Menu
US agencies to release cyberthreat information faster to the health-care industry

US agencies to release cyberthreat information faster to the health-care industry

Representatives of the FBI and DHS say they're looking at ways to get more information into the hands of health-care providers

U.S government agencies will work to release cyberthreat information faster to the health-care industry after a massive breach at hospital operator Community Health Systems, representatives of two agencies said.

While the FBI issued an alert about the Community Health Systems breach one day after it was announced, government agencies can still do more to warn health-care providers about ongoing threats, said Michael Rosanova, a supervisory special agency at the FBI.

It can be "frustrating" for health-care providers to get threat information from government agencies, Rosanova said during a briefing hosted Thursday by the Health Information Trust Alliance (HITRUST), a health-care cybersecurity vendor.

If cyberthreat information is classified by the government, the FBI and other agencies have to take additional steps before sharing the information, he said. "It's not that easy, unfortunately, to take something with a fairly high security classification ... and get that in a useable context to people that need it," Rosanova said.

In the Community Health Systems breach, "we did make every effort to get the industry the information that was being requested," he added. "We did do the best that we could."

The FBI and other agencies can do a better job of informing health-care providers about cyberthreats that are "about to break," Rosanova said. The FBI wants to be more proactive with warnings, but in some cases, it won't be able to share as much information as health-care providers would like because of national security issues, he said.

U.S. agencies are already looking for ways to learn from the Community Health Systems breach and concerns about the speed of information sharing, added Danell Castro, program manager at the Critical Infrastructure Information Sharing and Collaboration Program at the U.S. Department of Homeland Security.

Information sharing has come a long way, she said, but still can be improved. Vetting information takes time, but DHS is looking at ways to speed up the process, she said.

While Rosanova talking about health-care providers sometimes needing security clearances to get threat information, those clearance aren't the "secret sauce," Castro said. Instead, participating in a collaborative environment, such as HITRUST's monthly threat briefing, will help drive forward more information sharing, she said.

"The more collaboration you do like this, the better off you will be," he said.

The Community Health Systems breach was tied to the Heartbleed bug, a known vulnerability, with the breach happening earlier this year, when Heartbleed was at its peak, noted Roy Mellinger. vice president and CISO of health-care provider WellPoint.

The news of the breach raised many questions from WellPoint executives, Mellinger said.

The health-care industry's cybersecurity efforts took some criticism following the announcement of the breach, but the industry has "come a long way in the last two or three years," Mellinger said. Still, cybersecurity "practices across the entire industry are not as sufficiently robust as we would all like," he added.

Mellinger called on U.S. agencies to communicate more quickly about threat information. In some cases, even advisories saying, "stay the course, this [threat] is nothing new" would calm executives and shareholders, he said.

Grant Gross covers technology and telecom policy in the U.S. government for The IDG News Service. Follow Grant on Twitter at GrantGross. Grant's email address is grant_gross@idg.com.

Follow Us

Join the New Zealand Reseller News newsletter!

Error: Please check your email address.

Tags U.S. Department of Homeland SecurityDanell Castrogovernmentindustry verticalsExploits / vulnerabilitiesfbidata protectionRoy MellingerHealth Information Trust AllianceWellPointMichael Rosanovasecurityhealth careCommunity Health Systems

Featured

Slideshows

Educating from the epicentre - Why distributors are the pulse checkers of the channel

Educating from the epicentre - Why distributors are the pulse checkers of the channel

​As the channel changes and industry voices deepen, the need for clarity and insight heightens. Market misconceptions talk of an “under pressure” distribution space, with competitors in that fateful “race for relevance” across New Zealand. Amidst the cliched assumptions however, distribution is once again showing its strength, as a force to be listened to, rather than questioned. Traditionally, the role was born out of a need for vendors and resellers to find one another, acting as a bridge between the testing lab and the marketplace. Yet despite new technologies and business approaches shaking the channel to its very core, distributors remain tied to the epicentre - providing the voice of reason amidst a seismic industry shift. In looking across both sides of the vendor and partner fences, the middle concept of the three-tier chain remains centrally placed to understand the metrics of two differing worlds, as the continual pulse checkers of the local channel. This exclusive Reseller News Roundtable, in association with Dicker Data and rhipe, examined the pivotal role of distribution in understanding the health of the channel, educating from the epicentre as the market transforms at a rapid rate.

Educating from the epicentre - Why distributors are the pulse checkers of the channel
Kiwi channel reunites as After Hours kicks off 2017

Kiwi channel reunites as After Hours kicks off 2017

After Hours made a welcome return to the channel social calendar last night, with a bumper crowd of distributors, vendors and resellers descending on The Jefferson in Auckland to kickstart 2017. Photos by Maria Stefina.

Kiwi channel reunites as After Hours kicks off 2017
Arrow exclusively introduces Tenable Network Security to A/NZ channel

Arrow exclusively introduces Tenable Network Security to A/NZ channel

Arrow Electronics introduced Tenable Network Security to local resellers in Sydney last week, officially launching the distributor's latest security partnership across Australia and New Zealand. Representing the first direct distribution agreement locally for Tenable specifically, the deal sees Arrow deliver security solutions directly to mid-market and enterprise channel partners on both sides of the Tasman.

Arrow exclusively introduces Tenable Network Security to A/NZ channel
Show Comments