Connect with us

Health

Cybercriminals Successfully Encrypted Data in Ransomware Attacks on Nearly 75% of Healthcare Organizations, Sophos Survey

Only 24% of Healthcare Organizations Were Able to Disrupt a Ransomware Attack Before Attackers Encrypted Their Data. This is the Lowest Rate of Disruption in 3 Years, reports SANDRA ANI

Published

on

Chester Wisniewski, director, field CTO, Sophos
Chester Wisniewski, director, field CTO, Sophos

Sophos, a global leader in innovating and delivering cybersecurity as a service, today shared its sector survey report, “The State of Ransomware in Healthcare 2023,” which revealed that, among those organizations surveyed, cybercriminals successfully encrypted data in nearly 75% of ransomware attacks.

 This is the highest rate of encryption in the past three years and a significant increase from the 61% of healthcare organizations that reported having their data encrypted last year.

In addition, only 24% of healthcare organizations were able to disrupt a ransomware attack before the attackers encrypted their data—down from 34% in 2022; this is the lowest rate of disruption reported by the sector over the past three years.

“To me, the percentage of organizations that successfully stop an attack before encryption is a strong indicator of security maturity. For the healthcare sector, however, this number is quite low—only 24%. What’s more, this number is declining, which suggests the sector is actively losing ground against cyberattackers and is increasingly unable to detect and stop an attack in progress.

“Part of the problem is that ransomware attacks continue to grow in sophistication, and the attackers are speeding up their attack timelines. In the latest Active Adversary Report for Tech Leaders, we found that the median time from the start of a ransomware attack to detection was only five days. We also found that 90% of ransomware attacks took place after regular business hours. The ransomware threat has simply become too complex for most companies to go at it alone. All organizations, especially those in healthcare, need to modernize their defensive approach to cybercrime, moving from being solely preventative to actively monitoring and investigating alerts 24/7 and securing outside help in the form of services like managed detection and response (MDR),” said Chester Wisniewski, director, field CTO, Sophos.

Healthcare Organizations Were Able to Disrupt a Ransomware Attack
Sophos report

Additional key findings from the report include:

  • In 37% of ransomware attacks where data was successfully encrypted, data was also stolen, suggesting a rise in the “double dip” method
  • Healthcare organizations are now taking longer to recover, with 47% recovering in a week, compared to 54% last year
  • The overall number of ransomware attacks against healthcare organizations surveyed declined from 66% in 2022 to 60% this year
  • Compromised credentials were the number one root cause of ransomware attacks against healthcare organizations, followed by exploits
  • The number of healthcare organizations surveyed that paid ransom payments declined from 61% last year to 42% this year. This is lower than the cross-sector average of 46%

“In 2016, the Red Cross Hospital of Córdoba in Spain suffered a ransomware attack that reached servers and encrypted hundreds of files, medical records and other important patient information. It was a major disruption to our operations and interfered with our ability to care for our patients. The stakes are high in ransomware attacks against healthcare organizations—and attackers know that—meaning we’ll always be a target. After this ransomware attack, we worked hard with Tekpyme to bolster our defenses, and now we have reduced our incident response time by 80%. I think the industry as a whole is making improvements, but there is still work to do, because of the constantly changing nature of cybercrime. Hopefully healthcare organizations can leverage the help that is available from security vendors such as Sophos to prevent a very real ‘threat to life’ if systems go offline due to a ransomware attack,” said José Antonio Alcaraz Pérez, head of information systems and communications at Cruz Red Andalusia in Spain.

“Cyberspace today is ripe with technically sophisticated actors looking for vulnerabilities to exploit. What all this translates to is a multidimensional cyberthreat of actors who have the tools to paralyze entire hospitals. Partnering with the private sector is critical to our mission. The information [they] share has real-world impacts and can save real businesses and real lives,” said Christopher Wray, FBI Director.

Sophos recommends the following best practices to help defend against ransomware and other cyberattacks:

  • Strengthen defensive shields with:
    • Security tools that defend against the most common attack vectors, including endpoint protection with strong anti-ransomware and anti-exploit capabilities
    • Adaptive technologies that respond automatically to attacks, disrupting adversaries and buying defenders time to respond
  • Optimize attack preparation, including regularly backing up, practicing recovering data from backups and maintaining an up-to-date incident response plan
  • Maintain security hygiene, including timely patching and regularly reviewing security tool configurations

To learn more about the State of Ransomware in Healthcare 2023, download the full report from Sophos.com.

*The State of Ransomware 2023 survey polled 3,000 IT/cybersecurity leaders in organizations with between 100 and 5,000 employees, including 233 from the healthcare sector, across 14 countries in the Americas, EMEA and Asia Pacific.

GrassRoots.ng is on a critical mission; to objectively and honestly represent the voice of ‘grassrooters’ in International, Federal, State and Local Government fora; heralding the achievements of political and other leaders and investors alike, without discrimination. This daily, digital news publication platform serves as the leading source of up-to-date information on how people and events reflect on the global community. The pragmatic articles reflect on the life of the community people, covering news/current affairs, business, technology, culture and fashion, entertainment, sports, State, National and International issues that directly impact the locals.

Health

Neptune Prime publisher to unveil cancer clinic, school, foundation for late journalists’ families as son weds in Yobe

Published

on

publisher of Neptune Prime newspapers, Dr Hassan Gimba
Publisher of Neptune Prime newspapers, Dr Hassan Gimba

The publisher of Neptune Prime newspapers, Dr Hassan Gimba, has announced plans to commission three major projects in his home state, Yobe State

In an invitation letter sent to newsmen on Wednesday, the publisher disclosed that the event, which is scheduled to take place on August 31, is coinciding with the wedding Fatiha of his son, Barrister Suleiman Gimba.

