惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

奇客Solidot–传递最新科技情报
奇客Solidot–传递最新科技情报
L
LINUX DO - 最新话题
Recorded Future
Recorded Future
月光博客
月光博客
博客园 - 【当耐特】
博客园 - 叶小钗
宝玉的分享
宝玉的分享
量子位
雷峰网
雷峰网
博客园 - 三生石上(FineUI控件)
The Cloudflare Blog
Vercel News
Vercel News
L
LangChain Blog
B
Blog
Y
Y Combinator Blog
爱范儿
爱范儿
GbyAI
GbyAI
S
Security @ Cisco Blogs
T
The Blog of Author Tim Ferriss
A
About on SuperTechFans
博客园 - Franky
P
Palo Alto Networks Blog
Threat Intelligence Blog | Flashpoint
Threat Intelligence Blog | Flashpoint
云风的 BLOG
云风的 BLOG
C
Cisco Blogs
Scott Helme
Scott Helme
I
Intezer
T
The Exploit Database - CXSecurity.com
MyScale Blog
MyScale Blog
T
Tor Project blog
D
Darknet – Hacking Tools, Hacker News & Cyber Security
T
Troy Hunt's Blog
N
News and Events Feed by Topic
大猫的无限游戏
大猫的无限游戏
F
Fortinet All Blogs
www.infosecurity-magazine.com
www.infosecurity-magazine.com
Application and Cybersecurity Blog
Application and Cybersecurity Blog
Cyber Security Advisories - MS-ISAC
Cyber Security Advisories - MS-ISAC
S
Security Affairs
Cyberwarzone
Cyberwarzone
PCI Perspectives
PCI Perspectives
小众软件
小众软件
D
DataBreaches.Net
Exploit-DB.com RSS Feed
Exploit-DB.com RSS Feed
Know Your Adversary
Know Your Adversary
Forbes - Security
Forbes - Security
S
Securelist
cs.CV updates on arXiv.org
cs.CV updates on arXiv.org
C
Cyber Attacks, Cyber Crime and Cyber Security
The Last Watchdog
The Last Watchdog

