Decoder with Nilay Patel

Never pay the ransom — a cybersecurity CEO explains why

Oct 27, 2022

Steve Cagle, CEO of Clearwater Compliance, shares his expertise on cybersecurity in the healthcare industry. He reveals the staggering value of patient data on the black market, emphasizing how a single record can sell for much more than a credit card number. The conversation dives into the impact of ransomware attacks and the crucial need for hospitals to invest in robust security measures. Cagle also discusses regulatory challenges and the importance of compliance to safeguard sensitive information in an evolving cyber threat landscape.

01:06:11

Episode guests

Steve Cagle

Highlights

AI Chapters

Episode notes

Clearwater HIPAA Compliance - What Is It?

02:58

Impact of Ransomware Attacks on Healthcare System

01:26

Strategic Priorities

02:25

IT budget spending on security in healthcare vs financial industries

01:21

Intro

3min

Cybersecurity in Healthcare: Risks and Compliance

9min

Navigating Cybersecurity in Healthcare

22min

Cybersecurity Challenges Amidst Healthcare Consolidation

4min

Cybersecurity Challenges in Healthcare Technology

7min

Taking Control of Personal Data Security

2min

Cybersecurity Growth Through Strategic Acquisitions

6min

Navigating Competition in Healthcare Cybersecurity

2min

Cybersecurity Strategies in Healthcare Managed Services

10min

10.

Wrapping Up a Cybersecurity Conversation and Staying Safe Online

2min

Steve Cagle is the CEO of Clearwater Compliance, which is a cybersecurity firm focused on the healthcare industry. Basically, they lock down hospital computer systems, which contain a huge amount of personal data, and are so mission critical that ransomware attackers know that hospitals are more likely to just pay up. If the cryptocurrency explosion has accomplished anything, it’s making ransomware attacks easier and more lucrative for bad guys.

Steve told me there’s so much personal information in a hospital system that a single patient’s record can sell for a huge premium over somthing like a credit card number. And we talked about amount of regulation needed to secure that data and that some insurance providers require hospitals to have a minimum level of security, or they won't be covered. It's a fascinating one.

Links:

Cyber Security Week 2022

Penetration test

Cyberattack delays patient care at major US hospital chain

Average Healthcare Data Breach Costs Surpass $10M, IBM Finds

Transcript:

https://www.theverge.com/e/23175031

Credits:

Decoder is a production of The Verge, and part of the Vox Media Podcast Network.

It was produced by Creighton DeSimone and Jackie McDermott. Research by Liz Lian and it was edited by Jackson Bierfeldt.

The Decoder music is by Breakmaster Cylinder. Our Sr Audio Director is Andrew Marino and our Executive Producer is Eleanor Donovan.

Learn more about your ad choices. Visit podcastchoices.com/adchoices