Health-ISAC

🚨 Is your healthcare organization truly resilient against a sector-wide cyber disruption? Over 300 organizations have already stepped up since enrollment opened in May. Don't let your team miss out on this critical readiness milestone. Operation Vital Signs—the national healthcare cybersecurity exercise co-sponsored by Health-ISAC and the Health Sector Coordinating Council’s Cybersecurity Working Group (HSCC CWG)—is officially scheduled for July 21–22. ⚠️ Important: This is not just an IT or cybersecurity exercise. To participate effectively, your organization must assemble a cross-functional team that bridges the gap between technical cyber personnel and operational leaders (including legal, compliance, clinical operations, and continuity planning) 👇 Click the link in the Comments to learn more about this important health sector webinar. healthsystemcio.com/2026/05/19/ope… #HealthcareCybersecurity #OperationVitalSigns #CyberResilience #HealthIT #PatientSafety #HealthISAC #HSCCCWG

⏳ Don’t leave $99 on the table! The exclusive US$99 registration savings for the 2026 European Summit end on July 10th. This is the best chance for members to secure a spot at a massive discount for our premier gathering in Crete. 🇬🇷 When: October 12-16, 2026 Where: Crete, Greece Why: Join health sector leaders to collaborate on the latest strategies and innovative security solutions. Register here before the price jumps: 👉 health-isac.org/summit-meeting… 📢 Reminder: Call for Speakers – 2026 European Summit The deadline to share your expertise at the upcoming European Summit is fast approaching. Presenting allows you to compound the sector’s collective efforts by turning your real-world findings into actionable, sustainable security strategies for the entire community. Submission Deadline: June 5, 2026 Your unique perspective is what makes this community—and our Summits—so valuable. 👉 Submission links: #HealthISAC #HealthIT #Pharmaceutical #Healthcaresystem #MedicalDeviceSecurity

Health-ISAC's VP of Medical Device Security, Phil Englert, will speak at the ACCE - American College of Clinical Engineering Clinical Engineering Symposium in Denver, Colorado. His 9 am session on May 30th is titled "Cybersecurity Integrated Maintenance Protocols." portal.h-isac.org/s/community-ev… #clinicalengineering

🤖 "Get it right before you get it running." Artificial Intelligence is no longer just a futuristic concept in healthcare—it is already deeply embedded in everything from clinical decision-making to HR and finance. But as AI adoption accelerates, a critical question remains: Who is ultimately accountable when things go wrong? In a recent featured article for Unite.AI, Health-ISAC Chief Security Officer Errol Weiss dives into the dangerous reality of diffused accountability in healthcare AI. Without structured oversight and clear risk-management delegation, organizations are expanding their blind spots and exposing themselves to severe ethical, operational, and regulatory violations. Before your organization deploys its next AI tool, make sure you have the guardrails to back it up. 🔗 Read the full insight here: health-isac.org/healthcare-ai-… #HealthcareAI #AIGovernance #HealthTech #RiskManagement #Cybersecurity #HealthISAC #ThoughtLeadership

TODAY AT 12 PM ET! The New Automation Threat Surface: Detecting Misuse Across Healthcare AI and API Systems webinar by Health-ISAC Navigator, @radware. Register Here: brighttalk.com/webcast/18348/… #radware #cybersecurity #AI #APIprotection #healthcaresecurity #securityIT #infosec #cyberattack #ciso #threatintellience #infosecurity #cyberrisk #cybersecurityawareness #botnet #dataprotection

🚀 New White Paper: Navigating AI Governance in Healthcare 🚀 As generative AI and LLMs rapidly integrate into the health sector, establishing clear guardrails is a security imperative. Health-ISAC’s Artificial Intelligence Working Group has released a comprehensive new white paper designed to help global health organizations build robust, responsible AI governance frameworks. Access the paper here: health-isac.org/policies-and-s… What’s inside the document: 🏛️ AI Governance Structure 🌐 7-Pillar Framework 🗺️ Practical Implementation Roadmap 📝 Customizable Acceptable Use Policy 🛡️ 8 Risk Categories & Safeguards #HealthcareSecurity #AIGovernance #HealthISAC #Cybersecurity #GenerativeAI #HealthTech #RiskManagement