WhatIs

Strategic IT outlook: Tech conferences and events calendar | TechTarget 8 AI use cases in manufacturing Enterprises are making an AI native transformation Zero trust in the IT ops stack: Securing hybrid workloads How algorithmic value sets enhance clinical decision-making Top methods for collecting customer feedback Build a data governance team that delivers results How to calculate the total cost of ownership of ERP software Communities call for transparency in AI data center deals Scalable IT infrastructure: Balancing speed with stability How health systems are tackling 'Kill the Clipboard' obstacles Understanding the science behind AI-based hiring assessments Tape's strategic role in modern data protection How to choose an HR software system in 2026: A complete guide The UC stack gets the policy job Top zero-trust use cases in the enterprise 13 top IT infrastructure conferences in 2026 SNMP vs. CMIP: What's the difference? 3 essential network analytics use cases AI Security Risks Force CIOs to Rethink Strategy Red Hat Summit 2026 news and conference guide | TechTarget What is HR technology (human resources tech)? Understand, optimize and track customer journey touchpoints Should IT use Apple Business Manager without MDM? Build and organize an effective machine learning team The storage modernization imperative in a fast-changing IT landscape Procurement automation use cases for CSCOs to consider 3 steps for health system leaders to drive patient safety culture What is DevOps? Meaning, methodology and guide Enterprises Face New Storage Bottlenecks as AI Grows A guide to Intune Suite licensing for endpoint management Epic controls 42% of the US EHR market. Does that help or hurt interoperability? SAP Sapphire 2026 news, trends and analysis | TechTarget How to develop a data governance strategy: 7 key steps 12 generative AI tools for marketing and sales teams Top 9 smart contract platforms to consider in 2026 Top 8 e-signature software providers for 2026 Rise with SAP vs. S/4HANA Cloud: What are the differences? How businesses use KPIs to measure AI's performance 5 clues your network has shadow AI How do digital signatures work? Collaboration security and governance must be proactive Compare SAP greenfield vs. brownfield approach for S/4HANA Merck, Home Depot tap Gemini Enterprise for AI agent development Rural challenges may dampen digital healthcare's potential Build an ethical AI framework: 12 top resources The great workload reshuffle: Choices for AI and analytics How to remove a device from Intune enrollment Cisco unveils quantum network advancements 3 BYOD security risks and how to prevent them 10 of the top carbon accounting software 8 trends powering machine learning's dynamic new roles Network engineers must take the lead to push DDI to the cloud How does Microsoft 365 Copilot pricing and licensing work? ONC highlights behavioral health EHR adoption trends, data exchange barriers LLMs struggle with clinical reasoning, study finds Democratizing AI in business: The good, bad and ugly What can organizations do to address BYOD privacy concerns? Fix the service path before you optimize it with AI How AI reshapes upselling in customer experience platforms When collaboration starts becoming operational drag Balancing health AI management with growing vendor sprawl Career cure for AI phobia: Be a beekeeper, not a worker bee 16 top applicant tracking systems for 2026 How a rural community hospital deploys AI to detect heart disease 8 examples of document version control Guide to 30+ sustainability certifications for professionals AI agents are only as smart as the data that feeds them AI could earn trust in transactional work first How to fix keyboard connection issues on a remote desktop How to add and enroll devices to Microsoft Intune 11 DevSecOps best practices to prioritize in 2026 6 key components of a successful data strategy How to enable Copilot in Microsoft 365: A step-by-step guide What CIOs need to know about Meta's proposed CEO AI agent Top AI recruiting tools and software of 2026 How contact centers detect and prevent fraud 10 essential skills for modern contact center agents Beyond the chatbot: Engineering the agentic enterprise AI in business intelligence: How to manage it effectively Why legacy networks are a growing liability Failure is an option as an IT leadership tool How HR can create a successful change management strategy HR AI is becoming a change management story Digital transformation: Balancing speed and governance RSAC 2026 Conference: Key news and industry analysis | TechTarget 8 best practices for a bulletproof IAM strategy 5 customer journey phases businesses should understand 12 top HR software and tool options to consider in 2025 6 contact center trends shaping the future of customer service Contact center monitoring best practices for CX leaders Cloud vs. local backup: Which is right for your organization? 6 steps for when remote desktop credentials are not working How governance maturity affects M&A integration outcomes Inside the push to turn AI agents into suite functionality How should contact centers use AI today? Accenture global health lead on scaling AI in healthcare with governance and intent 10 best free DevOps certifications and training courses in 2026 What is compensation management? What CIOs must know about bossware strategy
Georgia Tech builds network sandbox to test hospital cyber defenses
2026-05-11 · via WhatIs

Unpatched cybersecurity vulnerabilities and missed software updates pose more than technical challenges for hospital IT security teams -- they can disrupt patient care and critical operations, making effective and efficient vulnerability management essential.

With a contract award of up to $12 million from the Advanced Research Projects Agency for Health (ARPA-H) Universal Patching and Remediation for Autonomous Defense (UPGRADE) program, Georgia Tech researchers are working to alleviate this problem. They recently launched the Hospital-Integrated Vulnerability Identification and Proactive Remediation (H-VIPER) project, aiming to help hospitals quickly detect and fix system vulnerabilities.

"One thing that we see over and over again in the healthcare sector is that healthcare networks are very messy, and they're messy for a good reason. It's because patients require a wide variety of different healthcare solutions, tools and techniques," said Brendan Saltaformaggio, associate professor at Georgia Tech's School of Cybersecurity and Privacy.

"What this does from a cybersecurity perspective is it creates a very diverse attack surface. It leaves a lot of openings where an attacker might exploit something and be able to compromise the network."

Saltaformaggio, the lead researcher on the project, teamed up with fellow cybersecurity researchers and three Georgia hospitals -- Hamilton Health Care System, Emory Healthcare and Children's Healthcare of Atlanta (Children's) -- to build and test a platform that allows IT teams to test their cyber defenses while minimizing downtime and patient care disruptions.

The project is currently in year one of an estimated three-year effort. Saltaformaggio hopes it can foster stronger healthcare cybersecurity and inspire additional research.

Why vulnerability management remains a challenge in healthcare

Healthcare organizations are notorious for having complex, interconnected networks, legacy devices and limited resources, all in an environment where patient care trumps all else.

