Proactive Steps For Healthcare CIOs Amid Oracle Security Concerns
Oracle informed some of its healthcare customers about a breach earlier this year. A separate incident report indicates hackers accessed Oracle servers and have access to sensitive data.
The hacker claimed to have data that contained the following:
Oracle has not publicly responded to the incident yet, but healthcare CIOs who are Oracle customers must take the following steps now.
CIOs must work with their organizations to reset all single sign-on and LDAP passwords, prioritizing privileged accounts such as system administrators. This is an opportunity to remind everyone of the policy, emphasizing strong passwords and the need for every organization to have Multi-Factor Authentication (MFA) in place.
Technology leaders must work with Oracle to regenerate and replace all compromised JPS and JKS keys to prevent unauthorized access to Oracle Enterprise Manager. Unfortunately, this exercise will cause business disruption and downtime.
The organization's system administrator must thoroughly analyze authentication logs, system access records, and other relevant logs to detect unauthorized activities or anomalies within the network environment and the Oracle instance. Real-time monitoring solutions should also be deployed to continuously detect and respond to suspicious activities. Access controls should be reviewed and tightened according to the principle of least privilege to minimize potential attack surfaces.
Two security basics have to be part of IT's DNA. The IT system administrator must perform routing Patch Management: Ensure all systems are updated with the latest security patches to protect against known vulnerabilities. The Oracle incident stems from the speculation that exploited a vulnerability in the Oracle Access Manager.
Every security incident is a learning moment. Organizations must swiftly educate employees about the critical importance of cybersecurity. Use the incident to reinforce best practices such as creating strong passwords, recognizing phishing attempts, and staying vigilant online. By turning these events into opportunities for education, CIOs can strengthen their organization's defenses and embed security awareness into the culture at every level.
CIOs must actively partner with marketing and legal teams to plan the next steps. They should prioritize internal communication by promptly informing all relevant stakeholders about the breach, outlining the actions underway, and clarifying any steps employees must take. At the same time, communication leaders must prepare for external communication to patients—and possibly Health and Human Services—if the breach affects more than 500 individuals, as required for covered entities. This stage may also be the right time to activate the organization's cyber insurance policy to ensure full compliance with all protocols and avoid missing critical steps in the response process.
At this stage, with Oracle remaining silent on both incidents, healthcare CIOs must take a proactive stance. As third-party security risks continue challenging organizations, CIOs must strengthen their oversight and response strategies. These types of incidents are becoming increasingly common across the enterprise, making it critical to stay ahead of potential vulnerabilities.
Hashtags
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
Business Upturn
a day ago
- Business Upturn
Spinnaker Support Delivers Global Double-Digit Growth Fueled by Enterprise Scrutiny of Traditional Vendor Relationships
Denver, United States: -Oracle, SAP and VMware third-party software support specialist gives enterprises time and options to consider their digital strategy- -Spinnaker adds global enterprises to growing client roster including BT, Telefónica Germany and more- -SAP, Oracle and VMWare vendor support divisions deliver continued growth as enterprises trust Spinnaker to maintain core IT infrastructure- Spinnaker Support (Spinnaker), the third-party software support leader entrusted by 1,000+ global clients, today announced that the growing market for reliable, trustworthy and strategic global third-party support has fueled double-digit growth across its business. Spinnaker's support for enterprise SAP, Oracle and VMWare deployments is giving the C-suite valuable breathing room, by avoiding costly vendor lock-in, to make digital transformation decisions to their own timescales, while also securely maintaining legacy systems. Notable recent client wins include BT (Oracle), Telefónica Germany (Oracle/VMware), Madrileña Gas (SAP), Specsavers (Oracle), Bombardier Recreational Products (SAP) and Abercrombie & Fitch (Oracle). Spinnaker's key verticals include manufacturing, utilities, telecommunications, financial services, and banking. Spinnaker's Oracle support reaches new heights Spinnaker's Oracle support continues to grow globally. In March 2025, Spinnaker announced it will be providing support for major telco BT Group's on-premise Oracle applications in use across the Group's technology estate. The engagement spans a wide range of critical Oracle applications