“Healthcare is a perfect target for cyberattacks. They’ve got life-critical systems, highly-sensitive patient data, and possibly valuable clinical research. And they’re all running on incredibly complex, fragile networks, operating in under-resourced environments,” said Errol Weiss, Chief Security Officer, Health Information Sharing & Analysis Center (Health-ISAC). health-isac.org/what-healthc… #healthcaresecurity #hospital #healthsystem #pharma #LifeSciences

JUNE 19th: Join Health-ISAC for a full-day, in-person security workshop designed for health sector professionals to collaborate, share best practices, and discuss current threats. Participate in an interactive tabletop exercise, offering a prime opportunity to build relationships and tackle sector-specific challenges alongside peers. DATE: Friday, June 19th, 2026 PLACE: Singapore LOCATION: Synapxe REGISTRATION: portal.h-isac.org/s/communit… #AIgovernance #healthcaresecurity #HospitalRansomware

“The EO’s biggest opportunity for healthcare is speed and coordination,” said Errol Weiss, chief security officer at the Health Information Sharing and Analysis Center (Health-ISAC). “Critical infrastructure operators need to stay ahead of attackers who are professionalizing and leveraging AI to compress the time between vulnerability discovery and exploitation,” he said. But execution of the order matters, Weiss said. “The sector will benefit most if review/benchmarking outputs, vulnerability clearinghouse activity, and tool access translate into timely, actionable information sharing through established ISAC channels,” he said. health-isac.org/what-trumps-… #healthit #criticalinfrastructure #AIsecurity #healthsector

The cybersecurity attack surface has officially shifted. It is no longer just about networks and data—it now lives in decisions. To protect the modern enterprise, security leadership must adapt to manage both human and agentic risk. 📈 Dive into the data-driven strategies inside the LivingSecurity State of Human Cyber Risk Report. health-isac.org/state-of-hum… This valuable asset is brought to you by @Living_Security , a proud Health-ISAC Champion in the Community Services Program. #Cybersecurity #HumanRiskManagement #AI #InfoSec #BlendedWorkforce #RiskMitigation #HealthISAC

Attend the MedTech Supply Chain Summit Asia Pacific 2026 and be sure to catch the 2:45 PM discussion “From Data to Decisions - Driving ROI Through Digital Transformation in MedTech Supply Chains. Health-ISAC Director of APAC Operations, Paul Chua, will be on the panel. EVENT: MedTech Supply Chain Summit Asia Pacific 2026 DATE: June 19th LOCATION: Geneo, Singapore Science Park REGISTRATION: portal.h-isac.org/s/communit… #MedTech #SupplyChain #HealthTech #HealthIT

Ready to elevate your skills and bring a global perspective to your work? The countdown is on for our upcoming Japan Workshop hosted at @EYnews, and registration is open! Whether you are looking to master unique cultural business insights, connect with industry leaders, or dive deep into innovative strategies, this workshop is designed to give you a serious competitive edge. Seats are limited to keep the sessions interactive and impactful. If you’ve been thinking about joining, this is your sign to lock in your spot. 📆 Save your seat here: portal.h-isac.org/s/communit… See you there! 🚀 #Cybersecurity #Healthcare #HealthIT

Defending Against Credential Worms - A recent analysis of the Shai-Hulud 2.0 supply chain attack revealed significant vulnerabilities across 13 health and life sciences organizations—including #pharma, #medtech, and retail #pharmacies. Read this white paper by @GitGuardian, a Health-ISAC Community Services Champion, to learn three immediate steps that can significantly reduce your exposure. health-isac.org/defending-ag… #lifesciences #HealthIT

Health-ISAC, REN-ISAC, Auto-ISAC, and IT-ISAC will deliver the opening keynote discussion on Wednesday, June 24th: The Power of Partnership - Securing Critical Infrastructure Together. ⚙️ Event: CyAD 2026: Cybersecurity Across Disciplines Summit 🗓️ Date: June 23-25, 2026 📍 Location: Moraine Valley Community College, Illinois 🔗 Link: portal.h-isac.org/s/communit… #CybersecurityAcrossDisciplines #CyAD #informationsharing

⏰ Reminder: The State of Healthcare Conference 2026 is just around the corner on Tuesday, June 9! Don't miss Health-ISAC Chief Security Officer Errol Weiss presenting on "Cybersecurity in Healthcare: Understanding the Current Threats and How to Manage Them." Spaces are filling up fast for this critical session at #Venable in DC. Grab your seat today! ⬇️ 🔗 portal.h-isac.org/s/communit… #Healthcare #Infosec #CyberResilience

It is good to feel appreciated. Sharing some recent member feedback for some Feel-good-Friday vibes. This is a member's reaction to their annual re-enrollment outreach: "It has been our pleasure! Your team has always been on the ball and has helped us mature as a security team. We appreciate everything you all do!" Considering membership? Schedule a membership overview meeting to learn more. health-isac.org/join-h-isac/ #HealthISAC #HealthIT #HealthcareResilience #InformationSharing

