The health sector is the 3rd sector most affected by cyberattacks, after local authorities and VSEs/SMEs according to ANSSI – National Agency for Information Systems Security. The Digital Health Agency recalls that “recent cyberattacks show that Internet exposure is one of the main vectors of penetration by attackers into the information systems of health establishments”. An action plan, called CaRE, aims to accelerate the upgrade of hospital information systems in the face of the threat situation and to sustainably strengthen the resilience of healthcare structures.
CaRE is putting in place financial aid (750 million euros until 2027) broken down into concrete areas of security: governance and resilience, resources and pooling, awareness, and operational security.
Although CaRE is not a mandatory system, we strongly recommend that healthcare establishments take advantage of the opportunity to fully finance an inventory and monitoring of their external attack surface a in order to sustainably strengthen their cybersecurity.
Exaface fully meets the ANS specifications for the Internet exposure audit of the CaRE program thanks to an adapted and simplified offer for an optimized budget. It covers the area of controlling exposure risks on the Internet:
✔️ Mapping and analysis of your exhibition space on the Internet
✔️ Regular scans with support from senior consultants (6 scans per year for the CaRE offer)
✔️ Report built specifically according to the requirements of the specifications
✔️ Transmission of results in json format to DNUM
Exaface is used today by many healthcare establishments and has already made it possible to sustainably strengthen control of their attack surface. Our intuitive interface, available in French, allows teams to use the tool very quickly and adapts to all levels of IT security knowledge.
