Health Entities Seeing Massive Increase in Ransonware Attacks March 10, 2020
Written by MSDC Staff
According to a report by a leading insurance company, healthcare entities have seen a massive increase in ransonware attacks in the last six months.
Corvus Commercial Insurance's report shows a 350% increase in ransonware attacks against healthcare entities in the last quarter of 2019 and a similar number so far in 2020. That number, however, may be lower than the actual number as many practices and entities may not publicly announce cyber-intrusion attempts into their systems. The report notes in January 2020 at least four healthcare covered entities reported attacks which is the most for any quarter reviewed since Q3 2017.
The most common entry point for cyber attacks is through remote desktop protocol, which the report notes is associated with a 37% greater likelihood of a successful attack. Email security, while not as common an entry point, is still a technological weakness as 86% of healthcare entities do not use scanning and filtering tools in their email platforms. As with many other industries, the number one by far vulnerability for a ransomware attack is via phishing.
The positive from the report is that healthcare facilities in general have a smaller web presence than other large industries, making them less likely to succumb to a ransonware attack. But, as noted in an article, researchers were concerned about long-term vulnerability:
As commodity ransonware has become more readily available and examples of successful attacks on smaller organizations, like local governments, gain attention, attackers may well turn their attention to organizations like individual health practitioners or nursing/long-term care facilities.
The report concludes with the recommendation that all health facilities use scanning and filtering tools, as well as basic authentication protections, to reduce the likelihood of a successful phishing attempt.
MSDC's corporate partner ProAssurance provides its insureds with leading-edge cybersecurity coverage. Learn more about how you can be protected here.
Corvus Commercial Insurance's report shows a 350% increase in ransonware attacks against healthcare entities in the last quarter of 2019 and a similar number so far in 2020. That number, however, may be lower than the actual number as many practices and entities may not publicly announce cyber-intrusion attempts into their systems. The report notes in January 2020 at least four healthcare covered entities reported attacks which is the most for any quarter reviewed since Q3 2017.
The most common entry point for cyber attacks is through remote desktop protocol, which the report notes is associated with a 37% greater likelihood of a successful attack. Email security, while not as common an entry point, is still a technological weakness as 86% of healthcare entities do not use scanning and filtering tools in their email platforms. As with many other industries, the number one by far vulnerability for a ransomware attack is via phishing.
The positive from the report is that healthcare facilities in general have a smaller web presence than other large industries, making them less likely to succumb to a ransonware attack. But, as noted in an article, researchers were concerned about long-term vulnerability:
As commodity ransonware has become more readily available and examples of successful attacks on smaller organizations, like local governments, gain attention, attackers may well turn their attention to organizations like individual health practitioners or nursing/long-term care facilities.
The report concludes with the recommendation that all health facilities use scanning and filtering tools, as well as basic authentication protections, to reduce the likelihood of a successful phishing attempt.
MSDC's corporate partner ProAssurance provides its insureds with leading-edge cybersecurity coverage. Learn more about how you can be protected here.