Healthcare Cybersecurity and Communications Integration Center (HCCIC)

See the following -

HHS cybersecurity center so unstable staff don't know if it exists, Congress argues

Jessica Davis | Health IT News | June 6, 2018

The Senate HELP and House Energy and Committees are highly concerned about the U.S. Department of Health and Human Services’ cybersecurity plan, preparedness and the lack of leadership of its Healthcare Cybersecurity and Communications Integration Center -- and is demanding answers from HHS Secretary Alex Azar. The bipartisan letter to Azar outlines a laundry list of issues at HHS when it comes to its security plan. Among them, includes the temporary reassignment of two senior HCCIC officials in charge of the day-to-day operations.

Read More »

HHS Emergency Update 2 - International Cyber Threat to Healthcare Organizations

Press Release | Assistant Secretary for Preparedness and Response | May 13, 2017

[The HHS Office of the Assistant Secretary for Preparedness and Response] held our sector call today with over 1800 participants. The information below is responsive to several requests for information noted on the call. In addition, we would like to flag for the community that a partner noted an exploitative social engineering activity whereby an individual called a hospital claiming to be from Microsoft and offering support if given access to their servers. It is likely that malicious actors will try and take advantage of the current situation in similar ways. Additionally, we received anecdotal notices of medical device ransomware infection. Please note the directions below.

Read More »

HHS’ Cyber Threat Center Comes Out of Beta Soon

Heather Kuldell | Nextgov | May 12, 2017

The Health and Human Services Department’s nascent cybersecurity center will soon reach initial operating capability to help share threat information with a sector constantly under attack and often short of cyber personnel of its own. Based on the Homeland Security Department's National Cybersecurity and Communications Integration Center, the Healthcare Cybersecurity Communications and Integration Center will share health-care specific threats information with other agencies and the private sector...

Read More »

Securing Health Data Means Going Well Beyond HIPAA

Jon R. Anderson | GovTech Works | August 17, 2017

A two-decade-old law designed to protect patients’ privacy may be preventing health care organizations from doing more to protect vulnerable health care data from theft or abuse. The Health Insurance Portability and Accountability Act (HIPAA) established strict rules for how health data can be stored and shared. But in making health care providers vigilant about privacy protection, HIPAA may inadvertently distract providers from focusing on something just as important: overall information security...

Read More »