Beyond Vulnerability Scanners: 10 Ways Attackers Exploit Healthcare Networks



Join BreakPoint Labs' offensive security experts as we unveil 10 ways adversaries compromise large-scale healthcare environments—techniques that go undetected by standard security tools but are actively leveraged by attackers. Through real-world examples and expert insights, we will expose gaps in common security approaches, highlight weaknesses that pose the greatest risk to patient data and operations, and offer practical steps to mitigate these threats.

 

By the end of this session, attendees will have a clearer understanding of the attack methods actively being used against healthcare organizations today and actionable strategies to strengthen their defenses before a breach occurs.

 

 

Understand the Limitations of Vulnerability Scanners

  • Discover why standard vulnerability scanning tools fail to detect the most critical security risks in healthcare environments.
  • Learn how adversaries exploit overlooked weaknesses to gain unauthorized access and escalate privileges.

Identify the Top 10 Exploited Vulnerabilities in Healthcare IT

  • Gain insights into the most common attack techniques, including Active Directory certificate abuse, Kerberoasting, relay attacks, and web application flaws.
  • Learn how attackers leverage weak passwords, misconfigurations, and network shares to achieve full domain compromise.

Implement Practical Defensive Strategies to Reduce Risk

  • Learn how to proactively audit passwords, secure Active Directory, and detect sophisticated attacks before they escalate.
  • Explore effective mitigation techniques, including stronger authentication controls, improved network monitoring, and hardening security configurations.

 

This webinar is for cybersecurity professionals and decision-makers managing sensitive data or complex networks. Whether in healthcare, higher education, finance, government, or tech, if you're responsible for protecting networks & digital assets, this session is for you.

Speaker and Presenter Information

Andrew McNicol has served as the Chief Technology Officer of BreakPoint Labs since helping co-found the company in 2015. He oversees the communication and implementation of the organization’s technical strategy, including offensive security tools and services. He also manages the Cybersecurity Assessments line of business. Andrew has significantly contributed to ensuring mission success, including developing tactics, techniques, and procedures (TTP) for high-profile cyber red team engagements, securing our nation’s critical infrastructure. Andrew commits himself to helping clients design and execute large-scale network penetration testing efforts, ones that highly mirror actual adversarial behavior, to reduce risk to their mission effectively. With over 15 years of experience, Andrew has led numerous technical workforces on red team operations, vulnerability assessment, and penetration testing engagements to meet each client’s unique goals. He is also a recognized expert in adversarial penetration testing — working closely with BreakPoint Labs Team Members to ‘adopt an attacker’s mindset’ and continuously develop and hone their technical skills. Before co-founding BreakPoint Labs, Andrew led a large-scale pen testing as a service team. He also worked on the cyber incident response team at Parsons Corporation — specializing in malware analysis and network forensics for the DoD, law enforcement, and commercial clients. Andrew frequently speaks at Government and industry forums where he covers topics like advanced penetration testing techniques that go beyond automated tools and how to start and grow a career in information security. Andrew has a Master’s degree in Information Assurance from Capitol Technology University and a Bachelor’s degree in Information Systems from Towson University. He also holds numerous professional certifications, including OSCE, OSCP, OSWP, GICSP, GCFA, GCIA, GCIH, GPEN, GREM, GSEC, GWAPT, GWEB, CISSP, and CEH.

Relevant Government Agencies

Dept of Health & Human Services, State Government, Municipal Government, State & Local Government, Healthcare


    Event Type
    Webcast


    This event has no exhibitor/sponsor opportunities


    When
    Tue, Apr 8, 2025, 12:00pm - 1:00pm ET


    Cost
    Complimentary:    $ 0.00


    Website
    Click here to visit event website


    Organizer
    BreakPoint Labs


    Contact Event Organizer


    Join the event conversation:
    #Cybersecurity #HealthcareSecurity #Infosec #PenTesting #VulnerabilityManagement #Webinar #EthicalHacking #SecurityTesting #RedTeam #BlueTeam #CTOInsights #CyberResilience #RiskManagement #ZeroTrustSecurity #DataProtection #HealthcareIT


    Return to search results