A new report from Radware has shocking findings about the healthcare industry’s low preparedness levels for cyberthreats. Here’s 4 ways to get ready.
According to the “2017-2018 Global Application & Network Security Report” from Radware, the healthcare industry saw a rise in the likelihood of cyberattacks from 2016 to 2017 due to the healthcare industry’s low preparedness levels and valuable confidential data. The value of medical records in the dark market now exceeds the value of credit card information, according to the report.
Radware conducted a vendor-neutral survey of the security community and collected 605 responses from companies in various industries and of differing sizes across the world.
In the past two years, companies reporting financially motivated cyberattacks has doubled over the past two years to 50%, according to the report. The number of companies that reported ransomware attacks in which hackers use malware to encrypt data, systems, and networks until a ransom is paid-increased 40% from the 2016 survey.
Despite one in four (24%) businesses reporting cyberattacks daily or weekly, nearly 80% of surveyed organizations have not come up with a calculation for the cost of attacks, and one in three lack a cybersecurity emergency response plan, according to the report.
“This report confirms and elaborates on what publicized and costly attacks like WannaCry hinted at: the healthcare industry is not prepared to handle today’s cyberthreats, even as attacks targeting health organizations rise,” says Carl Herberger, vice president of security at Radware. "With the rise of mHealth, Internet-of-Things [IoT] technology, and patients demanding more mobile apps, there is an increased number of digital touchpoints which provide more avenues for cyberattacks. This report indicates gaps in cybersecurity and gives a guide on where organizations should focus their energy and resources.”
The report also found:
Based on the report, Herberger shares four best practices to help healthcare executives better prepare for cybersecurity breaches: