March 12, 2024 - Claroty, the cyber-physical systems protection company, today announced at the annual HIMSS24 conference the release of the.
The new capability provides healthcare organizations with the clinical context to properly identify, assess, and prioritize threats to connected medical devices, IoT, and building management systems.
Agentless, clinically-aware threat detection and context to address known indicators of compromise in CPS. Threat detection at deeper levels of the clinical network beyond areas where firewall solutions are deployed.
Continuous monitoring of device communication hardening measures and compliance controls.
As connectivity in healthcare environments expands, cyberattacks against the healthcare industry continue to increase year over year, impacting medical devices as well as BMS that keep hospital operations running.
According to Claroty's 2023 Global Healthcare Cybersecurity Study, 78% of healthcare organizations experienced at least one cybersecurity incident over the last year and 60% of these incidents had a moderate or severe impact on patient care delivery.
Not only is the proliferation of attacks driving healthcare organizations to adopt stronger cybersecurity postures, but the changing regulatory environment is another factor driving change.
Signature-based detection enhances threat detection, analysis, and response based on known signatures and Indicators of Compromise.
Signature content can be viewed for investigation purposes and enabled or disabled as needed to tune the system.
Custom communication alerts understand and alert on device communication patterns across the network to identify abnormal behavior and traffic across connected devices, such as a BMS communicating with a guest network or an IoMT device using an unsecured protocol.
Device change alerts pinpoint significant device changes within healthcare environments for further investigation, such as when a device reappears after being offline for a significant period, has a significant change in risk profiling, or undergoes a network status change.
MITRE ATT&CK for Enterprise threat mapping gives further context and remediation information by mapping alerts to various tactics and techniques within the MITRE ATT&CK framework.
This helps responders better understand the goals of malicious actors so that they can more swiftly and appropriately respond and streamline processes by aligning with a framework they may already be using.
The release of Claroty's Advanced ATD Module for the Medigate Platform comes as new research from Team82, Claroty's award-winning research team, finds that healthcare organizations are facing extreme gaps in medical device security.
Claroty empowers organizations to secure cyber-physical systems across industrial, healthcare, public sector, and commercial environments: the Extended Internet of Things.
The company's unified platform integrates with customers' existing infrastructure to provide a full range of controls for visibility, risk and vulnerability management, threat detection, and secure remote access.
Backed by the world's largest investment firms and industrial automation vendors, Claroty is deployed by hundreds of organizations at thousands of sites globally.
The company is headquartered in New York City and has a presence in Europe, Asia-Pacific, and Latin America.
This Cyber News was published on www.darkreading.com. Publication date: Wed, 13 Mar 2024 22:55:14 +0000