Spotlight report on healthcare discredits the widely held belief that external threats would lead to an increase in data breaches during the COVID-19 pandemic.
An upward trend in exploitable behaviors and claims that discredit that external threats would lead to increased internal threat activity was found in the recent 2020 Spotlight Report on Healthcare by Vectra AI, a leader in network threat detection and response (NDR).
This report is based on observations and data from January to May of this year using a sample of 363 opt-in enterprise organizations in healthcare and eight other industries.
The COVID-19 pandemic has sparked the global adoption of cloud services across all industries. However, healthcare has suffered the most sudden and rapid pivot to support overwhelmed infrastructure and increased collaboration using the same strapped IT and security resources.
“Healthcare providers have been tasked with quickly leveraging remote access and cloud analytics to scale their operations,” says Chris Morales, head of security analytics at Vectra. “While cloud computing better optimizes the use of resources in healthcare, it also creates significant risks. This is especially true when cloud adoption happens faster than proper due diligence can be applied by information security personnel. This trend will persist well after the pandemic.”
David Willis, head of cyber, governance and assurance at the Greater Manchester Health and Social Care Partnership, National Health Service, in the United Kingdom, says those at the partnership have observed a stark and sudden growth in data movement outside of our organization’s traditional boundaries.
“That growth is most likely due to how the NHS has traditionally worked in siloed data centers behind a firewall and has now shifted to the COVID-19 world of cloud-based collaboration," Willis adds.
Security teams must now urgently grapple with where healthcare data resides and how to safeguard it. To do so requires pan-organizational cooperation among IT and security teams as well as visibility that integrates the cloud and the on-premises infrastructure to enable a truly comprehensive threat detection and response capability.
Highlights from the Vectra 2020 Spotlight Report on Healthcare
Vectra investigated network behaviors that are consistent with threats across the entire cyberattack lifecycle – botnet monetization, command and control, internal reconnaissance, lateral movement, and data exfiltration. Upon closer examination, these behaviors were found to be from cloud migration activities, and not attackers.
Lateral movement in 2020 is trending downward for healthcare.
From January to May, the Vectra Cognito NDR platform detected and correlated behaviors consistent with attacker behaviors in host devices, assigned a threat-severity score, and prioritized the highest-risk threats to healthcare. This analysis provides the context needed to better understand what data is moving to the cloud, as well as how it is being used and shared.
For healthcare organizations, the migration of data to the cloud was already in motion, and COVID-19 has accelerated this transition and the policies that govern it. NDR is an effective approach for the detection and response to attackers that circumvent or defeat defensive controls and gain an operating capability inside an organization’s infrastructure.
ViiV Healthcare Will Not Continue Trials of Subcutaneous Cabenuva | AIDS 2024
July 25th 2024A substudy of the FLAIR phase 3 trial found that participants favored intramuscular injection of Cabenua over the subcutaneous version due to pain and the development of nodules and reddening of the skin.
Read More
In this latest episode of Tuning In to the C-Suite podcast, Briana Contreras, an editor with MHE had the pleasure of meeting Loren McCaghy, director of consulting, health and consumer engagement and product insight at Accenture, to discuss the organization's latest report on U.S. consumers switching healthcare providers and insurance payers.
Listen
In our latest "Meet the Board" podcast episode, Managed Healthcare Executive Editors caught up with editorial advisory board member, Eric Hunter, CEO of CareOregon, to discuss a number of topics, one including the merger that never closed with SCAN Health Plan due to local opposition from Oregonians.
Listen