and sees Spinnaker providing escalated support on key databases and applications within BT Group. In addition, Spinnaker has also signed Specsavers, Telefónica Germany, and Abercrombie & Fitch for multi-year support contracts. Alternative option for SAP customers being pushed towards RISE On the SAP side of its business, Spinnaker provides organizations with an alternative support option as SAP continues to push customers towards RISE. In February 2025, Spinnaker announced that BRP , a global leader in the world of powersports products, propulsion systems and boats, has selected Spinnaker to provide third-party software support across its SAP applications and technologies. The five-year deal with Spinnaker gives BRP dedicated third-party software support to ensure that SAP Applications and Tech with Global Tax & Regulatory Compliance are maintained across the company's operations in 22 countries. In EMEA, Madrileña Red de Gas, one of Spain's key utility companies, has freed up investment for innovation projects across the organization by outsourcing its entire SAP maintenance support to Spinnaker. With a desire to maintain its current SAP environment but with SAP maintenance costs rising. The last 12 months has also seen Spinnaker expand its service offering in a number of ways: Spinnaker launched its VMware support offering after listening to customer concerns following Broadcom's VMware acquisition In July 2024, Spinnaker launched its VMware support option, in response to market demand for innovative, up-to-date and flexible support offerings. Interest remains high as VMWare customers reject being forced to switch from a perpetual license model to a costly subscription alternative. Advantages of switching to Spinnaker's VMware offering include the avoidance of forced subscription models, maintaining security and compliance requirements. In less than 12 months, Spinnaker's new VMware division has contracted multiple new customers including Telefónica Germany, Quebec Airport and Specsavers. Spinnaker Cloud Managed Services launched: empowering organizations to modernize on their own terms In March 2025, Spinnaker launched Spinnaker Cloud Managed Services – a new offering that allows an organization to actualize its cloud strategy without having to move away from the legacy system(s) their business is built upon. Spinnaker Cloud Managed Services supports Oracle and SAP, environments across both legacy and cloud platforms, delivering a high-touch service with expert management. Partnerships: Channel vendors embrace Spinnaker's offering As Oracle, SAP and VMware customers are being pushed to subscription licensing consultancy, software and licensing partner companies are including Spinnaker Third-Party Software Support to enhance their offerings. New partners include Avanade, SoftwareOne, Preo-Soft, 2Data, joining IBM, Prolicense and other global vendors to enable their customers to take control of their digital future. Security: As security and audit compliance continue to lead to CIO concerns, Spinnaker Shield's holistic approach ensures stability. As the digital world is increasingly under attack from cyber threats, this is causing companies to close ranks and keep their data on-premise, or at the very least hosted in their home country. This is at odds with the major software vendors driving applications onto their cloud platforms. Spinnaker can keep its customers' data secure and optimized on-site and avoid risky migrations and unknown threats. Matt Stava, CEO of Spinnaker Support said: 'The market for third-party software support is growing fast and so is Spinnaker Support. We have seen global brands make the jump and entrust Spinnaker Support with their on-going software support needs. Our personal, consultative and experienced global experts give enterprises the ability and time to move at their own pace, not that of the software vendors support offerings, while realizing significant cost benefits as they decide on their future digital strategies.' Spinnaker offers 'The Ultimate Support Guarantee', an industry-first agreement designed to mitigate any perceived risks associated with switching away from Oracle, SAP or VMware support. For more information about Spinnaker Support, visit . About Spinnaker Support Spinnaker Support delivers global, independent third-party software support for Oracle, SAP, and VMware, along with managed services and cloud solutions for Oracle and SAP. Trusted by companies worldwide, including those in highly regulated industries, Spinnaker empowers organizations to take control of their IT strategy. By breaking free from vendor-imposed roadmaps, aligning software management with business objectives, reducing costs, and maximizing ROI, Spinnaker provides customers with the power of choice. With a strategic approach to security, performance, resource allocation, and managed services, Spinnaker Support ensures long-term IT efficiency and success. View source version on Disclaimer: The above press release comes to you under an arrangement with Business Wire. Business Upturn takes no editorial responsibility for the same.
