Feb. 22, 2018 – 1:00 – 2:30pm ET – Webinar
Case Study of a Breach in the Healthcare Sector – Hosted by the Cyber Health Working Group
This month’s Cyber Health Working Group webinar is a case study of an anonymized HIPAA breach, in which access to a server with PHI from thousands of patients was sold on the dark web. Our speakers are Ben Goodman (CEO of 4A Security & Compliance and the lead cyber consultant for this incident) and Patrick Armor (FBI special agent who investigated the case). Here’s what the presentation will cover:
- The breach: What happened? Why? How was it found? What was the covered entity’s response?
- Incident response: What the entity did, what the consultant did
- Law enforcement: Why and how law enforcement was delayed, what the impact was
- Mitigation: What was done to reduce the risk of harm
- HHS Office of Civil Rights involvement: What they did, what they asked for, how the company responded
Mar. 1, 2018 – 2pm ET – Webinar
Ransomware Attacks Against U.S. Healthcare – Law Enforcement, Regulatory, Legal & Cyber Security Perspectives
Ransomware attacks against healthcare organizations increased 89% in 2017. All of the six largest attacks against healthcare organizations recorded in 2017 by the Department of Health and Human Services, Office for Civil Rights (HHS OCR) were attributed to ransomware. So far in 2018, healthcare organizations continue to be a favorite target of ransomware attackers, with ransom demands climbing higher than ever. In addition to the ransom cost, many recent ransomware attacks have brought healthcare systems down for weeks with impacts well beyond the IT sphere, including patient health and safety.
Ben Stone, Supervisory Special Agent, Cyber will provide insight on current ransomware trends from the FBI’s perspective. Barbara Holland, Regional Manager of HHS Office for Civil Rights will discuss OCR’s approach to ransomware cases, and the regulator’s perspective. Sean Hoar, Partner at Lewis Brisbois and Chair of the firm’s Data Privacy & Cybersecurity Practice will share his experience as outside counsel for the nearly daily stream of ransomware cases and Ben Goodman, CEO of 4A Security & Compliance will moderate the discussion and provide insights based on his work helping organizations prepare for and respond to ransomware incidents from the cybersecurity consultant’s perspective.
Mar. 8 – Mar. 9, 2018
Ponemon Institute’s 2018 RIM (Responsible Information Management) Renaissance
RIM (Responsible Information Management) Renaissance brings together smart individuals in privacy and security passionate about the work they do and the challenges they face. The program features case discussions, Socratic questioning and problem-solving debates. The event is by invitation only.
Mar. 22, 2018 – 3rd Annual 4A Data Security & Privacy Symposium, Hosted at Drexel LeBow
Workshop on Cyber Risk Quantification
Join us for a full agenda with leading cyber risk analysis experts from around the world. The day will include presentations from leading thinkers in this space from around the world.
Several analysts have been provided with an anonymized data set that includes current and historical data from a large, complex U.S. based healthcare organization. Attendees will learn about each presenter’s unique perspective and quantitative approach, as they share the results of their analysis of this live case study.
The presentations will be followed by a workshop and round table discussions where attendees sit with the experts and learn about their approaches to cyber risk quantification as they review the tools, techniques and models they used to analyze the case study.