Ransomware Attacks on Health Care Grow More Dire

January 12, 2023

Ransomware Attacks on Health Care Grow More Dire

Home » Ransomware Attacks on Health Care Grow More Dire

BY CAST

Attacks more than doubled in six years, affecting larger organizations and patient care.

Ransomware attacks on health care delivery organizations more than doubled from 2016 to 2021, says a new study published in the JAMA Health Forum. The study found that attacks are becoming more extensive, frequent, and sophisticated. Attacks are exposing even more patients’ personal health information. They are becoming more likely to affect large organizations with multiple facilities and to disrupt patient care.

Data from the study came from the Tracking Healthcare Ransomware Events and Traits database. Review of the data found that 374 ransomware attacks took place and that the annual frequency of attacks more than doubled over six years’ time.

Other findings include that nearly half of attacks (44%) disrupted health care delivery, taking down electronic systems (42%), causing cancellations of scheduled care (10%), and requiring diversions of ambulances (4%). Nearly 42 million patients had their personal health information (PHI) exposed.

“The study results suggest that ransomware attacks on health care delivery organizations are increasing in frequency and sophistication; disruptions to care during ransomware attacks may threaten patient safety and outcomes,” wrote the authors. The authors also encouraged policy makers to focus on the needs of health care organizations and patients when writing legislation to counter cyberattacks.

LeadingAge CAST Cybersecurity Resources

As attacks escalate, taking steps to protect your organization and the older adults you serve remains critically important. For guidance, use the LeadingAge CAST Cybersecurity Resources. You will learn how to recognize threats, mitigate risk, and respond to an attack. The resource includes a white paper, case studies, and a benchmarking questionnaire.

To increase security around voice technology, please check out “Opportunities, and Risks, with New Smart Voice Technology in Senior Living.” In addition, a CAST case study shows how a life plan community managed HIPAA compliance and cybersecurity mitigation. See “Managing HIPAA Compliance and Cyber Security Through Partnership” to learn how to replicate their initiative.