Experts Say Health Care Companies Are Tantalizing Targets For Cyberattackers
A recent cyberattack against hospital chain MedStar was just the latest in a series of strikes against health care companies. Experts warn that because the information the organizations have is more valuable on the black market than even credit card numbers, and their security measures tend to lag behind other sectors, they are particularly vulnerable.
The Associated Press:
Hospital Cyberattack Highlights Health Care Vulnerabilities
A cyberattack that paralyzed the hospital chain MedStar this week is serving as a fresh reminder of vulnerabilities that exist in systems that protect sensitive patient information. That attack came a month after a Los Angeles hospital paid hackers $17,000 to regain control of its computer system and more than a year after intruders broke into a database containing the records of nearly 80 million people maintained by the health insurer Anthem. (Murphy, 3/30)
The Washington Post:
Possible ‘Ransomware’ Attack Still Crippling Some MedStar Hospitals’ Computers
Hospitals throughout MedStar Health’s network continued to face problems with their online systems Wednesday, two days after a cyberattack crippled the health-care giant’s email and patient records databases. “Our electronic medical records system is working,” spokeswoman Ann Nickels said. “Individual work stations may not be working.” MedStar also issued a statement Wednesday saying that “the three main clinical information systems supporting patient care are moving to full restoration, and enhanced functionality continues to be added to other systems.” (Cox, 3/30)
Modern Healthcare:
Details Of Anthem's Massive Cyberattack Remain In The Dark A Year Later
It's been more than a year since health insurer Anthem disclosed what was by far the largest data breach in healthcare history, yet almost nothing new is known about the causes, costs and ramifications. The cyberattack—in which hackers stole the names, birthdays, Social Security numbers, home addresses and other personal information of 78.8 million current and former members and employees—gave Anthem's reputation a black eye early on. The company and the industry at large scrambled to do damage control. Consumers questioned whether Anthem and other healthcare organizations could manage the volumes of data they had. But the breach essentially has been treated as a footnote since then. (Herman, 3/30)