Home » CTEK in the News » What To Do When Vendors Fail

× Share this Article

Facebook
Twitter
Email
LinkedIn

What To Do When Vendors Fail

May 14, 2020

Share this Article
Facebook
Twitter
Email
LinkedIn

NRC Health, a software and patient satisfaction survey provider holding data from more than 25 million patients

NRC Health, a software and patient satisfaction survey provider holding data from more than 25 million patients, was locked out of its computer system in February because of a ransomware attack. When a breach like this occurs, the fault (at least in the eyes of the federal Office for Civil Rights [OCR]) tends to land on the vendor’s shoulders. But this is not always the case.

David Holtzman, Executive Advisor at CynergisTek, contributes this article, which focuses on on how healthcare providers deal with the security of their vendors, as well as HIPAA requirements/suggestions.

Click here to read the full story.

The CyberWire Daily Podcast - Episode 1093

Cyberwire’s latest podcast features Caleb Barlow as he discusses if GDPR may have unintended consequences f...

Ransomware Attackers Exfiltrate Data From Magellan Health

Magellan Health, a U.S. managed care company that focuses on specialty areas of healthcare, says it was hit...

Most Recent Articles

VA Center's IT Legacy Flaws Common at Other Health Entities

A Texas clinic has the all-too-common problem of obsolete equipment leading to security vulnerabilities.

Assessing the Security Risks of Emerging Tech in Healthcare

A host of cutting-edge technologies like A.I & nanomedicine contain the potential to revolutionize patient care, but federal authorities are warning medical practices to evaluate the associated risks.

5 FBI Recommendations For Medical Device Cybersecurity

Ben Denkers discusses the detrimental impact of cyber attacks on medical devices.

Hackers have laid siege to U.S. health care and a tiny HHS office is buckling under the pressure

With a dearth of resources, the Office for Civil Rights is struggling with an overflowing caseload.

Report: Organ Transplant Data Security Needs Strengthening

The national network for connecting medical centers with donated human organs faces doubts about its ability to secure data amid mounting concerns over its IT infrastructure.

KLAS: Security & Privacy Consulting Services 2022

A new report by KLAS examines several such firms to determine who effectively assists in reducing risk, engages closely with clients, and exceeds expectations.

HHS HC3 Warns of Vishing, Other Social Engineering Scams

Dave Bailey, Vice President of Security Services discusses how Healthcare sector entities are a ripe target for social engineering schemes for an assortment of reasons

Can healthcare keep pace with new cyber insurance security requirements?

Dave Bailey Explains cyber insurance carriers are telling potential clients they must add specific security elements or they won’t be able to provide coverage or will have to charge a high rate.

Healthcare is littered with failed attempts by big tech to break in. Here’s why.

Ben Denkers discusses healthcare's unique position when it comes to big tech.

Cybersecurity M&A Roundup: 36 Deals Announced in May 2022

Thirty-six cybersecurity-related merger and acquisition (M&A) deals were announced in May 2022.

A new approach to healthcare cybersecurity

Ben Denkers, CIO of CynergisTek discusses steps healthcare cybersecurity leaders can follow these four steps to improve their security posture in the face of cyberattacks.

Hospitals' latest cybersecurity threat: Burned out healthcare workers

Thomas Graham, Chief Information Security Officer for CynergisTek discusses healthcare workers and the current climate.

Alliance targets healthcare supply chain cybersecurity risk management in new guide

New guidance from the Cloud Security Alliance aims to support delivery organizations with assessing and managing cybersecurity risks to the healthcare supply chain.

Mitigating Insider Security Threats in Healthcare

Dave Bailey, Vice President of Security Services discusses developing and maintaining solid security practices.

Episode 5 - Test Your Security Environment - 3 Point Cyber

In this episode, we discuss with Mac areas where our industry needs to do a better job of testing our controls and environment instead of completely trusting them to do what we think.

Health data hacking booms in 2021

Mac McMillan discusses the speed in which cyber security is increasing.

With consumer data privacy in focus, making the case for NIST in healthcare

Andrew Mahler discusses the existing challenges with HIPAA compliance and current state regulations will only compound further as regulating.

FDA Document Details Cyber Expectations for Device Makers

Mac McMillan discusses the FDA's new guidance and the progress we have made over the last decade in talking about and raising issues with medical device security.

Mac McMillan on the Ukraine Invasion and Its Potential Cyber Impacts

Mac McMillan shared his perspectives on the potential for the Russian invasion of Ukraine to indirectly impact IT in the U.S. healthcare system, particularly with regard to supply chain.

Medtech, hospitals on alert for cyberattacks after Russia's invasion of Ukraine – MedTech Dive

Mac McMillan, CEO of CynergisTek discusses the possibility of cyberattacks beginning and how no one can tell for sure how wide the fallout could be.

Return to Home

Insights Center

What To Do When Vendors Fail

Previous Article

Next Article