H-ISAC: White Reports
On September 22, 2022, the Cybersecurity and Infrastructure Security Agency (CISA) and the National Security Agency (NSA) published a Joint Cybersecurity Advisory (CSA) (AA22-265A) as operational technology/industrial control system (OT/ICS) assets that operate, control, and monitor day-to-day…
This edition of Hacking Healthcare begins by examining the draft of the European Commission’s Cyber Resilience Act (CRA) to understand the practical challenges it aims to address within the current regulatory framework for digital products and services, as well as where gaps may exist.
This edition of Hacking Healthcare begins by examining a recent FTC action related to the Biden administration executive order on reproductive health that targets a data broker over the sale of identifiable location data.
This edition of Hacking Healthcare includes examining a new Department of Homeland Security Report that tasks the Cybersecurity and Infrastructure Security Agency (CISA) with doing more to improve their cyber information sharing with private sector partners.
This edition of Hacking Healthcare begins by examining recent steps that the U.S. is taking to increase international cooperation around cybersecurity threat information sharing, and we discuss how that might flow down to private sector partners.
On August 16, 2022, the Cybersecurity and Infrastructure Security Agency (CISA) and the Multi-State Information and Analysis Center (MS-I
This edition of Hacking Healthcare begins by examining a new draft publication from the National Institute of Science and Technology (NIST) that is meant to help organizations comply with the HIPAA Security Rule.
On August 4, 2022, malware researcher firm Reversing Labs released an in-depth blog post about the discovery of a new ransomware family, GwisinLocker ransomware, that has been observed targeting Linux-based systems in South Korean industrial and pharmaceutical companies.
On August 1, 2022, United States Speaker of the House Nancy Pelosi announced that she had touched down in Singapore, the first stop of her tour of the Indo-Pacific region.
On July 28, 2022, the Cybersecurity and Infrastructure Security Agency (CISA) issued a Malware Analysis Report (MAR), MAR-10386789, regarding their response to an organization that was compromised by exploitation of an unpatched and unmitigated Log4Shell vulnerability in a VMware Horizon server.