The CyberPHIx Roundup is your quick source for keeping up with the latest cybersecurity news, trends, and industry leading practices, specifically for the healthcare industry.

In this episode, our host Brian Selfridge highlights the following topics trending in healthcare cybersecurity this week:

• Deep dive into new CISA Cybersecurity Performance Goals (CPGs) for healthcare and critical infrastructure
• NSA releases new “hacker’s playbook” for operational technology (OT) cyberattacks
• American Hospital Association (AHA) endorses the Healthcare Cybersecurity Act draft bill
• Gramm-Leach-Bliley Act (GLBA) amendments become effective this December that may bring healthcare into scope for GLBA security requirements and enforcement
• Massive ransomware outage for CommonSpirit Health impacting over 142 hospitals and the Epic MyChart EHR platform
• Advances in quantum computing for encryption and the potential for “Q-day” events that could expose all encrypted data to unauthorized decryption
• HHS warns of abuse of common security and system administration tools that are being abused by attackers
• CISA alert about Daixin Team ransomware gang targeting healthcare PACS environments via VPN and RDP attacks
• New stats and guidance on public cloud security trends and recommendations