By Errol S. Weiss, Chief Security Officer at Health-ISAC
Picture it: You’re on your way to the emergency room near your home when, suddenly, the ambulance changes direction. The driver has been redirected to the next-closest hospital—30 miles away. Why? Your local hospital was just hit with a ransomware attack and the IT systems are down, leaving the staff scrambling and unable to accept new patients.
Sounds like fiction, right? Unfortunately, ransomware is the number-one threat that concerns cybersecurity professionals in the healthcare sector. And for good reason. Ryuk, just one of many ransomware variants, has been linked to more than 200 attacks impacting hospitals, public health departments, nursing homes, and patient care facilities around the world since 2018.
The attacks resulted in the loss of IT systems that support modern hospitals. That loss meant cancelled surgeries, delayed medical care, and more consequences. Hospitals reported revenue losses of nearly $100 million due to Ryuk infections. The attacks also caused an estimated $500 million in response costs, such as ransomware payments, digital forensic services, security improvements, and upgrades for impacted systems.
Ryuk attacks have:
That's the ransomware nightmare. But there's more.
In the fourth quarter of 2021, Health-ISAC completed a survey and ranked the top five “greatest cybersecurity concerns” facing healthcare organizations:
While cyber criminals looking to monetize their attacks are certainly a large threat vector, let's not forget about nation-state actors. Nation-state threats against the healthcare sector continue to increase in impact and scope. Many of the attacks are sophisticated and difficult to detect. Nation-states have long-term intelligence collection goals and operate with extreme caution and patience toward their objectives.
During the early days of the COVID-19 pandemic, nation-state threat actors used cyber espionage to gather treatment and vaccine research in the hopes of protecting their own populations. While many countries engage in sophisticated cyberattacks, including espionage and theft of intellectual property, some use ransomware and destructive malware attacks to obtain cash. As circumstances such as global sanctions continue to impact the economic conditions in these countries, US currency becomes highly useful to enable underground trade.
For more details about the cyber threat landscape in healthcare, read the full report: Current and Emerging Healthcare Cyber Threat Landscape Executive Summary. And don’t miss my session, Scoping the Cyberthreat Landscape, on Monday, October 10 at AHIMA22 in Columbus.
Errol Weiss will present “Scoping the Cyberthreat Landscape” on Monday, October 10, at 11:00 am at AHIMA22 Global Conference in Columbus, OH.
Attendees of his presentation will:
Browse the AHIMA22 schedule by impact area to find more presentations on privacy and security.
Join Us at AHIMA22
Connect with fellow passionate health information professionals at the global conference that brings together the industry's leading voices for an unforgettable experience. From the latest on healthcare hot topics to inspiring keynotes, we have so much in store for you!
AHIMA has secured discounted room rates at hotels near the Greater Columbus Convention Center and encourages participants to book within the AHIMA room block during the registration process for the best selection and rates.
Our full schedule is now available to browse on the AHIMA22 Global Conference website. Get a preview of the sessions, networking opportunities, reception events, and more. Check back frequently for important updates and exciting additions.