惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

S
Schneier on Security
The Register - Security
The Register - Security
月光博客
月光博客
freeCodeCamp Programming Tutorials: Python, JavaScript, Git & More
OSCHINA 社区最新新闻
OSCHINA 社区最新新闻
The GitHub Blog
The GitHub Blog
博客园 - 司徒正美
罗磊的独立博客
U
Unit 42
S
SegmentFault 最新的问题
Y
Y Combinator Blog
博客园_首页
Hugging Face - Blog
Hugging Face - Blog
J
Java Code Geeks
Schneier on Security
Schneier on Security
Know Your Adversary
Know Your Adversary
C
Check Point Blog
Cyber Security Advisories - MS-ISAC
Cyber Security Advisories - MS-ISAC
Simon Willison's Weblog
Simon Willison's Weblog
V
Vulnerabilities – Threatpost
让小产品的独立变现更简单 - ezindie.com
让小产品的独立变现更简单 - ezindie.com
阮一峰的网络日志
阮一峰的网络日志
The Hacker News
The Hacker News
博客园 - 叶小钗
C
Cybersecurity and Infrastructure Security Agency CISA
Spread Privacy
Spread Privacy
L
LINUX DO - 热门话题
T
The Exploit Database - CXSecurity.com
P
Palo Alto Networks Blog
cs.CL updates on arXiv.org
cs.CL updates on arXiv.org
Latest news
Latest news
L
Lohrmann on Cybersecurity
A
About on SuperTechFans
L
LangChain Blog
Stack Overflow Blog
Stack Overflow Blog
S
Securelist
A
Arctic Wolf
D
Darknet – Hacking Tools, Hacker News & Cyber Security
T
Threatpost
Scott Helme
Scott Helme
博客园 - 聂微东
博客园 - 【当耐特】
T
Tenable Blog
I
Intezer
D
DataBreaches.Net
B
Blog RSS Feed
Security Latest
Security Latest
C
Cisco Blogs
T
Tor Project blog
N
Netflix TechBlog - Medium

