Sign up to save your podcasts
Or
Share All Covered: Mitigating Chronic Cybersecurity Vulnerabilities in Healthcare
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
All Covered: Mitigating Chronic Cybersecurity Vulnerabilities in Healthcare
Send us Fan Mail
Danielle Morrison, National Practice Manager – Healthcare IT Services at All Covered, analyzed the healthcare threat landscape and explored how the industry’s lag in IT modernization has created severe security gaps. With an expanding attack surface of medical devices and legacy systems, under-supported small and mid-size providers frequently suffer from incomplete tooling, misconfigured software, and a critical shortage of internal security expertise.
To illustrate these risks, she talked about a ransomware breach where attackers weaponized dark-web credentials to exploit a legacy server that lacked multi-factor authentication (MFA). With an attacker dwell time of up to two years, the fallout caused widespread downtime, forcing ambulance diversions and disrupting patient care. The panel noted that the intense operational pressure often drives healthcare executives to pay ransoms, yet doing so failed to prevent a secondary attack by a different cybercriminal group.
Drawing on her dual background in nursing and healthcare informatics, Danielle emphasized that solving this crisis requires ongoing, expert human management rather than simple tool purchases. She outlined key defensive priorities:
- Continuous Monitoring: Deploying Managed Detection and Response (MDR) and active threat hunting.
- Proactive Controls: Enforcing mandatory MFA and increasing vulnerability scanning.
- Unified Operations: Leveraging specialized providers like All Covered (Konica Minolta’s IT division) to integrate secure infrastructure with compliant communication tools.
View all episodes
By EChannelNewsSend us Fan Mail
Danielle Morrison, National Practice Manager – Healthcare IT Services at All Covered, analyzed the healthcare threat landscape and explored how the industry’s lag in IT modernization has created severe security gaps. With an expanding attack surface of medical devices and legacy systems, under-supported small and mid-size providers frequently suffer from incomplete tooling, misconfigured software, and a critical shortage of internal security expertise.
To illustrate these risks, she talked about a ransomware breach where attackers weaponized dark-web credentials to exploit a legacy server that lacked multi-factor authentication (MFA). With an attacker dwell time of up to two years, the fallout caused widespread downtime, forcing ambulance diversions and disrupting patient care. The panel noted that the intense operational pressure often drives healthcare executives to pay ransoms, yet doing so failed to prevent a secondary attack by a different cybercriminal group.
Drawing on her dual background in nursing and healthcare informatics, Danielle emphasized that solving this crisis requires ongoing, expert human management rather than simple tool purchases. She outlined key defensive priorities:
- Continuous Monitoring: Deploying Managed Detection and Response (MDR) and active threat hunting.
- Proactive Controls: Enforcing mandatory MFA and increasing vulnerability scanning.
- Unified Operations: Leveraging specialized providers like All Covered (Konica Minolta’s IT division) to integrate secure infrastructure with compliant communication tools.