{"id":243131,"date":"2026-07-14T11:50:00","date_gmt":"2026-07-14T15:50:00","guid":{"rendered":"https:\/\/testing.news-you-need.com\/index.php\/2026\/07\/14\/healthcare-sector-faces-persistent-supply-chain-security-identity-management-challenges\/"},"modified":"2026-07-14T12:20:14","modified_gmt":"2026-07-14T16:20:14","slug":"healthcare-sector-faces-persistent-supply-chain-security-identity-management-challenges","status":"publish","type":"post","link":"https:\/\/testing.news-you-need.com\/index.php\/2026\/07\/14\/healthcare-sector-faces-persistent-supply-chain-security-identity-management-challenges\/","title":{"rendered":"Healthcare sector faces persistent supply-chain security, identity management challenges"},"content":{"rendered":"<p><a href=\"https:\/\/www.cybersecuritydive.com\/news\/healthcare-cybersecurity-risk-management-identity-fortified\/825175\/\">Healthcare sector faces persistent supply-chain security, identity management challenges<\/a><\/p>\n<p><a href=\"https:\/\/www.cybersecuritydive.com\/news\/healthcare-cybersecurity-risk-management-identity-fortified\/825175\/\">https:\/\/www.cybersecuritydive.com\/news\/healthcare-cybersecurity-risk-management-identity-fortified\/825175\/<\/a><\/p>\n<p>Publish Date: <a href=\"publish_date]\">2026-07-14 11:50:00<\/a><\/p>\n<p>Source Domain: <a href=\"www.cybersecuritydive.com\">www.cybersecuritydive.com<\/a><\/p>\n<p>Author: <a href=\"\"><\/a><\/p>\n<p> Using an unordered list, summarize the following article with between 4 and 8 key points. <\/p>\n<p>Dive Brief:<\/p>\n<p>Dive Insight:<br \/>\nHealthcare organizations face one of the largest volumes of cyberattacks of any critical infrastructure sector, and those intrusions can also be some of the costliest. The new data from Fortified paints a picture of a healthcare industry struggling to combat ransomware attacks and other security compromises.<br \/>\nIn the first half of 2026, according to the report, the average healthcare organization encountered 60% more vulnerabilities rated critical or high on the severity scale than in the first half of 2025. Organizations are discovering more problems than they can fix. \u201cThis isn\u2019t the story of a single catastrophic breach,\u201d researchers wrote. \u201cIt\u2019s the story of visibility outpacing capacity.\u201d<br \/>\nTwo areas of cybersecurity continue to bedevil healthcare providers the most: supply-chain risk management, and identity management and access control.<br \/>\nOrganizations identified six times more supply-chain risks in the first half of 2026 than they did in the first half of 2025, Fortified said. Nearly two-thirds of those risks constituted critical or high-severity vulnerabilities. Hospitals and other healthcare facilities rely on dozens of technology vendors, from hardware manufacturers to software developers, and as the Change Healthcare crisis demonstrated, a breach at any one of those suppliers could have cascading effects throughout the industry. \u201cAssessments are exposing third-party risk gaps that many healthcare organizations have no current program to address,\u201d the report said, \u201cand they are struggling to remediate them once they are identified.\u201d<br \/>\nProtecting user accounts from compromise and misuse remains an equally stressful challenge for healthcare organizations, many of which lack the security personnel to carefully track employees\u2019 arrivals and departures and either provision or deactivate their accounts accordingly. The presence of traveling nurses and contract physicians in many healthcare facilities makes these access-control challenges even more daunting, particularly for small providers.<br \/>\nHealthcare organizations identified four times more vulnerabilities related to identity and access control during the first six months of 2026 than they did during the same period in 2025, according to Fortified\u2019s report.<br \/>\n\u201cWe\u2019re seeing real improvement in the organizational processes around Identity and Access Management (IAM),\u201d researchers wrote, \u201cbut the underlying work, authenticating users, services, and hardware, and protecting, conveying, and verifying identity assertions, continues to challenge teams.<br \/>\nIn the first half of 2026, 92% of healthcare network domains had an administrator account with a password that hadn\u2019t been updated in more than three years, according to Fortified.<br \/>\nWhile the new report discusses many security challenges, it places particular emphasis on identity.<br \/>\n\u201cIdentity maintenance will never be the exciting part of cybersecurity,\u201d Fortified said. \u201cIt is a quiet, extremely critical part of it though: it closes the doors most attackers walk through.\u201d<br \/>\nThe report also covers security mitigations for legacy medical devices. \u201cContain what you can\u2019t replace,\u201d Fortified said of end-of-life equipment such as MRI machines, urging providers to place such equipment behind strict firewalls and to \u201cnever, never\u201d run outdated equipment on domain administrator accounts. \u201cOne forgotten, over-privileged system is all an attacker needs to move laterally across everything else.\u201d<br \/>\nAnother emphatic recommendation addresses incident-response preparedness.<br \/>\nHealthcare organizations are used to crises, but responding to cybersecurity incidents takes practice. Fortified said providers need to build \u201coperational muscle memory\u201d before breaches so they can respond effectively and in a coordinated way.<br \/>\nDoctors, nurses and their staff should train for cyberattacks like firefighters, Fortified said. Even rural fire departments that rarely deal with major blazes maintain the equipment, personnel, and training standards necessary to respond to much larger crises. Healthcare facilities should follow the same approach, according to Fortified.<br \/>\n\u201cEmergency responders understand something deeply important: probability does not change responsibility,\u201d researchers wrote. \u201cEventually, a serious incident will occur. The only question is whether the organization is operationally prepared when it happens.\u201d<\/p>\n<p><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Healthcare sector faces persistent supply-chain security, identity management challenges https:\/\/www.cybersecuritydive.com\/news\/healthcare-cybersecurity-risk-management-identity-fortified\/825175\/ Publish Date: 2026-07-14 11:50:00 Source&#8230;<\/p>\n","protected":false},"author":1,"featured_media":243132,"comment_status":"closed","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/imgproxy.divecdn.com\/Z8MkCVLvvcs-ryCxVchNnvUK0yzAYO2qaLP8EVKxytA\/g:ce\/rs:fit:770:435\/Z3M6Ly9kaXZlc2l0ZS1zdG9yYWdlL2RpdmVpbWFnZS9TUl9GaXJzdF9wcm9jZWR1cmVfaW5fS29yZWEuanBn.webp","fifu_image_alt":"","footnotes":""},"categories":[15],"tags":[30,24],"class_list":["post-243131","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybersecurity","tag-breach","tag-cybersecurity"],"_links":{"self":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/243131"}],"collection":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/comments?post=243131"}],"version-history":[{"count":1,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/243131\/revisions"}],"predecessor-version":[{"id":243133,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/243131\/revisions\/243133"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/media\/243132"}],"wp:attachment":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/media?parent=243131"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/categories?post=243131"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/tags?post=243131"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}