of Privacy and Security at CynergisTek discusses Siemens and Philips product vulnerabilities and how a patient can be affected and healthcare can be disrupted.

Attracting, retaining healthcare CISOs: Maybe it’s not a money problem

Mac McMillan discusses financial compensation for security leaders and challenges with attracting and retaining chief information security officers and other cybersecurity leadership.

5 Strategies to Improve Healthcare Cyber Resiliency

Mac McMillan suggests that organizations change the way they approach cybersecurity and focus on strengthening enterprise-wide security through actionable strategies.

Osteopathic Professional Group Reports Year-Old Breach

Marti Arvin, Executive Advisor at CynergisTek, shares her comments on breach notification laws with varying reporting deadlines that could potentially pertain to AOA.

What cybersecurity tools and strategies are gaining in importance?

Healthcare IT News interviewed Mac McMillan, who recently returned to the CEO role at CynergisTek, the cybersecurity consultancy he cofounded.

CARES Act: More time for using and reporting provider relief funds

Marti Arvin, Executive Advisor at CynergisTek, discusses updated timelines for recipients of PRFs regarding both using the funds and reporting on the use of the funds.

Post-Attack, Health Agency Notifying 'All Alaskans'

Mac McMillin, CEO of CynergisTek discusses the breadth and scope of the information public health departments.

Hive is a new & potentially devastating type of ransomware. Here’s what you need to know.

Ben Denkers, EVP of operations at CynergisTek, breaks down what hive ransomware is and how damaging it can be in this article.

Alleged HVAC Hack Shines Spotlight on OT Risks to Healthcare

David Finn, Executive Vice President at CynergisTek, offers commentary for this piece which discusses the recent targeted attack on HVAC.

Why It's Time to Reassess IAM in Healthcare

David Finn offers commentary for this piece, which covers unique operational requirements and the different segments of healthcare that can also face different difficulties with IAM.

CMMC and the Cyber Future of America's Defense Industrial Base

In this Interview, Caleb Barlow discusses CMMC and major defense contractors' future with cyber security.

Helping Healthcare Organizations Tackle Cybersecurity Threats

Ben Denkers, EVP of operations at CynergisTek, discusses CynergisTek's dynamic cybersecurity and privacy solutions to help our healthcare clients build an approach that responds every day.

CARES Act and changes to how substance use disorder records are shared

Marti Arvin, Executive Advisor at CynergisTek, shares her comments on the uncertain impacts of the changes to the CARES Act.

Four CMMC actions to take right now

Caleb Barlow discusses ways to improve CMMC readiness once the DoD comes knocking.

Classifying Critical Infrastructure – Caleb Barlow, CynergisTek

In this video, Caleb Barlow discusses what qualifies as critical infrastructure, and what’s getting left out.

Pipeline cyberattack raises concerns over critical U.S. infrastructure security

In this Interview, Caleb Barlow, CEO of CynergisTek discusses the recent pipeline cyberattack and how organizations can invest even more in cybersecurity to prevent an attack.

Scripps Health patients frustrated after May 1 cyber attack

Caleb Barlow, CEO of CynergisTek discusses the need for healthcare organizations to invest even more in cybersecurity, as well as the importance of multi-factor authentication.

ER Physician Association Hacked

Marti Arvin covers the American College of Emergency Physicians, which says a "malware" attack affected tens of thousands of the group's current and former members.

CynergisTek’s Barlow: We Need to Think About COVID-19 Data-Related Breaches Going Forward

Caleb Barlow provided commentary for this article, where he shares his perspectives about the recent breach at Atascadero State Hospital in California.

Return to Home

Insights Center

HHS urges healthcare entities to address security for legacy systems

Previous Article

Next Article