Cybersecurity in Medicine: May Issue of the Cyber Digest of the Ministry of Health of Ukraine

Dear colleagues! With the aim of strengthening the cyber resilience of the healthcare sector, we are sharing with you the May 2026 issue of the «Cyber Digest of the Ministry of Health of Ukraine». This material gathers analysis of current cyber threats targeting Ukrainian state and medical sectors, as well as practical recommendations for strengthening the resilience of information and communication systems (ICS) in accordance with the requirements of relevant regulators.

Practical Recommendations for the Facility

For heads of healthcare facilities and state institutions: we recommend taking into account analytical assessments of business continuity risks. Particular attention should be paid to the need to revise contracts with external IT contractors, provide organizational support for the implementation of the Zero Trust architecture, and conduct planned cyber hygiene training for the institution's staff.

For IT departments and Information Security & Cyber Protection units: it is advisable to study in detail the technical recommendations and instructions provided in the materials. It is necessary to implement preventive measures at the Group Policy Object (GPO) level, in particular regarding the restriction of unauthorized scripts, configure corporate conditional access rules for unmanaged devices, ensure timely patch management of infrastructure services, and integrate fresh indicators of compromise (IoC) into local monitoring systems.

If you have any questions regarding the implementation of the recommendations, specialists from the Department of Digital Transformations and Innovations in Healthcare are always ready to provide methodological support.

Cybersecurity is an ongoing process and our shared responsibility. Thank you for your daily work in protecting data and infrastructure!