5

iTWire - Claroty launches Advanced Anomaly Threat Detection for Medigate

 6 months ago
source link: https://itwire.com/science-news/health/claroty-launches-advanced-anomaly-threat-detection-for-medigate.html
Go to the source link to view the article. You can view the picture content, updated content and better typesetting reading experience. If the link is broken, please click the button below to view the snapshot at that time.
neoserver,ios ssh client

Thursday, 14 March 2024 13:27

Claroty launches Advanced Anomaly Threat Detection for Medigate Featured

By Gordon Peters

Cybersecurity firm Claroty has released a new threat detection module within its Medigate platform, which it says will boost cybersecurity standards in Australian healthcare organisations.

Claroty, which specialises in healthcare, announced the new release at the annual Healthcare Information and Management Systems Society (HIMSS24) conference taking place in Orlando, Florida, says the Advanced Anomaly Threat Detection (ATD) Module within the Medigate Platform provides healthcare organisations with the “clinical context to properly identify, assess, and prioritise threats to connected medical devices, IoT, and building management systems (BMS)”.

“As connectivity in healthcare environments expands, cyberattacks against the healthcare industry continue to increase year over year, impacting medical devices as well as BMS that keep hospital operations running. In fact, according to Claroty’s 2023 Global Healthcare Cybersecurity Study, 78% of healthcare organisations experienced at least one cybersecurity incident over the last year and 60% of these incidents had a moderate or severe impact on patient care delivery,” notes Claroty.

Claroty also notes that the capabilities of the Advanced ATD Module are built on its specialised knowledge of healthcare environments and foundational, in-depth CPS device visibility, including:

  • Agentless, clinically-aware threat detection and context to address known indicators of compromise in CPS
  • Threat detection at deeper levels of the clinical network beyond areas where firewall solutions are deployed
  • Continuous monitoring of device communication hardening measures and compliance controls

Claroty cautions that as connectivity in healthcare environments expands, cyberattacks against the healthcare industry continue to increase year over year, impacting medical devices as well as BMS that keep hospital operations running - and in fact, according to Claroty’s 2023 Global Healthcare Cybersecurity Study, 78% of healthcare organisations experienced at least one cybersecurity incident over the last year and 60% of these incidents had a moderate or severe impact on patient care delivery.

“Not only is the proliferation of attacks driving healthcare organisations to adopt stronger cybersecurity postures, but the changing regulatory environment is another factor driving change. For example, the U.S. Department of Health and Human Services (HHS) recently published Healthcare and Public Health (HPH) Cybersecurity Performance Goals (CPGs) that include a measure specifically for detecting and responding to relevant threats and tactics, techniques, and procedures (TTP), to “ensure organisational awareness of and ability to detect relevant threats and TTPs at endpoints” and to “ensure organisations are able to secure entry and exit points to its network with endpoint protection.”

Claroty says its Advanced ATD Module empowers healthcare to strengthen their cybersecurity postures and achieve regulatory compliance with features including:

  • Signature-based detection enhances threat detection, analysis, and response based on known signatures and Indicators of Compromise (IoCs). Signature content can be viewed for investigation purposes and enabled or disabled as needed to tune the system.
  • Custom communication alerts understand and alert on device communication patterns across the network to identify abnormal behavior and traffic across connected devices, such as a BMS communicating with a guest network or an IoMT device using an unsecured protocol.
  • Device change alerts pinpoint significant device changes within healthcare environments for further investigation, such as when a device reappears after being offline for a significant period, has a significant change in risk profiling, or undergoes a network status change.
  • MIRE ATT&CK for Enterprise threat mapping gives further context and remediation information by mapping alerts to various tactics and techniques within the MITRE ATT&CK framework. This helps responders better understand the goals of malicious actors so that they can more swiftly and appropriately respond and streamline processes by aligning with a framework they may already be using.

“Healthcare Delivery Organisations have been facing an uphill battle for years, with the threat of the next ransomware attack always looming. Cyberattacks against clinical devices and OT assets in HDOs have real-world consequences to providing patient care,” said Grant Geyer, chief product officer at Claroty.

“The capabilities offered within the Advanced ATD Module help healthcare organisations take a critical step toward achieving full visibility, with in-depth understanding and transparent view of the greatest threats against them. When clinical workflows and patient care are involved, there is no room for blind spots.”

The release of Claroty’s Advanced ATD Module for the Medigate Platform comes as new research from Team82, “Claroty’s award-winning research team”, finds that healthcare organisations are facing extreme gaps in medical device security. This new research can be found in the inaugural edition of “The State of CPS Security Report: Healthcare 2023.”

Read 220 times

Please join our community here and become a VIP.

Subscribe to ITWIRE UPDATE Newsletter here
JOIN our iTWireTV our YouTube Community here
BACK TO LATEST NEWS here

ELASTICON SYDNEY 2024 LATEST ADVANCEMENTS IN GENERATIVE AI

On 20 February, keynote addresses from NAB, Canva, AWS, and Google Cloud, among others, will feature at ElasticON Sydney 2024.

This event will explore the latest advancements in generative AI

The one-day conference, hosted by leading search analytics company Elastic, will include networking drinks, hands-on labs, technical sessions and a stellar line-up of keynote speakers from finance, technology, and government e=sectors.

ElasticON Sydney 2024 promises to be an enriching experience with a comprehensive exploration of the latest developments in security, observability, generative AI and their real world applications

Don't miss out on this opportunity to network and find answers for what's next from your industry peers and leaders

Register for ElasticON Sydney 2024

REGISTER HERE!

PROMOTE YOUR WEBINAR ON ITWIRE

It's all about Webinars.

Marketing budgets are now focused on Webinars combined with Lead Generation.

If you wish to promote a Webinar we recommend at least a 3 to 4 week campaign prior to your event.

The iTWire campaign will include extensive adverts on our News Site itwire.com and prominent Newsletter promotion https://itwire.com/itwire-update.html and Promotional News & Editorial. Plus a video interview of the key speaker on iTWire TV https://www.youtube.com/c/iTWireTV/videos which will be used in Promotional Posts on the iTWire Home Page.

Now we are coming out of Lockdown iTWire will be focussed to assisting with your webinars and campaigns and assistance via part payments and extended terms, a Webinar Business Booster Pack and other supportive programs. We can also create your adverts and written content plus coordinate your video interview.

We look forward to discussing your campaign goals with you. Please click the button below.

MORE INFO HERE!


report

Recommend

About Joyk


Aggregate valuable and interesting links.
Joyk means Joy of geeK