The CyberPHIx Roundup is your quick source for keeping up with the latest cybersecurity news, trends, and industry-leading practices, specifically for the healthcare industry. 

In this episode, our host Brian Selfridge highlights the following topics trending in healthcare cybersecurity this week: 

• Historic breach levels reached for healthcare between 2020-2022; trends and analysis 
• Attackers shifting focus to target small hospitals, clinics, and vendors 
• Cisco breach and related impacts on healthcare organization networks 
• Stats from SecureLink’s new report on third-party data breaches and analysis of healthcare-specific takeaways 
• LastPass source code breach and potential exposures to individuals and centrally-managed healthcare organization passwords 
• Cyberliability trends and criteria required to obtain and maintain coverage
• NIST CSF 2.0 workshop highlights and industry feedback 
• TEFCA selects HITRUST’s r2 certification for Qualified Health Information Network organizations to prove compliance with security practices 
• Health ISAC (H-ISAC) guidance on zero trust implementation for healthcare entities 
• Guidance from federal agencies on emerging cloud security threats and recommended practices 
• FBI warns of new sophisticated scam targeting the healthcare workforce 
• New federal advisory related to attacks from “Evil Corp” on the healthcare industry