Charles Tee Fact checked by:Thailand Medical News Sep 02, 2024 3 months, 1 week, 2 days, 14 hours, 46 minutes ago
The global healthcare sector, a critical lifeline for billions, is under relentless siege by sophisticated cybercriminals. These organized gangs, motivated by greed and armed with advanced digital tools, are increasingly targeting healthcare systems worldwide with devastating ransomware attacks. As hospitals and healthcare providers struggle to deliver care, these attacks disrupt vital services, endanger patient lives, and place an enormous financial burden on already overstretched systems.
How cyber gangs are holding global health systems hostage
This
Healthcare News report examines the escalating threat posed by these cybercriminals, who have turned patient data and critical healthcare services into high-stakes bargaining chips. In recent years, the frequency and severity of these attacks have surged, forcing healthcare organizations to confront a grim reality: they are prime targets in a digital age where data is as valuable as life itself.
The Synnovis Attack: A Case Study
One of the most significant ransomware attacks in recent memory targeted Synnovis, a company that provides pathology services to the UK's National Health Service (NHS).
https://www.england.nhs.uk/london/synnovis-ransomware-cyber-attack/
The attack, which occurred earlier this year, had a crippling impact on the healthcare system. Synnovis's IT systems were rendered useless, and sensitive patient data was stolen.
The attackers, a Russian-speaking group known as Qilin, demanded a staggering US$50 million to end the attack. When Synnovis refused to pay, the hackers began dumping private information on their darknet site. In total, they released 400GB of data, causing widespread panic and forcing the NHS to postpone thousands of appointments and surgeries.
Qilin is part of a broader trend in ransomware attacks on healthcare organizations. These criminals are increasingly targeting the healthcare sector because of the vast amounts of sensitive data it holds and the critical nature of its services. In this case, the attack on Synnovis affected two major NHS trusts in London: King’s College Hospital and Guy’s and St Thomas’.
The Ransomware Business Model
Qilin operates under a model known as Ransomware as a Service (RaaS). In this model, hackers rent the tools and infrastructure needed to carry out attacks from an operator. These affiliates then carry out the attacks and return a percentage of any ransom they receive to the operator. In Qilin's case, this cut is believed to be around 10 percent.
The RaaS model allows even inexperienced hackers to launch sophisticated ransomware attacks. They gain access to all the necessary tools, including portals that track the number of files encrypted and round-the-clock support from the operators. Negotiations with victims often take place via chat functions on the dark web, where criminals can gauge how much a healthcare provider is willing to pay.
The fragmented nature of health
care systems, such as the UK's NHS, makes them particularly vulnerable to these attacks. Hospitals and healthcare providers often operate on outdated IT systems, which are easier for hackers to exploit. The cost of protecting these systems is high, and healthcare organizations must often choose between investing in cybersecurity or patient care.
Global Impact of Healthcare Ransomware Attacks
Qilin's attack on Synnovis is part of a broader pattern of ransomware attacks on healthcare organizations worldwide. According to data from the Recorded Future threat intelligence company, ransomware attacks on healthcare providers have increased tenfold since 2021. The United States has been hit hardest, with nearly half of all attacks occurring there. However, other countries, including the UK, Canada, and Australia, are also experiencing a surge in these attacks.
The financial impact of these attacks is staggering. The Arctic Wolf cybersecurity firm estimates that the average cost per healthcare provider is $10.93 million. In some cases, healthcare organizations have been forced to pay enormous ransoms to regain control of their systems. For example, Change Healthcare, a company that processes billing payments, paid $22 million to recover data stolen by hackers.
The financial burden of these attacks is compounded by the chaos they create within healthcare systems. When a hospital's IT systems are shut down, patient care is severely disrupted. Appointments, surgeries, and scans are canceled, leaving patients in limbo and delaying critical treatments. In some cases, the consequences can be life-threatening.
The Human Cost of Cyber Attacks
The human cost of these attacks cannot be overstated. Healthcare providers are forced to make impossible choices, balancing the need to protect patient data with the need to deliver life-saving care. In some cases, this has led to tragic outcomes.
Ed Dubrovsky, a cybersecurity expert who negotiates with ransomware groups on behalf of healthcare clients, has seen firsthand the pressure these criminals place on their victims. In the high-stakes world of healthcare, time is of the essence, and hackers know that delaying payment can result in severe consequences.
Dubrovsky explains that in negotiations, hackers will often accuse healthcare providers of "killing people" by not paying the ransom quickly enough.
The stress on healthcare workers is immense. Doctors, nurses, and other staff must continue providing care, often without access to their usual digital tools. In some cases, they are forced to revert to pen and paper, slowing down processes and increasing the risk of errors.
The Future of Cybersecurity in Healthcare
As healthcare organizations continue to digitize their operations, the threat of ransomware attacks will only grow. Cybersecurity experts like John Riggi are calling for greater investment in protecting healthcare systems from these attacks. However, the cost of such measures is significant, and many healthcare providers are already struggling to balance their budgets.
The creaking and outdated IT systems used by the UK's NHS have been highlighted as a key vulnerability. A British Medical Association report revealed that clinicians waste more than 13 million hours annually due to delays caused by inadequate or malfunctioning systems. This inefficiency is equivalent to the work of 8,000 full-time doctors, costing the NHS £1 billion.
To combat the growing threat of ransomware, healthcare organizations must prioritize cybersecurity. This includes investing in modern IT systems, training staff to recognize and respond to cyber threats, and working closely with third-party suppliers to ensure they maintain acceptable levels of security.
Conclusion
The increasing frequency and severity of ransomware attacks on healthcare organizations are a troubling sign of things to come. As criminals continue to exploit the vulnerabilities of healthcare systems, the need for robust cybersecurity measures has never been more urgent. For the global healthcare sector, the stakes are incredibly high. These attacks not only disrupt services and endanger patient lives but also place an enormous financial burden on already strained systems.
The healthcare industry must act swiftly to bolster its defenses against these cybercriminals. Failure to do so could result in even more devastating attacks in the future, with potentially catastrophic consequences for patients and providers alike.
For the latest Healthcare News, keep on logging to Thailand
Medical News.
Read Also:
https://www.thailandmedical.news/news/breaking-researchers-find-that-doctors-endorsing-drugs-on-x-twitter-are-being-paid-to-do-so-by-big-pharma
https://www.thailandmedical.news/news/breaking-pharma-news-european-medicines-agency-suspends-more-than-400-generic-drugs-from-india-over-flawed-and-possible-fraudulent-studies-in-pune