Redeem a Pass to HealthSec USA Summit! At Health-ISAC, we believe the strongest defense comes from a connected community. That’s why we’ve partnered with #HealthSec USA Summit (Boston, June 9-10) to ensure our members are leading the dialogue on healthcare cybersecurity. 🎟️ Member Benefit: As part of this collaboration, we have secured a limited number of complimentary guest passes for H-ISAC practitioner members. Claim your guest pass with code "H-ISAC": healthsec.cs4ca.com/register/ *Note: Offer is limited and valid for practitioners in healthcare and life sciences only. Registrations will be checked against eligibility criteria and tickets distributed on a first-come, first-serve basis. #HealthSec #HISAC #Cybersecurity #Healthcare

The new Alliance for Critical Infrastructure’s biggest goal: changing how the U.S. plans for a major cybersecurity crisis. In addition to its formal members, the group will collaborate with government agencies, sector coordinating councils (SCCs), information sharing and analysis centers (ISACs) and cybersecurity think tanks. Errol Weiss, the Health-ISAC’s chief security officer, said it was essential for the ACI to integrate with information-sharing groups like his. ISACs “already provide operational threat intelligence and sector‑specific context,” he said. “Duplicating or bypassing that ecosystem would risk confusion for operators.” Read the article. health-isac.org/new-cybersecur… #criticalinfrastructure #informationsharing #healthit

Stakeholders responsible for protecting water systems will not want to miss this conversation. Denise Anderson, National Council of ISACs Chair and Health-ISAC President and CEO, will keynote #H2OSecCon on June 2, 2026. The keynote session is titled 🚨'Critical Infrastructure Needs Connection' and will explore how growing interconnectivity across critical infrastructure is reshaping risk and why collaboration is essential to staying ahead. Register today. portal.h-isac.org/s/community-ev… #OperationalTechnology #IndustrialControlSystem #criticalinfrastructure

Exclusive Monthly Threat Briefings for Health-ISAC Members! Stay ahead of the latest threats with this month's power-packed, insider-only briefings led by the Health-ISAC Threat Operations Center team! Taking place on the last Tuesday and Wednesday of this month, you get to choose between: The Americas MTB – Tuesday, May 26th at 12 Noon ET The European MTB - Wednesday, May 27th at 3:00 PM CET Presentation Topics: 🔹Trending Impacts on Healthcare 🔹AI vs. Human Expertise: Finding the Security Balance 🔹Post Glasswing Vulnerable World 🔹Apps, APIs, and DDoS Research: SOTI and HC Impacts 🔹Proactive Strategies for the Accelerating Threat of Wildfires 🔹Legal & Regulatory Update 🔹Significant Global Dates Members will receive instructions on how to register via email. Thank you to this month's speakers from Palo Alto Networks, VulnCheck, Akamai Technologies, & Venable LLP. #DDos #healthcare #security

Health-ISAC's VP of Medical Device Security will be presenting at the Virginia Hospital & Healthcare Association (VHHA) EVHC Healthcare Cybersecurity & Extended Downtime Summit! Phil Englert will speak on Medical Device Cybersecurity as a Full Lifecycle Ecosystem. portal.h-isac.org/s/community-ev… #incidentresponseplan #healthit #healthsystem

📢 Call for Papers is OPEN: 2027 APAC Summit in Australia! 🇦🇺 We are officially looking for subject matter experts to take the stage at the upcoming 2027 Health-ISAC APAC Summit in Australia. Whether you are a seasoned keynote regular or a new speaker with a fresh perspective, we want to hear from you! 💡 Three Reasons to Submit: 1. Boost Your Career: 2. Complimentary Registration 3. Community Impact 👉 Submit your abstract information here: cvent.com/c/abstracts/91… Dates: March 15-19, 2027 Location: Gold Coast, Australia #HealthISAC #APACSummit #Cybersecurity #HealthcareSecurity #CallForPapers #Infosec #MedicalDeviceSecurity #ThreatIntel

AI vendors have flooded the market, and pilot programs have multiplied. Clinical and administrative teams are spinning up AI tools to solve problems, often without anyone tracking what’s being deployed, where, or why. That’s a governance problem, and in healthcare, it’s more serious than in most sectors. When left unmanaged, AI can touch patient data, clinical workflows, and regulatory standing simultaneously. A single ungoverned tool can compromise all three before anyone can identify an issue. health-isac.org/healthcare-is-… #healthcaresecurity #healthAI #AIgovernance #HealthIT

