Blog
EMS Cybersecurity Insights & Resources
Supply-Chain Attacks Through Medical-Device Vendors
How the SolarWinds and Kaseya attack model applies to cardiac monitors, defibrillators, and EMR integrations in EMS.
Dark Web Monitoring for EMS Agencies: Signal, Noise, and Response
What dark web monitoring actually delivers for a public-safety agency, how to separate signal from noise, and what to do when a credential shows up in a paste.
Cybersecurity Budgeting for a 10-Truck EMS Service
A realistic line-item budget for EMS cybersecurity covering MFA, EDR, backups, IR retainer, and training.
Ransomware-as-a-Service and Why Small Agencies Are Now Targets
RaaS has made ransomware a volume business. Small EMS agencies are targets not because they are rich, but because they are reachable.
Building Security Culture Across 24/48 and 24/96 Shifts
The annual CBT slide deck does not survive shift rotation. Here is what actually works for fire and EMS.
Evaluating a vCISO Engagement Without Getting Sold Hours
I have sat through enough vCISO pitches to recognize the pattern. Here is how to evaluate based on what they produce, not hours billed.
Public-Safety Cyber Mutual Aid: The Idea Whose Time Has Come
How neighboring agencies can share incident response capacity the same way they share apparatus, with the legal and BAA structure that makes it work.
The Year-One Cybersecurity Plan for a New EMS Director
A 12-month roadmap for an EMS director inheriting an unknown security posture: what to assess, fix, budget for, and leave alone.
Account Takeover Through Password Reuse: The Attack Chain
How a LinkedIn breach becomes an ePCR breach through password reuse, and why MFA, credential monitoring, and an agency-issued password manager break the chain.
The Vendor Subprocessor Problem: When Your ePCR Vendor's Vendor Has Your PHI
Your ePCR vendor's BAA doesn't cover their subprocessors. Here is what to demand in your next contract.