Healthcare’s new cyber risk profile in the pandemic: Scoping the challenge and scaling the solution
Wednesday, April, 29th, 2020
Always among the healthcare industry’s top priorities, in recent weeks information security has taken on even greater urgency. Amid the intensifying global pandemic, healthcare providers and other medical entities have become prime targets: From hijacking routers supporting health-data applications to launching ransomware attacks against medical suppliers to executing Covid-19 phishing exploits against a newly dispersed workforce, criminals are testing the industry’s cyber-resiliency. New points of exposure include:
- Changes to trusted pools of full-time medical workers as providers onboard new and temporary personnel at unprecedented rates, giving them fast access to patient information, and equipping them to work remotely.
- Introduction of new tools and technologies that add efficiency and extend reach for workers, but also expand attack surfaces and increase the risks of insider and still other threats.
- Resource constraints — driven by pressure to reduce expenses as well as the cost to the patient — that make it harder for healthcare organizations to implement and maintain comprehensive security solutions.
As level of threat and degree of difficulty rise in tandem, security practitioners in the healthcare industry have an expanding range of tools and techniques they can turn to.