Cyber attacks more than doubled in 2025, with Health-ISAC’s 2025 Fourth Quarter Health Sector Heartbeat reporting a 55% year-over-year increase in cyber incidents. While attacks continue to grow in frequency, the more alarming shift is in their impact. health-isac.org/30-recent-cybe… #cyberattack #healthit #healthcaresecurity

“Clinical outcomes in a hospital are influenced by many factors – underlying conditions of the patient, staffing, resource constraints and real time medical decisions,” he said. A successful prosecution would require prosecutors to directly trace a ransomware attack to disabled system and from there to delays in treatment or errors in diagnosis, assuming that those mistakes had a provable effect on the patient’s odds of survival, Errol Weiss said. “Identifying and protecting the systems whose downtime directly impacts patient care, segmenting critical clinical networks, strengthening identity and access controls, maintaining tested and isolated backups, and exercising incident response with clinicians at the table so care can continue safely when IT is degraded,” Weiss said. health-isac.org/are-hospital-a… #healthit #hospitalsecurity #cyberattack

📢 Speaking at AAMI Exchange 2026 It’s been over 15 years since researchers first demonstrated that medical devices could be compromised. Is there a disconnect between theoretical risk and observed reality? Join Phil Englert on Sunday, May 31, at AAMI Exchange 2026. portal.h-isac.org/s/community-ev… Let’s move past the hypothetical and start building defensive strategies based on the reality of the threat landscape. Hope to see you there! #AAMI2026 #MedicalDeviceSecurity #HealthISAC #PatientSafety #CyberSecurity #HealthcareIT

Inconsistent AI terminology across healthcare organizations creates measurable risk in procurement, vendor contracts, and patient safety oversight. To close that gap, the Health Sector Coordinating Council - Cybersecurity (HSCC) Working Group (CWG) published its AI Cyber Glossary. The CWG also released the “Health Industry Third-Party AI Risk and Supply Chain Transparency Guide.” The 109-page resource addresses cybersecurity risks in AI-driven supply chains. The glossary establishes governance-ready definitions that clinical, operational, compliance, and technical stakeholders can apply with confidence. As a living document, the glossary will serve as the terminological foundation for all HSCC AI Task Group guidance materials. Read or download the resource here. health-isac.org/hscc-unveils-3… #thirdpartyrisk #AIguidance #healthcaresecurity #informationsharing

The New Automation Threat Surface: Detecting Misuse Across Healthcare AI and API Systems webinar by Health-ISAC Navigator, @radware on Thursday, May 21st at 12 PM ET. Register Here: brighttalk.com/webcast/18348/… #radware #cybersecurity #AI #APIprotection #healthcaresecurity #securityIT #infosec #cyberattack #ciso #threatintellience #infosecurity #cyberrisk #cybersecurityawareness #botnet #dataprotection

🛡️ We are thrilled to announce that Errol Weiss, Chief Security Officer at Health-ISAC, will be joining an elite panel at the NICE Conference & Expo in Philadelphia! 📍 Session Spotlight Topic: Cybersecurity and Critical Infrastructure: Addressing sector-specific workforce readiness Panel Date: June 2, 2026 Location: Philadelphia Marriott Downtown Registration: portal.h-isac.org/s/community-ev… #Cybersecurity #CriticalInfrastructure #WorkforceDevelopment #HealthISAC #InfoSec #CyberResilience

🌴🛡️ Don’t miss this deep dive session at SecureWorld South Florida: 📢 "Critical Condition: The Health-ISAC Global Threat Report Update." Ethan Muntz will break down the evolving landscape of cyber and physical threats targeting the global health sector, sharing actionable intelligence and strategic insights from our latest findings. 📍 Where: Margaritaville Hollywood Beach Resort, Hollywood, FL 📅 When: Thursday, May 21 Register now to secure your spot: portal.h-isac.org/s/community-ev… #HealthISAC #HealthcareSecurity #CyberThreatIntelligence #SecureWorldSFL #InfoSec #CyberResilience