Forbes - Innovation

Why Do Humans Have Fingerprints? Hint: It’s Not What You Think Booking.com Confirms Data Breach, Reservation PIN Codes Changed Why Major News Sites Are Blocking The Internet Archive’s Wayback Machine iPhone Fold Release Date: New Report Details Frustrating Apple News Comet Tracker: How To See Pan-STARRS And Three Planets On Wednesday NYT Mini Crossword Today: Tuesday, April 14 Hints And Answers Today’s NYT Strands Hints, Spangram, Answers: Tuesday, April 14 (It’s A Little Unclear) Today’s Wordle #1760 Hints And Answer For Tuesday, April 14 Most Of The Microplastics In Urban Air Come From Tires Today’s Wordle #1759 Hints And Answer For Monday, April 13 NYT Mini Crossword Today: Monday, April 13 Hints And Answers NYT Pips Today: Hints, Answers And Walkthrough For Monday, April 13 The YC Chief Who Codes 10,000 Lines A Day Has A Simple Secret Samsung Expands One UI 8.5 Beta To More Galaxy Owners Why You Should Stop Using Your iPhone If It’s On This List Chamath Says Firms That Treat AI As A Strategy Hand Rivals Their Edge 3 Unexpected Habits Of Secure Couples, By A Psychologist The First Lamp That Folds Your Clothes Samsung’s Disappointing Price Update For Galaxy Phone Buyers 3 Subtle Signs Someone Is Falling In Love With You, By A Psychologist Do Mantis Shrimp See More Colors Than Humans? A Biologist Explains NYT Connections Answers Explained For Monday, April 13 (#1,037) NYT Connections Hints Today: Monday, April 13 Clues And Answers (#1,037) LEGO Luigi & Mach 8 (72050) Review: 2026’s Best Set Yet? Marc Andreessen Says AI Productivity Will Trigger A Hiring Boom 3D Printing Is The Ultimate Hack To Reduce Household Spending Apple iPhone Fold: Striking Design Revealed In Leaked Photos Apple Smart Glasses: New Leak Reveals A Major Design Twist To Beat Meta Tested: The AI Coming To The Rivian R2 Quordle Hints Today: Monday, April 13 Clues And Answers Companies And H-1B Employees Endure Immigration Waits At Consulates 3 Easy Ways To Turn Anxiety Into Sustained Focus, By A Psychologist Here’s The Most Affordable Humanoid Robot You Can Buy Now UFC 327 Results: 5 Biggest Takeaways From A Wild Night In Miami UFC 327 Results, Bonus Winners, Highlights And Reactions Dana White Announces Huge New Fight For UFC White House Today’s NYT Strands Hints, Spangram, Answers: Sunday, April 12 (Get Ready) Tesla ‘Model 2’ Rises From The Ashes Today’s Wordle #1758 Hints And Answer For Sunday, April 12 NYT Pips Today: Hints, Answers And Walkthrough For Sunday, April 12 Tyson Fury Vs. Arslanbek Mahkmudov Results: Highlights and Reaction NYT Mini Crossword Today: Sunday, April 12 Hints And Answers How Shadow AI Culture Is Destroying Your Business Venture Capital Funds That Market Like Startups Win More Deals Conor Benn Vs. Regis Prograis Results: Highlights and Reaction Samsung’s Disappointing Price Update For Galaxy Phone Buyers Artemis Reached The Moon. The Grid Can Reach The 21st Century A Biologist Explains How Archerfish Shoot Down Prey. Hint: Their Aim Rivals Human Throwing Is It Time For Apple To Forget About The MacBook Air NYT Connections Hints Today: Sunday, April 12 Clues And Answers (#1036) Trump’s 2027 Budget To Reshape U.S. Environmental And Energy Policy CDC Delays Reporting Of COVID-19 Vaccine Benefits—Here’s What To Know Oura Has Designed A Solution To A Big Smart Ring Problem Netflix’s Best New Show Has A Near-Perfect 95% Rotten Tomatoes Score Coachella 2026 Is Being Taken Over By Creator Streams Quordle Hints Today: Sunday, April 12 Clues And Answers This Startup Wants To Use AI To Help Digitize History How To Get The Best Shield In ‘Crimson Desert’ Microsoft Venom Attack Targets C-Suite Executives ‘Maul: Shadow Lord’ Sets Even More Star Wars Rotten Tomatoes Records 3 Ways Happy Couples Argue Differently, By A Psychologist Success For Leapmotor Might Have Negatives For Stellantis New Names Surface As Potential Rogue And Wonder Woman In The MCU And DCU 4 Reasons Artemis Mission Matters Even If You Think It Is Wasteful Fast ‘Crimson Desert’ Patch Adds New Moves, Shield Hiding And One Great Feature Why Do Humans Blush? An Evolutionary Biologist Explains The Signal We Can’t Control Apple iPhone Fold: Striking Design Revealed In Leaked Photos Adobe Attacks Underway—Windows And Mac Users Given 72 Hours To Update iOS 26.4.1 Release: Crucial iPhone Feature Update Arrives, But No Security Fix Fury vs. Makhmudov Full Card, Ring Walk Times and How to Watch Can’t Stand Liquid Glass? This New Hidden iPhone Setting Is A Game-Changer Test-Driving The 2026 Changan Deepal S05: Italian Style Made In China NSA Warning—Reboot Your Internet Router Now Ways That Human-AI Collaboration Slides People Into ‘AI Brain Fry’ And Cognitive Downturns Stop Using These Networks—Google, NSA And TSA Warn NASA Changes Moon Plan: Landing Now Depends On SpaceX Or Blue Origin Samsung Expands One UI 8.5 Beta To More Galaxy Owners The Evolution Of Programmable Hardware At Xilinx NYT Mini Today: Saturday, April 11 Hints And Answers Today’s NYT Strands Hints, Spangram, Answers: Saturday, April 11 (You’re Putting Me On) Splashdown! NASA’s Artemis II Returns To Earth After Moon Mission Attention Is All You Need. The Human Kind Is Still The One That Counts Today’s Wordle #1757 Hints And Answer For Saturday, April 11 NYT Pips Today: Hints, Answers And Walkthrough For Saturday, April 11 Android Circuit: Galaxy S27 Pro Emerges, Honor 600 Pre-Order Offers, Pixel 11 Display Leaks Apple Loop: iPhone 18 Pro Leak, Urgent iOS Update, MacBook Neo Issues Morgan Stanley Has Mostly Positive Outlook On Tesla Robotaxi, FSD V15 Running Out Of AI Tokens Faster Than Ever? Here’s Why CoreWeave Shares Pop 13% After Anthropic Deal ‘Euphoria’ Season 3’s Rotten Tomatoes Score Crashes, Has Lost Key Player People Don’t Agree On What AI Can Do, But They Don’t Even Use The Same Product ‘Overwhelming’—Google Issues Gemini Update For Gmail Users NYT Connections Hints Today: Saturday, April 11 Clues And Answers (#1035) Quordle Hints Today: Saturday, April 11 Clues And Answers The Costly Dream Of Space-Based AI Infrastructure Can You See The Watcher In This ‘Daredevil: Born Again’ Shot? Adobe Attacks Underway—Windows And Mac Users Given 72 Hours To Update You Just Watched The Backdoor Pilot For ‘The Pitt: Night Shift’ Are Nicotine Pouches Like Zyn And VELO Safe To Use? A Doctor Answers Human Resources (HR) Is The Key To AI Success Per WalkMe ( SAP)
You Can't Restore A Patient From Backup
Corey Elinburg · 2026-06-17 · via Forbes - Innovation

Corey Elinburg, Healthcare Principal at Claroty, has spent 30+ years helping industry giants from all verticals secure what matters most.

getty

The huddle board at the nurses' station is frozen. Imaging won’t load for radiology. The temperature in a cryogenic freezer in the cell-therapy lab starts climbing toward the danger line. Somewhere, a clinician asks the question that should keep every healthcare CIO and CISO awake: How do we keep everyone safe until the systems come back?

