Ransomware is a prevalent threat for all organisations and the Healthcare sector is no exception. In 2016 alone we have seen a number of Hospitals targeted by Malware, causing huge financial loss and putting patients at risk. Panda Security’s malware research facility, PandaLabs investigated this Cyber-Pandemic in order to understand the risks and mitigate these threats.
Ransomware and Information Theft
Data managed within the healthcare sector is highly sensitive and contains large amounts of personal information. In the wrong hands this information can be used as a master key to carry out targeted attacks. For cyber criminals this is a lucrative business as this kind of data will fetch a high price on the black market.
Healthcare Innovation Summit 2016 set for 24 – 25 August 2016. Book Here.
According to IBM, the healthcare sector ranked top of their list, with the most security attacks in 2015. Attacks continue to plague the sector causing the shutdown of hospitals, having had their data encrypted by cybercriminals. The Ponemon Institute recorded a 125% increase in such information theft over the past 5 years.
Technology has made the digitisation of health records possible – it is easier to manage patients’ records and treatments. That said, without proper procedures and protection in place it is easier for cyber criminals to access the data.
Analysis by PandaLabs has demonstrated how these attacks have escalated from specific to large scale cases. For health insurance provider – Anthem, the digitisation of health records without maintaining proper security led to the loss of 80 million client records. Those records included the social security numbers of clients, among other sensitive information.
How can we avoid these attacks?
Although many organisations resort to paying the ransom, it is important to take note that this does not guarantee that stolen documents or information will be returned. In many cases payment of the ransom did not end with the safe return of the encrypted documents.
PandaLab’s has the following recommendations on how you can avoid a cyber pandemic:
– Ensure you have a cyber-security framework incorporating advanced protection with detection, containment and remediation features.
– Take control. The common thread in these attacks is a lack of control. In order to take control of your network you need to employ a cyber-security solution that is capable of controlling all running processes across your network.
– Revise staff policies and control systems in order to adjust the privacy requirements in line with new technology.
– Run Updates. Keep operating systems and company devices updated.
For more information about the Cyber Pandemic and what the Healthcare sector can do to mitigate new age threats download PandaLabs Cyber Pandemic Whitepaper here.
Cybercrime effects all industries; organisations face legal and financial implications if they are not protected. To ensure your business is protected against these advanced threats Panda’s Adaptive Defense 360 offers comprehensive security to fight off attacks.