Ransomware surge imperils hospitals as pandemic intensifies
2,125 total views, 2 views today
Hackers are stepping up attacks on health care systems with ransomware in the United States and other countries, creating new risks for medical care as the global coronavirus pandemic accelerates.
Alerts from US authorities and security researchers highlight a wave of cyberattacks on hospitals coping with rising virus infections.
An unusual warning this week from the FBI with the Departments of Homeland Security and Health and Human Services underscored the threat.
The three agencies “have credible information of an increased and imminent cybercrime threat to US hospitals and health care providers,” said the alert issued Wednesday, calling on health systems to “take timely and reasonable precautions to protect their networks from these threats.”
Media reports have cited several US hospitals hit by ransomware.
One of them, the University of Vermont Medical Center, said in a statement Thursday it was working with law enforcement on “a now confirmed cyberattack that has affected some of our systems” which has had “variable impacts” on patient care.
Daniel dos Santos of the computer security firm Forescout said cash-strapped medical centers are particularly attractive targets for hackers and that at least 400 hospitals had been hit in the past few weeks in the US and Britain.
Hackers are aware that “health care is the most likely to pay the ransom because their services are critical,” dos Santos said.
“Stopping services means that people will literally be dying.”
For hospitals unable or willing to pay, “it would mean going back to pen and paper, which can cause huge slowdowns,” he added.
Forescout said in a report that while many hospitals have upgraded computer systems, most use a variety of connected devices such as patient monitors or CT scanners which “act as the weak links in the network” because they transmit data over insecure channels.
In one sign of the troubles looming, dos Santos and fellow researchers said they discovered data on some three million US patients online, “unprotected and accessible to anyone who knows how to search for it.,” the Forescout report said. (AFP | Rob Lever)