Cyber Survivor

Episode 33- What Happens To Patients When Clinics Get Hacked

A handwritten note on a doctor’s office door doesn’t sound like the start of a cybersecurity story until you realize the clinic can’t even tell you why they’re closed. I’m Dan Dotson, and I sit down with our second John Doe, who’s spent nearly two decades in healthcare cybersecurity, to unpack what it feels like when the crisis you usually defend against suddenly hits you as a patient. John walks us through the surreal details: an eerily empty parking lot, dark hallways, no call despite an appointment confirmed the day before, and a weekend of waiting with unanswered questions. When he finally reaches the office, he hears the words no patient wants to hear: “We got hacked.” From there, we dig into the real-world impact of a clinic cyberattack, including delayed care, postponed referrals and tests, and the mental load of wondering whether your protected health information is exposed. We also get specific about what healthcare leaders can do better: incident response plans that include patient communication, scripts and training for front-desk teams, escalation paths for tough calls, and a thoughtful approach that protects trust while facts are still emerging. If you care about healthcare cybersecurity, ransomware resilience, patient safety, or HIPAA-era communication, this story connects the technical and human sides in a way that sticks. Subscribe to Cyber Survivor, share this with someone who works in healthcare, and leave a review so more people hear how cybersecurity protects patients. What would you expect your clinic to say if their systems went down?

Episode 32- A Patient’s Story From Inside A Ransomware Attack

The scariest words in a hospital shouldn’t be “systems are down,” but that’s exactly what John hears while he’s lying in a bed with crushing pain, fever, and doctors worried an infection could be moving toward sepsis. He came in expecting fast answers and coordinated care. Instead, he watches a modern emergency workflow buckle under a ransomware incident, and he feels the emotional whiplash that comes when patient safety suddenly depends on clipboards, phone calls, and memory. We talk through what a healthcare cyberattack looks like from the patient’s side: staff scrambling to find orders they can’t see, “shortly” turning into long delays for antibiotics, lab results arriving slowly or needing retesting, and the constant uncertainty of not knowing what comes next. John describes how electronic health record downtime changes the tone of care, not because clinicians stop caring, but because systems that normally keep treatment organized and safe are no longer available. The result is a roller coaster of fear, especially when every minute feels like it matters. Then we follow the story past the hospital stay. John ends up admitted longer than expected, leaves with shaken confidence in the health system, and receives no post-discharge outreach or apology. That silence becomes part of the lasting impact, raising a hard question for healthcare cybersecurity leaders, IT teams, and administrators: how do we rebuild trust after ransomware, and how do we communicate in a way that supports patients without creating more confusion? If you care about ransomware defense, incident response, patient safety, and cyber resilience in healthcare, listen now, then subscribe, share the episode with someone in healthcare, and leave a review so more people hear what downtime really costs.

Episode 31- Healthcare Downtime Ready. With Dr. Mark Yoffe, MD

A hospital can survive a lot, but it cannot treat patients when core clinical systems go dark. We sit down with Dr. Mark Yoffe, a physician who also thinks like a cybersecurity leader, to unpack what healthcare cyber risk really looks like from the bedside. As electronic health records replaced paper charts, care got faster and more coordinated, but the blast radius of outages, ransomware, and credential theft grew right along with it. The result is a modern truth most communities now feel: cybersecurity is not just about data, it is about keeping care available. We use the confidentiality, integrity, and availability triad as a practical lens for clinicians and IT teams. Why do physicians often prioritize availability in the ED and ICU? How do security controls like multifactor authentication support uptime, not just privacy? And what does real downtime readiness look like when a team is busy, short-staffed, and under pressure? Dr. Yoffe shares concrete steps that help: clearer downtime alerts, knowing exactly what systems are affected, paper forms staged throughout the hospital, and a plan for post-downtime reconciliation so the record stays accurate. We also dig into what actually wins physician buy-in. Instead of leading with restrictions, start by solving access and workflow pain points and show how security enables reliable clinical operations. From safer device habits and avoiding insecure SMS texting to case-based training that mirrors how clinicians learn, we outline education that sticks. Finally, we explore AI in healthcare documentation: where it can cut charting time, where privacy and cloud processing raise red flags, and why keeping a human in the loop protects record integrity. If you care about patient safety, healthcare cybersecurity, EHR downtime planning, and the future of AI in clinical workflow, hit subscribe, share this with a colleague, and leave a review with your biggest question about cyber readiness.

Episode 30- When The Hospital Screens Go Dark. With Jane Doe

The scariest part of a healthcare cyberattack isn’t the headline. It’s the quiet moment a clinician realizes they can’t register a patient, scan a medication, verify a dose, or send a lab order and the waiting room is still filling up. We sit down with an anonymous frontline nurse we call Jane Doe and walk through what “normal” looks like in a busy pediatric clinic: constant triage, newborn and well visits, vaccines, sick kids, and nonstop coordination. Then the systems go dark. No EHR, no barcode scanning, no electronic medication checks, no easy way to move information. Care doesn’t stop, but it slows and every workaround carries risk. Jane explains what paper charting feels like today, why newer doctors and residents can be thrown off by manual processes, and how stress shifts from “can we do this?” to “can we do this safely and on time?” We also zoom out to the bigger healthcare cybersecurity story: why downtime planning matters, how hospitals redeploy staff to keep labs and floors running, and why “cybersecurity is a dollar away from the bedside” is a real budget fight with real patient safety consequences. Jane shares how the experience changed her view of how fragile health systems can be and reflects on how nursing has evolved from family-centered care to a faster throughput model that can make cyber disruption hit even harder. If you care about patient safety, hospital resilience, ransomware risk, and practical incident response in healthcare, listen now. Subscribe to Cyber Survivor, share this story with a colleague, and leave a review so more people hear what cyber events really do to care.

Episode 29- From Cold War Deterrence to Healthcare Defense

In this episode of Cyber Survivor, host Dan Dotson speaks with Dr. Richard Hartnett, co-director of the Ohio Cyber Range Institute, about shifting cybersecurity from a compliance checkbox to a proactive, organization-wide business practice. They discuss the theory of persistent engagement, tailored training for different hospital roles, the growing threat from financially motivated ransomware groups, and how AI and algorithmic agents will change both offense and defense. Listeners will learn practical approaches to prioritizing critical systems, building hunt teams, and embedding cybersecurity into everyday healthcare operations to better protect patients and maintain care continuity.