The Administration for Strategic Preparedness and Response (ASPR) 405(d) Knowledge on Demand program has made resources available to address the growing threat of social engineering in healthcare cybersecurity. These resources include PowerPoints, training videos, and more to help healthcare organizations better understand and combat social engineering attacks. Social engineering attacks involve manipulating individuals into revealing sensitive information, posing significant risks to the HPH sector. Common tactics include phishing emails, pretexting, and baiting, which exploit human trust to gain access to confidential data.
To combat this, ASPR emphasizes the importance of robust security practices, such as multi-factor authentication, regular employee training, and awareness campaigns to recognize and prevent these attacks. The initiative aims to educate healthcare organizations on how to protect patient data and minimize the risk of falling victim to social engineering tactics. For more resources on how to protect your organization from social engineering attacks, please visit the ASPR 405(d) website.