Quarter of Healthcare Organizations Halted Operations After Ransomware Attacks

Fifty-seven percent of global organizations admit being compromised by ransomware over past three years.

By HFT Staff


Eighty-six percent of global healthcare organizations (HCOs) that have been compromised by ransomware suffered operational outages, according to Trend Micro Inc. 

Fifty-seven percent of global HCOs admit being compromised by ransomware over the past three years, according to the study. Of these organizations, 25 percent say they were forced to halt operations, while 60 percent reveal that some business processes were impacted as a result. 

On average, it took most responding organizations days (56 percent) or weeks (24 percent) to fully restore these operations. 

Ransomware is not only causing the healthcare sector significant operational pain. Sixty percent of responding HCOs say sensitive data was also leaked by their attackers, potentially increasing compliance and reputational risk, as well as investigation, remediation and clean-up costs. 

Respondents to the study also highlight these supply chain weaknesses as a key challenge: 

  • Forty-three percent of respondents say their partners have made them a more attractive target for attack. 
  • Forty-three percent say a lack of visibility across the ransomware attack chain has made them more vulnerable. 
  • Thirty-six percent say a lack of visibility across attack surfaces has made them a bigger target. 

The good news is that most (95 percent) HCOs say they regularly update patches, while 91 percent restrict email attachments to mitigate malware risk. Many also use detection and response tools for their network endpoint and across multiple layers. 

However, the study also highlights potential weaknesses, including: 

  • Seventeen percent do not have any remote desktop protocol controls in place. 
  • Many HCOs do not share any threat intelligence with partners (30 percent), suppliers (46 percent) or their broader ecosystem (46 percent). 
  • Thirty-three percent do not share any information with law enforcement. 
  • Worryingly few respondents can detect lateral movement (32 percent), initial access (42 percent) or use of tools like Mimikatz and PsExec (46 percent). 


November 7, 2022


Topic Area: Information Technology , Security

Recent Posts

Alleged Ransomware Administrator Extradited from South Korea

The Phobos ransomware has been used globally to target over 1,000 organizations, including healthcare.

Design Plans Unveiled for New Intermountain St. Vincent Regional Hospital

The new hospital will be a 14-floor, 737,000 square-foot facility in Billings, Montana.

Ground Broken on New Pediatric Health Campus in Dallas

The new campus will replace the existing Children’s Medical Center Dallas.

Pre-Construction Strategies for Successful Facilities Projects

Savvy decisions can help facilities meet long-term goals by creating consistency and eliminating waste.

Geisinger Finds Success with Violence Prevention Efforts

Their safety measures included training staff in de-escalation, active-shooter response drills and equipping 6,000 employees with duress notification badges.

 
 


FREE Newsletter Signup Form

News & Updates | Webcast Alerts
Building Technologies | & More!

 
 
 


All fields are required. This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

 
 
 
 

Healthcare Facilities Today membership includes free email newsletters from our facility-industry brands.

Facebook   Twitter   LinkedIn   Posts

Copyright © 2023 TradePress. All rights reserved.