Tech & Innovation in Healthcare
Beware Using the Double-Edged Sword of Cybersecurity Automation
Question: Our IT department is short on staff, and they’re considering automating cybersecurity services to help fill in the gaps until the positions are filled. Is automating parts of our cybersecurity a good or bad idea? Nebraska Subscriber Answer: Like most technologies, there are pros and cons to using automation — especially in the healthcare industry. For example, automated technologies make it easy for healthcare organizations to identify and react to cybersecurity threats quickly and efficiently, and the technologies can also free up human resources to handle other IT tasks. At the same time, cyberthreat actors can take advantage of automation in their efforts to harm your organization’s systems. On Dec. 8, 2022, the Health Sector Cybersecurity Coordination Center (HC3) issued a detailed brief regarding the possible impacts of automation on healthcare cybersecurity and in other industries. According to HC3, automation is “[t]he use of largely automatic equipment in a system of manufacturing or other production process.” This process can be accomplished with hardware or software, and automation reduces the amount of human involvement in a given task. Cyberthreat actors can use automation software to quickly identify valuable information, such as: Threat actors also use software to automate attacks on your organization’s resources. Two of the most frequently used automated attacks involves credential stuffing and brute force attempts. The automation software uses commonly used or stolen passwords, and then attempts to use the information to gain access to the users’ accounts. Other automated attacks include keyloggers and banking injects, the latter of which can redirect the user from a legitimate website and then steal the user’s credentials. Threat actors can also use automation to move through the different phases of the cyber kill chain, according to HC3. Developed in 2011 by Lockheed Martin, the cyber kill chain is a tool to defend “against advanced threat actors.” At the same time, cybersecurity professionals can use automation to fend off malicious threats. Your healthcare organization’s cybersecurity team can use automation tools to scan for vulnerabilities, monitor traffic to detect and block suspected malicious activity, and alert the team of possible security events.
Tech & Innovation in Healthcare
- Radiology:
Image Your Patients With a Postage Stamp-Sized Ultrasound Device
Monitoring tumor changes may have gotten easier. Researchers at the Massachusetts Institute of Technology (MIT) [...] - Digital Health:
Learn How Healthcare Technology is Changing With These 5 Trends
Physicians are enthusiastic about adopting digital tools. On Oct. 25, 2022, the American Medical Association [...] - Cybersecurity Corner:
Prepare Your Practice for New Cyberthreats in 2023
Nearly 80 percent more data breaches occurred in 2022 than 2021. Cybersecurity professionals in healthcare [...] - Reader Question:
Listen to Your Patients Clearly With a Smart Stethoscope
Question: We’ve seen several instances where technology has enhanced the functionality of everyday objects in [...] - Reader Question:
Beware Using the Double-Edged Sword of Cybersecurity Automation
Question: Our IT department is short on staff, and they’re considering automating cybersecurity services to [...] - Reader Question:
Accurately Detect Liver Cancer With AI
Question: As a futurist and an oncologist, I’m fascinated by the ways researchers are using artificial [...] - Reader Question:
Consider Adding Cyber Insurance to Bolster Your Protection
Question: I keep reading in the news about the financial penalties and overall costs that healthcare [...]
