US healthcare organizations (HCOs) are highly popular targets for cyberattacks for two reasons. First of all, HCOs are easy to breach, since a majority of them lack a proper cybersecurity program based on the NIST Cybersecurity Framework, and many organizations use poorly secured medical internet of things (IoT) devices. Secondly, threat actors can make a lot of money from the sale and criminal exploitation of stolen medical records.
In order to help fight cyberattacks on HCOs, The US Department of Health and Human Services (HHS) has created the Health Sector Cybersecurity Coordination Center (HC3). While this is certainly a positive development, Forrester Research urges HCOs not to wait for government assistance, but to act proactively to improve their cyber defenses.
Read more: https://www.zdnet.com/article/arm-yourselves-for-healthcares-cybersecurity-war/