Heading to Denver for #FIRSTCON26? 🏔️ Don't miss HealthISAC's session on June 18 at 11:35 AM! Zach Nelson and Ethan Muntz will deliver actionable strategies for proactive defense, sharing how collective ISAC collaboration dismantles supply chain risks. Lock it into your schedule! 🗓️👇 🔗 portal.h-isac.org/s/communit… #Infosec #IncidentResponse #FIRST2026 #Ransomware

Is your HTM team tracking the latest medical device security threats? 🛡️🏥 At the recent #AAMI eXchange in Denver, Health-ISAC’s Medical Device Security Analyst, Taylor Porter, sat down to discuss the rapidly evolving threat landscape facing healthcare delivery organizations (HDOs) and medical device manufacturers (MDMs). If you are managing biomedical equipment or clinical networks, this brief interview is a must-watch. Taylor breaks down critical insights that directly impact patient safety and data security, including: 🔹 Annual Survey Results: Health-ISAC’s HTM Week webinar is available on the AAMI website. 🔹 Active Cyber Threats 🔹 The Rise of "Phishing as a Service" 🔹 Remote Workforce Risks Watch the video. health-isac.org/liveexchange…

This week, Health-ISAC®'s Hacking Healthcare® provides an update on developments in cyber incident reporting in the United States and the European Union. The development, implementation, and revision of cyber incident reporting regimes continues to be a policy area fraught with tension between providing authorities with useful information and creating a burden on the covered entities required to report. Today’s update outlines how Health-ISAC members can help shape emerging cyber incident reporting policies in the United States and outlines steps the European Union is taking to ease the burden on covered entities. health-isac.org/health-isac-…

Threat actors have responded to improved email security by refining pretexts and tailoring lures to healthcare workflows including vendor billing, human resources (HR), IT access, and even clinical operations, says Errol Weiss. Threat actors use techniques like pretexting that lead to more “credible deception that aligns with how healthcare actually works,” explains Weiss. health-isac.org/verizon-dbir… #phishing #HealthIT

⏳ The window is closing fast! The Call for Papers for the 2026 Health-ISAC® European Summit in Crete, Greece, closes THIS FRIDAY, June 5th. Are you formulating your content and need a review before submitting? Don't wait until the last minute—schedule a meeting to lock it in! 🔗 Secure your non-speaking sponsorship now: health-isac.org/summit-meeti… #HealthSecurity #CyberSecurity #HealthISAC

Hot off the press - the June newsletter! health-isac.org/new-vulnerab… Key Highlights Include: 🔹 Spring Americas Summit - Photos 🔹 Global Workshops - Japan, Singapore, Australia 🔹 European Summit - exclusive member registration rate 🔹 Health-ISAC Strengthening Device Security 🔹 New White Papers - AI, Credential Worms, and 0 Auth Token 🔹 Upcoming Events The link in the first comment leads to the PDF with interactive links. #HealthISAC

Ready to elevate your organization's resilience and connect with top healthcare and security leaders? 🏥💻 Registration is officially open for the 7th Annual Hobby Exercise, happening in Washington, D.C. on June 24th at Venable! Secure your seat today!👉 portal.h-isac.org/s/communit… In healthcare, a major incident impacts more than just data—it impacts patient care. That’s why this exercise takes a multidisciplinary approach, blending cybersecurity, clinical, regulatory, and manufacturing perspectives into one collaborative room. Beyond the exercise itself, this is a premier opportunity to build enduring relationships across the health sector and government, ensuring our collective response and recovery plans are stronger than ever. Stronger partnerships mean a more resilient healthcare sector. #HealthcareCybersecurity #CyberResilience #PatientSafety

“[Claude Mythos] raises the stakes because healthcare is already a prime target,” said Errol Weiss, the chief security officer of Health-ISAC, an information sharing nonprofit for the healthcare sector. “The bottom line for us is if there’s a persistent long-term outage, people could die.” health-isac.org/what-could-c… #AISecurity #healthcare #CriticalInfrastructure

🌐 Strengthening Healthcare Cybersecurity & Resilience Cyber threats facing the healthcare sector continue to evolve, making collaborative security strategies more critical than ever. Health-ISAC Security Workshop, hosted at @KPcolorado in Greenwood Village, Colorado, on Wednesday, June 17th! This full-day event brings together industry experts to share insights, discuss threat intelligence, and practice real-world incident response. 🔍 Agenda Highlights: 🔹Opening and Welcoming remarks 🔹Deep dives into organizational recovery 🔹A two-part Health-ISAC Resilience Tabletop Exercise and hotwash/debrief session. A huge thank you to the workshop sponsors, @BoozAllen and @SemperisTech, for generously supporting this event and helping drive resilience across the health sector! Register Here: portal.h-isac.org/s/communit… #HealthcareCybersecurity #CyberResilience #MedicalDeviceSecurity #InfoSec

“Healthcare CISOs and security teams need to understand that with Mythos, the speed of vulnerability detection and exploitation will be increased exponentially,” said Denise Anderson, President and CEO of Health-ISAC. Teams will need to speed up patch cycles and develop plans for taking devices offline to patch, she said. health-isac.org/report-mytho… “Third-party partners and legacy systems are always going to be the biggest risk. Companies will need to lean more heavily into moving off legacy systems whenever possible and continue to develop and implement mitigating controls around third-party tools and legacy systems,” she said.