Yahoo
a day ago
- Yahoo
The 6 a.m. CFO: How Rimini Street's Michael Perica starts his day
This story was originally published on To receive daily news and insights, subscribe to our free daily newsletter. Welcome to The 6 a.m. CFO, where finance chiefs share how they jump-start their days and engage with the tasks that are in front of them. Today, Rimini Street's CFO, Michael Perica, shares his morning routine. Be sure to check out the entire 6 a.m. CFO series, and if you'd like to be featured in a future post, please email us here. A global provider of end-to-end enterprise software support and innovation solutions and the leading third-party support provider for Oracle, SAP and VMware software. Year founded: 2005 Number of employees: Over 2,000 Revenue: $ 400M+ Weekday wake-up time: My daily wake-up time is 6:30 a.m. Morning beverage choice: I am a fan of simple black coffee in the morning to get my day going. Non-work-related morning activities: I am very fortunate to be able to get my daughter ready and take her to elementary school most mornings. My daughter is a big 'Swiftie.' Not only do we go to Taylor Swift concerts together, but every morning that I drive my daughter to school, we sing along to her songs too. It's a wonderful morning when we can listen to Taylor Swift's music together, and an even better morning when we just chat. Workday start time: I like to begin my day between 7:30 a.m. and 8 a.m. Depending on whether I have school drop-off duty. How I usually spend the first hour of my day: I start my day by reviewing all the emails that came in overnight. Most of my company's business is international, so it's my priority to review the 30 or 40 emails that came in from our partners and customers across the globe. When I send out my first email: I like to send my emails out late in the evening, versus starting off the day sending them. I prefer to have my emails in the recipient's inbox before they log in the next day. This is a global strategy for me. Best advice for writing an effective email: Brevity and summary. An email's primary function is to share data. You're better off discussing and reviewing that data in person or on a call. First dashboard I review: I first look at how we're trending on new bookings. How I structure my morning meetings: I prefer to use minimal PowerPoint slides that include sets of data. I like to have my meetings structured around a pre-set list of key discussion points and tackle those with my teammates. Of course, making sure my camera and everyone else's is on to increase engagement. Mid-morning snack of choice: I enjoy a banana mid-morning. They fill me up and keep me energized. Tell us about a recent morning that didn't go as planned and how you adjusted: If your mornings are going exactly as planned, something's not right. Having a morning go as planned is a rare blessing. Throughout my career, I've learned the importance of adaptability and the ability to adjust. To do that effectively, I need to prioritize. New priorities can emerge overnight, so being able to prioritize is essential for staying on top of the most important tasks. Favorite quote or mantra: I have an acronym — DOTI. This means, don't overthink it. I sometimes have team members who get on the phone with me and ask me, 'Is this a DOTI situation?' And most often it is. Favorite leadership lesson: Most effective leaders have humility, they can motivate and they are persistent. In my career, I've found those traits present in the most effective leaders that I have worked with. Something important to know about me that you wouldn't know from my business bio: I am a Formula 1 junkie, and I enjoy skiing with my daughter. My wife doesn't ski, so it's special for me and my daughter. It's our thing. Or, one of our things, aside from our Taylor Swift sing-along sessions. Favorite number: 1057. This is the time my daughter was born. Ten fifty-seven a.m. to be exact. Not many people know what time they were born, and this is how I remember it for her. Most noteworthy items in my workspace: My chair. I had back surgery back in the day, and a chair is the most important item for those who sit during the day. I have tried all the high-end chairs, but the most comfortable chair I found and still use is a chair from IKEA. That's another lesson I've learned over the years: just because it costs a lot doesn't mean it's great. Do you have a pet? I do not. My wife and I travel frequently for work, and we also travel a lot as a family. But it may be a possibility in the future. Favorite app on my phone that is not related to business: The F1 app, where I can watch F1 with Sam Collins. This app really lets me dive into my lifelong hobby of cars and my fascination with car racing. The year, make and model of your first car: A 1992 Mustang GT convertible. A switch-up from my current car, which is a Mercedes 4-door. It is still a sports car, but safe and comfortable for my daughter and wife. Most influential person you've ever met: That would be the first individual I worked for. His name was Ernie Olde. He's passed now, but he was a stand-up man. He gave me wonderful career advice while I was working on my undergrad. There's actually a podcast where I discussed The Billionaire's Apprentice, and it was written about my relationship with Ernie. He, very early in my career in capital markets, opened my eyes to the opportunity. I was fortunate to learn from the captains of industry in the C-suite, and this changed my direction as a professional from that point forward. Most inspirational person in your life: My father. He left Yugoslavia post-World War II to join the U.S. military and make it to the U.S. It was illegal to leave that country during that time, and he took a big risk. I am where I am because of his bravery. He had to leave his family in his late teens and truly build a new, better life for himself. Recommended Reading The 6 a.m. CFO series Error while retrieving data Sign in to access your portfolio Error while retrieving data Error while retrieving data Error while retrieving data Error while retrieving data
Yahoo
a day ago
- Yahoo
Kentucky's bourbon business is vital to our economy. Don't let DC dry it up.
