H-ISAC Report TLP White: Hacking Healthcare - November 17, 2020

This edition of Hacking Healthcare takes a look at how security researchers found serious vulnerabilities in a contact-tracing application used in the Philippines and highlights the role of coordinated vulnerability disclosure in remediating them. Next, we ponder what PayPal’s acceptance of cryptocurrency might mean for ransomware perpetrators and victims. Finally, we revisit the issue of attacks against COVID-19 related research and why healthcare organizations should be wary about expecting attacks to wind down. Welcome back to Hacking Healthcare.

In this edition:

  • COVID-19 Contact-Tracing App Vulnerability Highlights the Benefits of Coordinated Vulnerability Disclosure
  • PayPal’s Acceptance of Cryptocurrency Has Ransomware Implications
  • Microsoft Calls for Action as Malicious Actors Continue to Target the Healthcare Sector

Related Resources

Advisory
Hospitals That Are Oracle Customers Urged to Take Immediate Action to Address Security Vulnerability
Public
Issue Landing Page
Cybersecurity and Risk Advisory Service
Guides/Reports
Cybersecurity and Risk Advisory Services
Standards/Guidelines
Become an AHA Preferred Cybersecurity and Risk Provider
Public
Issue Landing Page
AHA Preferred Cybersecurity & Risk Provider Program
Issue Landing Page
Support for Your Cybersecurity Program