Intelligence
Market and threat intelligence — updated daily.
📈 Healthcare Breach Landscape
7
New today
141
Last 30 days
128M
Records 2026 YTD
By organization type (last 90d)
Hospital systems
38
Specialty practices
54
FQHCs
22
Dialysis networks
14
Imaging centers
19
Behavioral health
27
By state (top 10)
CA
47
TX
41
FL
38
NY
33
PA
28
IL
24
OH
22
MI
19
GA
17
NC
15
🛡️ Active Threat Intelligence
CISA AA25-103A — Healthcare ransomware advisory updated
CISA · Today
HHS posts 7 new breach filings affecting 1.2M records
HHS OCR · Today
Fortinet KEV CVE-2024-21762 weaponized in healthcare campaigns
BleepingComputer · Yesterday
OCR settles with Midwest hospital network for $2.3M
HHS · Yesterday
California AG announces enforcement sweep on imaging providers
OAG.CA.GOV · 2d ago
EHR vendor vulnerability status
Epic
stableNo active KEV
Cerner / Oracle Health
watchCVE-2024-39717 patch lag observed
Meditech
activeActive exploitation in mid-market hospitals
Allscripts / Veradigm
watchLegacy EHR config exposure
athenahealth
stable—
eClinicalWorks
activeReported credential stuffing wave
Most exposed ports in healthcare (Shodan)
RDP 33898,412
Telnet 232,901
MSSQL 14332,118
DICOM 1041,684
VNC 59001,402
SMB 4451,055
📅 Regulatory Calendar
- Dec 15HIPAA Security Rule update — risk analysis attestation due
- Jan 9CMS Information Blocking enforcement window opens
- Feb 1CMMC L2 deadline — defense contractor health orgs
- Mar 1OCR small breach reporting deadline (annual)
🌐 Market Intelligence
Highest fractional CISO demand
Midwest · Southeast · Mountain West
Fastest-growing subsectors
Behavioral health, FQHCs, dialysis networks
Avg fractional retainer
$13.4k / month
Full-time CISO benchmark
$380k–$415k total comp