Kentuckians, like all Americans, should be deeply concerned about the troubling developments that have been unfolding behind closed doors in Washington, D.C. Anti-alcohol activists are attempting to seize control of the Dietary Guidelines for Americans on alcohol, potentially inflicting significant harm on our state's economy and our way of life. The Kentucky beverage retail industry is a vital part of our state's economy, with direct retail alcohol sales supporting more than 17,000 jobs and contributing $1.4 billion in economic activity. Many of these businesses are small, family-run operations with tight margins, whose livelihoods are directly threatened by this opaque and potentially damaging process. These activists are pushing for radical changes, advocating that no level of alcohol consumption is safe and pushing for a limit of a mere one drink per week or less. This extreme position flies in the face of established scientific consensus. Opinion: Mid City Mall development can help rebuild our shrinking Highlands community Disturbingly, the process has been tainted by questionable practices. During the Biden administration, anti-alcohol activists appear to have gained undue influence, creating a separate panel not authorized by Congress that disregarded the scientific consensus. They selectively interpreted studies to align with their predetermined ideological agenda. Thankfully, our own Rep. James Comer, chairman of the House Oversight Committee, has been a tireless advocate for transparency and sound science in this process. He has been dogged in his investigation into the development of these alcohol consumption guidelines, exposing this opaque approach where unelected bureaucrats, many with foreign affiliations, are crafting policy behind closed doors. Rep. Comer's recent letter to Robert F. Kennedy Jr., the secretary of Health and Human Services, and Brooke Rollins, the secretary of agriculture, highlights the critical flaws in this process. He rightly pointed out how 'these overlapping evaluations went outside of the congressionally mandated review processes and issued conflicting guidance to the American public.' Rep. Comer's commitment to ensuring the dietary guidelines for alcohol are based on 'rigorous, sound, and objective scientific evidence, efficiently steward taxpayer dollars, and adhere to congressional intent' is commendable. Gerth: Trump's big budget bill sparks debate with Massie. Can't they both lose? | Opinion Rep. Brett Guthrie is also to be commended for his leadership on this issue. Rep. Guthrie has been a strong voice for Kentuckians and has worked diligently to ensure that the dietary guidelines are based on sound science and not on ideological agendas. Secretaries Kennedy and Rollins have the power to halt this concerning process and restore integrity to the development of these crucial guidelines. We urge them to act swiftly and decisively. Until they do, it is imperative that our entire Kentucky delegation, including our senators and representatives, continue to shine a light on this issue and demand transparency. They must make it clear that bias, conflicts of interest and cherry-picked science have no place in the dietary guidelines that impact millions of Americans. Tell us what you think. Submit a letter to the editor. Brian Edwards is the co-owner of Cellar Door Wine & Spirits and Thoroughbred Spirits in Murray, Kentucky. This story was updated to add a gallery. This article originally appeared on Louisville Courier Journal: KY, demand alcohol guidelines based on science, not bias | Opinion