Stoddard Manikin, chief information security officer at Children's and an H-VIPER project collaborator, emphasized the unique circumstances that set healthcare apart from other industries when it comes to cybersecurity.

"The healthcare industry has been targeted for many years by cybercriminals. We are especially vulnerable because we have 24/7 operations. We have patients who are ill and rely on key systems being available at all times," Manikin said.

"Healthcare in particular has a wide variety of IT systems from multiple different vendors on different operating systems and platforms. It makes it very complicated to keep those systems up and running, keep them integrated and on our networks, but also to manage the vulnerability lifecycle of all the variety of systems."

Depending on the flaw and patch complexity, vulnerability remediation can temporarily put a system offline. However, a neglected software update can free up entry points for cybercriminals. As such, managing a complex, interconnected system requires careful consideration of risk.

"From a research perspective, this is a really hard domain to do cybersecurity research in, because in a lab environment, I can't recreate that diversity of devices and attacks and data and network connections," Saltaformaggio said.

With these challenges in mind, the H-VIPER researchers set out to craft a system that enables IT teams to test their cyber capabilities in a controlled environment before deploying potentially disruptive updates and patches in real hospital settings.

Testing cyber defenses in a sandbox before deploying

Any large healthcare system will likely have a solid network inventory, which is a great first step in managing a complex network of devices, Saltaformaggio said.

"But what our research aims to do is to build what we call a whole-hospital simulation," he noted. "So, it's kind of like a sandbox where you can play around with the hospital's network without actually interfering with the clinical operations."

The system maps out a hospital's network, giving researchers visibility into how the network would respond to a cyberattack or other adverse cyber event.

"We can do things like build new patches and new remediations for vulnerabilities, and then we can test those remediations in the simulation to be sure that when we push those remediations out into the real network, it won't interfere with any of the patient care or the availability of, say, an MRI machine or other medical devices," Saltaformaggio said.

The system will also be able to identify threats and alert the IT department, enabling better vulnerability detection.

"This research is going to help us uncover new and novel ways to do vulnerability management in a complex real-world healthcare environment. Partnering with Georgia Tech lets us leverage their expertise with information systems and security with our very practical real-world knowledge of medical devices, the healthcare environment and network configuration, so that we're doing practical research that can actually have an impact and improve the industry," Manikin added.

The goal, Manikin stressed, is to get healthcare cybersecurity to a place where hospitals are proactive rather than reactive in managing cyber risk.

ARPA-H's investment signals a turning point for healthcare cybersecurity

ARPA-H launched the UPGRADE program in 2024, investing $50 million to develop autonomous security tools for hospital environments. The program aims to bring hospital IT staff and cybersecurity experts together to build a "scalable software suite for hospital cyber resilience," ARPA-H said.

Saltaformaggio emphasized ARPA-H's positive impact on highlighting the importance of healthcare cybersecurity research, but noted that more investment is needed to catch up in this field.

"It's great that ARPA-H is getting this out there. It's great that this is becoming a priority for the government. It requires investment in fundamental research to develop new theories that allow us to protect hospitals," he said.

"We don't even have a basic understanding of how to do that right now. We sort of let hospitals purchase the same industry standard tools that you might purchase at any big corporation, and those simply do not apply in the healthcare space."

Saltaformaggio is hopeful that initiatives like the UPGRADE program will enable innovations in healthcare cybersecurity.

Other UPGRADE program research projects include ARMOR-H, a Vanderbilt University-led effort to build a vulnerability mitigation platform with a digital twin system of medical devices, and SHIELD, a project by Siemens Healthineers that seeks to develop an autonomous healthcare defense facility specifically for under-resourced facilities.

"It demonstrates the prioritization on behalf of our federal government to recognize that we are a critical sector of the country, that we are a vulnerable sector, that we need help as a healthcare community because if we can't handle patient volume and treating people and so forth, then parts of the social fabric break down," Manikin said of ARPA-H's investment.

"Each of us trying to independently create our own cyber police force is inefficient. So, we have to look for ways where we can multiply our advantages. And I think some of the force multipliers out there are things like this research, where we can come up with effective, realistic ways to do vulnerability management more efficiently."

Jill Hughes has covered health tech news since 2021.