The Cybersecurity and Infrastructure Security Agency (CISA) recently conducted a comprehensive Risk and Vulnerability Assessment (RVA) at a major healthcare organization. This exercise is part of CISA’s efforts to enhance cybersecurity in the Healthcare and Public Health (HPH) sector, revealed both strengths and vulnerabilities within the organization’s cybersecurity infrastructure. The RVA’s findings offer valuable insights applicable across the healthcare sector. These insights are important in an era where cyber threats are increasingly sophisticated and the protection of sensitive health data is highly necessary. The assessment spanned two weeks, and included both external and internal evaluations of the organization’s network. During the external phase, CISA’s team focused on public-facing systems, identifying potential vulnerabilities that could be exploited by malicious actors. This phase did not reveal exploitable conditions, indicating robust external defences.
The internal phase told an alternative story, as the CISA team identified several critical vulnerabilities, primarily due to misconfigurations, weak passwords, and other similar issues. These vulnerabilities allowed the team to simulate multiple attack paths, ultimately leading to the compromise of the organization’s domain.