CRIME

From the document: "Cyber threat actors are aware of--and deliberately target--single points of failure. A compromise or failure of a Water and Wastewater (WWS) Sector organization could cause cascading impacts throughout the Sector and other critical infrastructure sectors [hyperlink]. There are many aspects of the large and complex WWS Sector that pose challenges to raising cyber resilience sector wide: [1] Governance and regulation involve a mix of federal and state, local, tribal, and territorial authorities. [2] Cybersecurity maturity levels across the sector are disparate. [3] Often, WWS Sector utilities must prioritize limited resources toward the functionality of their water systems over cybersecurity. [4] Universal solutions to cyber challenges in a diverse, target-rich, and resource-poor environment are unfeasible. To provide meaningful cybersecurity support to the WWS Sector that can help with these challenges, CISA [Cybersecurity and Infrastructure Security Agency]--in conjunction with the Environmental Protection Agency (EPA) and the Federal Bureau of Investigation (FBI), as well as the federal government and WWS Sector partners listed in this guide's acknowledgement section--has created this joint Incident Response Guide (IRG) for the WWS Sector. The unique value of this joint IRG is that it provides WWS Sector owners and operators information about the federal roles, resources, and responsibilities for each stage of the cyber incident response (IR) lifecycle. Sector owners and operators can use this information to augment their respective IR plans and procedures. By empowering individual WWS Sector utilities, the authors of this guide--CISA, FBI, EPA, and the acknowledged federal government and WWS Sector partners--aim to drive improvements to cyber resilience and incident response across the WWS Sector."

From the document: "The healthcare sector is particularly vulnerable to cybersecurity risks and the stakes for patient care and safety are particularly high. Healthcare facilities are attractive targets for cyber criminals in light of their size, technological dependence, sensitive data, and unique vulnerability to disruptions. And cyber incidents in healthcare are on the rise. For instance, HHS tracks large data breaches through its Office for Civil Rights (OCR), whose data shows a 93% increase in large breaches reported from 2018 to 2022 (369 to 712), with a 278% increase in large breaches reported to OCR involving ransomware from 2018 to 2022. Cyber incidents affecting hospitals and health systems have led to extended care disruptions caused by multi-week outages; patient diversion to other facilities; and strain on acute care provisioning and capacity, causing cancelled medical appointments, non-rendered services, and delayed medical procedures (particularly elective procedures). More importantly, they put patients' safety at risk and impact local and surrounding communities that depend on the availability of the local emergency department, radiology unit, or cancer center for life-saving care. [...] This paper provides an overview of HHS' [U.S. Department of Health and Human Services'] proposed framework to help the healthcare sector address these cybersecurity threats and protect patients."