ENISA discusses cyber-challenges in digital health

enisa discusses cyber challenges in digital health

Sumary of ENISA discusses cyber-challenges in digital health:

  • © iStock-loops7 The EU Agency for Cybersecurity speaks to HEQ about cybersecurity and data protection in healthcare..
  • The European Union Agency for Cybersecurity (ENISA) is the EU official agency dedicated to shoring up cybersecurity throughout the bloc..
  • ENISA works alongside the EU and its Member States to inform and contribute to the formation of EU policy on cybersecurity;.
  • and helps Europe prepare itself for ‘the cyber-challenges of tomorrow’ through campaigns such as the annual European Cybersecurity Month..
  • ENISA Network and Security Experts Athanasios Drougkas and Dimitra Liveri tell HEQ about cybersecurity and data protection in the healthcare sector..
  • The European Cybersecurity Month (ECSM) is the EU annual cybersecurity awareness campaign, co-ordinated by ENISA and the European Commission, and supported by the Member States and more than 300 partners from across industries..
  • The ECSM provides up-to-date digital security information through education and sharing of good practices through an array of activities – from workshops and conferences to training sessions, webinars and presentations – across the full month of October each year..
  • The Cyber-Scams theme provided insights on current and potential cyber threats to help the general public and businesses minimise risks..
  • COVID-19 has led to an increase in e-commerce, which has triggered concerns about the security of data and online payments..
  • The key message encouraged users to have a heightened awareness of cyber-scams when conducting business and personal transactions online..
  • With more people working from home, engaging in remote meetings, telehealth and shopping online, is cybersecurity more important now?.
  • However, this increased reliance on interconnected systems and devices also introduces a number of challenges and brings cybersecurity to the forefront..
  • Adding to this overwhelming situation, the healthcare sector has become a direct target or collateral victim of cybersecurity attacks..
  • The extraordinary issues that the healthcare sector is currently facing come on top of long-standing challenges that have hindered the cybersecurity maturity growth in healthcare in the past:.
  • many hospitals do not have a Chief Information Security Officer, and lack comprehensive security policies and access control mechanisms Hospitals are easy targets for malicious attackers due to the many different ways a malicious attacker can gain access to a system Lack of security awareness – for example, physicians, administrative personnel and patients can use their personal devices to connect to the hospital network without following any specific strategy The lifespan of medical devices in use, such as CAT scanners or MRI machines, can be longer than the manufacturer has anticipated, which commonly means security updates must be performed by a third party The vulnerable nature of medical devices..
  • For example, manufacturers build them in order to support remote patching and updating of firmware, which creates identifiable loopholes In order to help healthcare organisations in their efforts to achieve a higher level of cybersecurity, the European Union Agency for Cybersecurity has been working with healthcare stakeholders on a number of topics – developing good practices, sharing information and good practices, and improving their ability to respond to the next cyber incident..
  • In response to the cybersecurity challenges related to the COVID-19 pandemic, the EU Agency for Cybersecurity has reached out to provide advice in support of the healthcare sector..
  • These recommendations take into account the situational evolution and the nature of the incidents over the course of the crisis:.
  • Immediately contact the national computer security incident response team, known as a CSIRT Ensure business continuity through effective backup and restore procedures..
  • and the role of the supplier in such cases should be well defined In case of an incident impacting medical devices, the incident response should be coordinated with the device manufacturer…

Want to know more click here go to health news source.

From -