2021 Virtual Disaster Conference
This presentation provides a unique national perspective on the rash of recent ransomware attacks, identify the groups behind these attacks, how hospitals and health systems have become victimized, and what can be done to prevent these attacks.
2023 Disaster Conference
UCLA Health developed an executive ransomware playbook to guide leaders on the initial detection, confirmation, institutional response priorities, and decision making following a cyber-attack. Learn about the unique threat a cybersecurity incident presents to a hospital and how to use those unique considerations in the development of a response plan.
2023 Disaster Conference
A review of lessons learned from development, logistical challenges, and exercise facilitation for a multi-hospital, corporate-wide drill. Includes improvement planning activities from our After-Action Report (AAR). Also, this presentation ties in our follow-up exercise (June 2023) and shares challenges and insights from this event.
Following the late February ransomware attack that shut down Change Healthcare — the largest health care payment system in the country — patients, hospitals, and other providers continue to reel from the effects. Learn about the steps CHA and our national partners are taking to advocate for impacted hospitals and minimize the fallout. CHA will provide updates...
“Hospitals with a cybersecurity plan in place prior to an attack have a better chance at minimizing damage.” Mary Massey, CHA Vice President of Emergency Management The Internet represents one of the biggest tools hospitals utilize to function successfully. It is also one of the largest vulnerabilities. Safeguarding devices, networks, and data from cyberattacks is […]
This post has been archived and contains information that may be out of date.
What’s happening: Several federal agencies issued a joint cybersecurity advisory on the Black Basta ransomware group accelerating attacks targeting the health care industry.
What else to know: Black Basta has attacked at least 500 organizations globally between April 2022 and May 2024.
This post has been archived and contains information that may be out of date.
What’s happening: On March 18, the American Hospital Association (AHA) and Health Information Sharing and Analysis Center (Health-ISAC) saw a social media post indicating concern for a coordinated, multi-city terrorist attack on low-security hospitals in mid-tier cities in the coming weeks, and released a bulletin on March 19 to spread awareness. What else to know: Although...
There are nearly 400 Joint Commission-accredited hospitals/critical access hospitals in California. This presentation provides information about:
The following resources are shared to support hospitals in enhancing their crisis preparedness and response capabilities. These tools focus on fostering effective collaboration between hospitals and emergency management agencies to support a coordinated responses during disasters. They also include training resources to help hospital staff gain specialized knowledge on protocols to ensure staff are equipped to handle various crisis scenarios.
This post has been archived and contains information that may be out of date.
What’s happening: The U.S. Department of Health and Human Services’ (HHS) proposed revisions to the Health Insurance Portability and Accountability Act (HIPAA) Security Rule aim to strengthen cybersecurity protections for electronic protected health information (ePHI).
What else to know: Comments on the proposed rule are due by March 7.