The pandemic has resulted in a number of major cyber security attacks on hospitals, pharmaceutical companies, government agencies, and related healthcare institutions. At the same time, a growing number of COVID-19-related frauds and scams are costing Americans millions.
Right now, cybersecurity is more important than ever — and high-profile attacks have demonstrated the consequences that a successful hack can have. In response to these new security challenges, the healthcare industry is re-evaluating its approach to cybersecurity, adopting new practices, and investing in new tech.
Hackers and Fraudsters Are Taking Advantage of the Pandemic
IBM’s security research team has flagged a number of attacks on essential vaccine infrastructure. The company found evidence of a phishing attack that targeted more than 44 companies across 14 countries.
According to IBM, the hackers were likely after information related to the function of the cold chain, which is essential for moving COVID-19 vaccines from manufacturing plants to vaccination sites.
At the same time, fraud is on the rise. According to the Federal Trade Commission (FTC), COVID-related fraud had cost Americans as much as $382 million dollars as of March 2021. The total cost is likely higher now.
Scammers have used a variety of tactics to steal money, including some related to stimulus checks, unemployment benefits, fake vaccines, and fictitious COVID-19 charities.
Other related schemes are taking place in the healthcare industry. These schemes include types of Medicare fraud, like kickbacks to physicians for drug purchases, billing for defective tests, or the inflation of drug prices.
Healthcare institutions not directly involved in COVID-19 vaccine production or research are also being attacked more frequently by cybercriminals. The growing value of medical records and other protected health information makes hospitals and similar institutions a target for hackers.
Ransomware and phishing attacks, in particular, pose a serious threat to these institutions. Attackers taking advantage of poor security practices or weak institutional cybersecurity knowledge can cause serious damage to business networks and steal sensitive healthcare information.
Disruptions caused by COVID-19 and major changes to how employees work, like the pivot to distributed teams, have also created new opportunities for hackers. Remote workers use home networks to connect to business systems, introducing the potential for new security vulnerabilities that hackers can exploit.
Cyberattacks targeting businesses outside the healthcare industry have also encouraged companies to pay greater attention to cybersecurity. The Colonial Pipeline hack, for example, demonstrated the potential consequences of a successful attack: significant downtime, reputation damage, and fees.
Security Risks and Challenges for Healthcare Businesses
Security researchers have identified a number of major security challenges and vulnerabilities that healthcare institutions currently face.
1. Ransomware
Ransomware is a type of malicious software that uses encryption to lock down files on a business’s network. The software holds these files for ransom, requesting payment to hackers — typically in the form of a cryptocurrency like Bitcoin — in exchange for the files’ release. Payment does not guarantee the unlocking of these files, however.
Files encrypted by ransomware cannot be accessed or changed. These attacks can cause significant downtime and data loss as a result. If a business does not have backups prepared, information in files locked by ransomware may be lost forever.
Notably, the Colonial Pipeline hack was caused when the business’s network was infected with ransomware. Eventually, the company paid approximately $5 million to hackers to release its files.
Healthcare businesses are strengthening their defenses against ransomware by investing in security talent and technology. Backups, network monitoring systems, and employee training programs are all helping the industry prepare for ransomware and its potential consequences.
In some cases, businesses may also have the opportunity to adopt AI-powered cybersecurity platforms. Along with other AI healthcare use cases, like pharmaceutical design and AI-based medical devices, adoption of this technology may help to transform what data and technology can do for the industry.
2. Phishing
Phishing is a type of attack that utilizes social engineering to gain unauthorized network access. In a phish, an attacker sends an email or message to a target with network access. This email will appear to be from a trusted source — like a vendor, internal contact, or bank. In the email, the hacker may request information from the target or encourage them to download malicious software attached to the email.
A successful phish can provide a hacker with direct access to a business’s network and critical files stored there.
Because phishers rely on untrained employees, businesses can only defend against them with investment in security training. Employees who know how to spot a phish will be less likely to fall for one and provide network access to hackers.
3. Misconfigured Firewalls and Unsecured Network Devices
The COVID-19 pandemic radically changed how employees connected to business networks. Many employees continue to work from home. These employees may make business networks more vulnerable by connecting via insecure networks.
The rise of “BYOD” device policies and the adoption of IoT technologies also pose risks. Employee devices may not be secured in accordance with institutional security standards. IoT devices can be notoriously difficult to secure without the right policies.
New security policies built for current working conditions can help healthcare businesses secure remote workers’ home networks, IoT devices, and other potentially vulnerable technology.
How Healthcare Businesses Are Responding to New Security Threats
A rise in cyberattacks against the healthcare industry has forced businesses to adopt new cybersecurity practices. Training, technology, and new security strategies are all helping these businesses defend against common threats like ransomware and phishing attacks.
It’s likely that criminals will continue to target the healthcare industry, especially if the sector continues to increase the amount of valuable healthcare information it collects and stores. New cybersecurity strategies will help the industry as a whole protect itself from cybercrime.
By Shannon Flynn, ReHack
