The digital environment of healthcare administration, clinics, hospitals, and patients has become increasingly vulnerable as medical treatment becomes more networked and connected via computers and devices. Healthcare cyberattacks are projected to impact over 100 million people in 2023. According to John Riggi, national advisor for cybersecurity for the American Hospital Association, although attacks may not be more frequent, they are causing greater harm and impacting a larger number of individuals. Many hospitals are hesitant to report breaches, especially if they have paid ransomware. For instance, Ann & Robert H. Lurie Children’s Hospital in Chicago recently experienced a breach that led to the shutdown of their email, phone, and medical record systems, impacting over 220,000 patients. Additionally, the ALPHV/BlackCat ransomware group targeted Optum, a UnitedHealth Group affiliate, resulting in the theft of sensitive data including personally identifiable information, medical records, payments information, and more.
Healthcare has become a primary target for cybercriminals due to the increasing vulnerability of the digital environment in the industry. The rise in remote work during the Covid-19 pandemic has led to more cyberattacks targeting healthcare. The use of artificial intelligence in the industry has also contributed to more complex cyberattacks in 2023. The cybersecurity landscape in healthcare must protect patient privacy, medical equipment and device security, and hospital information networks. The cornerstone of healthcare cybersecurity includes people, procedures, and technology, similar to other industries in the digital era. Medical devices, such as respirators, monitors, and imaging systems, are particularly vulnerable to cyber threats due to their wireless and open communication capabilities, creating potential remote exploit vectors.
Ransomware attacks remain a preferred method for criminal hackers targeting healthcare facilities due to the potential financial rewards. Hospitals and healthcare facilities are often willing to pay ransoms to regain operational control and protect patient safety, as well as safeguard their reputations by keeping cybersecurity issues private. A survey by Sophos found that 34% of healthcare businesses worldwide reported experiencing ransomware attacks, with 57% of those not affected but anticipating future attacks due to the experiences of other healthcare-related firms. The increasing sophistication of ransomware attacks makes them more challenging to stop. Improving risk management, investing in cybersecurity, practicing good cyber hygiene, and implementing comprehensive security measures are essential steps for protecting hospitals and healthcare institutions from cyber threats.
Risk management is crucial for safeguarding hospitals and healthcare institutions against cyberattacks, along with government leadership, technology, and industry standards. Healthcare facilities must employ intrusion detection and response capabilities, conduct regular security assessments and penetration testing, and enhance cybersecurity training for staff. Multifactor authentication, multilayer security, encryption of medical devices, and backup and recovery plans are recommended security measures to mitigate the impact of cyber threats. Governments play a vital role in protecting the healthcare sector by increasing the capacity of law enforcement agencies and promoting international cooperation for addressing cyber threats. As cybersecurity continues to be a critical concern in healthcare, investments must be made to enhance cybersecurity measures and protect vital health-related data from cyberattacks.