According to the letter, the wedding Fatiha will take place by 11:00am at the residence of Mohammed Babate, Behind Water Board, Army Barracks, Potiskum.

“Immediately after the wedding Fatihah, we will be commissioning the Hafsatu Gimba Ahmed Memorial School located at VIO Street, Unguwar Jaji, Potiskum.

“This institution is dedicated to the memory of my late mother, aiming to serve the educational needs of our community,” the letter noted.

Dr Gimba added that as part of the launch programme, the Abubakar Monja Lifeline Foundation for Late Journalists’ Families, which he founded to cater to the families of journalists who have passed away, will be empowering youths it trained in tailoring and plumbing.

“Additionally, I would like to invite you to inspect the ongoing construction of the Lami Fatima Babare Cancer Outreach and Clinic situated nearby, also in Unguwar Jaji.

“The clinic is an initiative of the Lami Fatima Babare Cervical Cancer Foundation, which was founded in 2020 – in memory of my late wife, Lami Fatima Babare – to provide medical services and referrals to cancer patients,” the letter noted.

Continue Reading

Health

Enugu State Gov’t Moves to Revamp Oji River College of Health Technology,

…beefs up security

Published

on

Health Technology in Oji River

The Enugu State Government has announced its intention to revamp the existing infrastructural facilities to give the Enugu State College of Health Technology in Oji River a face-lift and also scale-up institution to a technology-savvy citadel of learning.

The government made this known during a meeting with the management, staff, and students of the institution at the Enugu State Government House at the weekend, stressing its commitment to ensuring quality health service delivery in the state.

The government, which made this known through the Special Adviser on Health Matters, Dr. Yomi Jaye, also asked the students of the institution to go back to school and continue with their academic calendar, as all those involved in the recent breach of security in the school’s neighborhood had been rounded up and now facing the law.

The governor equally gave the college management a two-week ultimatum  to develop a workplan, which the government would work on to ensure that the school functions at its optimum level.

Briefing Government House correspondents after the meeting, Dr. Jaye said, “We interacted with the management, staff and students of the Enugu State College of Health Technology, Orji River, to come up with a strategic plan to revamp the college and restore its lost glory.

His Excellency, Governor Peter Mbah, has expressed his willingness not only to revamp the school, but to upscale it to a technology-savvy teaching community.

“As you can see, the government is bullish about building Type-2 Healthcare Centre in each of the 260 wards and this college will produce some of the qualified workers that will deliver quality healthcare services to Ndi Enugu.

“We appeal to the parents and guardians to allow the students to go back to school and resume their academic activities as more security personnel have been deployed to make sure that both Oji River and its neighbouring communities are properly secured.

“It is also important to inform you that those who perpetrated the security breach have since been arrested and the victims, which included one student, also freed,” he maintained.

Also speaking, the Provost of the College, Dr. Lazarus Ezugwu, expressed his happiness over the state government’s move to revamp the institution, saying he was optimistic that the glory of the institution would be restored in no distant time.

When commending Governor Peter Mbah and the security agencies for their swift response to the recent security breach at the College, he also confirmed that security had been strengthened around the institution and Oji River in general.

“The meeting is such a commendable one. It goes a long way in telling us the type of visionary leader we have in the state. To be sincere, the total overhaul that will be done in the college is going to be enormous. What is coming to the college cannot be imagined because the governor has shown both special interest and political will. This is what we have been yearning for, for so many years,” Dr. Ezugwu stated.

Continue Reading

Health

FP2030 Report Links Family Planning & Gender Equality

…The 2023 data report reveals that more women and girls than ever have access to family planning

Published

on

FP2030 Report
Source - internet: mother and child having a moment

FP2030 has launched its 2023 measurement report, Meeting the Moment: Family Planning and Gender Equality.

FP2030 Report
Dr. Martin Migombano-FP2030

The 2023 report shows significant achievements in family planning across the globe, even in the face of stagnant funding.

Speaking during the launch of the 2023 annual measurement report in Washington DC, Dr. Samukeliso Dube, FP2030 executive director, said:

“In this report, you will hear more success stories: more people than ever before are using voluntary, rights-based contraception. You will also learn more about the opportunities ahead.”

The links between family planning and gender equality are the central theme of this year’s measurement report.

The data set covers 85 countries, including for the first time Botswana and Namibia, two middle-income countries that have now made commitments to FP2030, and Jordan, which has moved into the lower-middle income category.

The report showed that in the 85 countries reviewed there are over 1 billion women of reproductive age; an estimated 377 million of those women are using a modern method of contraception, 92 million more than were using a method in 2012. 

“This year’s report comes at a critical time in our movement. We are at the intersection of several crises: globally, 800 women are dying every day in childbirth. 218 million women in the global south countries have an unmet need for modern contraception – meaning they want to avoid a pregnancy but are not using a modern method,” added Dr. Dube.

The movement for rights-based family planning is an integral part of the global push for gender equality.

Gender is at the root of every person’s ability to make and carry out decisions about sex, contraception, and sexual and reproductive health.

As the global push for gender equality gains strength, FP2030 affirms the central importance of rights-based, gender-transformative family planning. 

Dr Sheila Macharia -FP2030 Report
Dr Sheila Macharia

The report is the first to fully reflect the impact of FP2030’s move to decentralize from one secretariat in Washington DC, to five regional hubs in Nairobi, Kenya; Abuja, Nigeria; Kuala Lumpur, Malaysia; and Panama City, Panama; to ensure that the partnership is driven by regional priorities.

The report contains demographic updates from each region, as well as a special focus on postpartum family planning, a topic chosen by the Regional Hubs, as a high impact practice with demonstrated ability to improve maternal and newborn health outcomes and increase uptake of contraception.

Continue Reading

Trending