Increase in ransomware attacks to healthcare's vulnerable remote access systems threatens patients
PLYMOUTH MEETING, Pa., April 12, 2024 /PRNewswire/ -- Ransomware groups are increasingly targeting vulnerable remote access systems in healthcare, with several high-profile incidents in recent months. Ransomware attacks can cripple a hospital's ability to serve patients by cutting off access to or manipulating essential technologies and patient data. Hackers can exploit remote systems to divert emergency vehicles, cancel appointments, and in worse-case scenarios, shut down entire facilities.
- Ransomware attacks can cripple a hospital's ability to serve patients by cutting off access to or manipulating essential technologies and patient data.
- Vendors are also given access to remote hospital systems to run financial operations such as bill payments; or to support medical devices, IT systems, or physical plant/HVAC systems.
- Attackers can exploit these entry points—gaining access to and moving throughout the network—if remote access systems are not protected.
- ECRI's recent report includes recommendations for healthcare leaders to address ransomware attacks on remote access systems:
Ensure that Internet-facing systems (e.g., remote access systems, VPNs) are configured securely and that security updates are applied.