We are no longer just talking about data breaches. We’re talking about care-delivery failures. Many in the industry keep talking about medical device security as though it were an IT hygiene problem; the industry professionals caring for patients know better. Healthcare was the top-targeted sector for ransomware in 2025, with the FBI logging hundreds of attacks against hospitals and clinics. Kettering Health spent nearly three weeks restoring normal operations after a May 2025 attack. The next event is already inbound. The only question is whether your environment helps the attacker, slows them down or allows rapid recovery regardless.

While IT is hardening, attackers are pivoting.

Healthcare IT and its related cyber programs are progressively getting better. Endpoint detection and response is maturing, immutable backup is industrialized, multifactor authentication adoption is climbing and defensive metrics improved across 2025. Defenders are winning ground on the laptops, servers and electronic healthcare record layer.

Attackers don’t quit—they move on to newfound leverage. The soft underbelly of every healthcare delivery organization is no longer IT systems. It’s the cyber-physical systems (CPS) that most IT shops don’t even manage: medical devices, building management and physical security.

HVAC. Negative pressure. Cold storage. Fire and life safety. Badge readers and cameras. All connected. All under-protected. All are capable of taking down clinical operations without an attacker ever touching the data center. Recent CPS research found that 75% of organizations have building systems with known exploited vulnerabilities (KEVs), and 51% of those KEVs are linked to active ransomware and exposed to the internet.

You see, every hospital is more than a building. It is a connected care infrastructure consisting not only of IT systems but also of biomed devices, facilities systems, clinical networks, physical security and other operational technologies that must work in concert to keep patients safe and care delivery flowing. Until resilience reaches every device in this connected model, we cannot rest.​

Visibility without clinical context is a mirage.

Hospitals commonly run 10 to 15 connected devices per bed in the U.S., and a large health system can carry hundreds of thousands of “non-IT” connected endpoints—infusion pumps, imaging systems, glucose monitors, building automation and pharmacy robots. Recent research analyzing 2.25 million Internet of Medical Things and over 647,000 operational technology devices across 351 healthcare organizations found that 99% of organizations are running medical devices with known exploited vulnerabilities, and 89% have the riskiest 1%—KEVs linked to active ransomware and an insecure connection to the internet.

Inventory matters. Context matters more. An MRI in routine radiology and a syringe pump in a pediatric ICU are not the same risk and don’t deserve the same remediation policy. Until your asset record knows each device’s clinical purpose and which other devices it works with to perform a clinical function, your security program is counting devices, not protecting patients.

​Patching won’t save you.

In my experience, medical devices have a lifespan of 10 to 20 years. Medical device management patches require FDA revalidation. You cannot just pull an MRI offline at 2 p.m. on a Tuesday without ramifications. The proposed HIPAA Security Rule asks for 15-day critical patches. This is a useful and aspirational target, not a working strategy for today's constraints.

Patching is one control—not the program. Real power lives in the compensating controls: segmentation, identity, monitoring, resiliency and the operational discipline to run them as a cohesive system to reduce exposure. Ensuring the inability to exploit a vulnerability is more important than a patch in an era where AI can discover vulnerabilities at a rate far beyond our ability to remedy them.​

Segmentation is a load-bearing wall, so let it bear the load.

A strong segmentation plan layers two things: microsegmentation inside zones that defaults deny and contains lateral movement when—not if—something gets in, and Layer-7​ inspection between zones that understands clinical protocols like HL7, DICOM and FHIR rather than just ports and IPs. Where the firewall can’t go deep enough, integration gateways and API security can help fill the gap.

Federal guidance is converging fast. CISA published "Microsegmentation in Zero Trust, Part One" in July 2025, treating granular isolation as the foundation of OT defense—guidance that maps almost exactly onto the medical device problem. The proposed HIPAA Security Rule goes further: It adds a new technical safeguard at 45 CFR 164.312(a)(2)(vi), turning what was previously a cybersecurity best practice into a specific regulatory obligation if the rule is finalized. If your network is still flat between radiology and the rest of your biomed estate, you are out of step with both the threat and the regulator.

If you want “bang for your buck” in terms of risk mitigation, segmentation is where you will find it.

What remains, and what can you do?

There is much more to say, but additional words will put me in the "too long; didn't read” category. I’ll leave you with this: Key aspects of identity, third-party risk management and other core disciplines must be considered across devices and systems. The readers of this article will know the key tenets of zero trust and cyber hygiene, but rather than recount them, I will end with something that I hope you find poignant.

Determine what devices in your network create scenarios that can't fall back to paper. Look at how you can scale resilience by segmenting them based on business context. Protect those critical devices and segments first, building resilience where a "known exploited vulnerability" will cause the most damage.

You can't restore a patient from backup.​​


Forbes Technology Council is an invitation-only community for world-class CIOs, CTOs and technology executives. Do I qualify?