P&C

Cybersecurity Remains High Priority for Healthcare Institutions during COVID-19 Outbreak

Healthcare accounts for 41% of all data breaches.
By Katie Oberkircher Posted on March 24, 2020

At a time when patient data is critical to slowing the virus, creating a vaccine, and coordinating care, hospitals have started to fend off new security attacks and phishing attempts, where email senders pose as employees working remotely, CDC officials with important information or send a fake map tracking COVID-19 cases as a ruse to steal usernames, passwords, and other personal information through the deployment of malware. In addition, the Department of Health and Human Services (HHS) endured a cyberattack on its computer system, which investigators believe was intended to create disruption and enable the spread of misinformation.

Healthcare is one of the most targeted industries, accounting for 41% of all data breaches. Health systems have become an especially prominent target because their resources are currently focused on treating an exponential influx of patients. The rate of digitization and data sharing also creates multiple infiltration points, leaving more doors open for cyberattacks, destabilizing diagnostic functions and the handling of patient information. The result could severely disrupt patient care, even forcing them to vacate to nearby facilities. There’s also evidence that care outcomes worsen for patients over time after a cyber breach. It could also pose a significant threat to hospital operations and revenues.

On the flip side, some ransomware gangs pledged to stop attacking hospitals because of the global pandemic. And the uptick in attacks doesn’t necessarily coordinate with coronavirus—it correlates with any major topical event. The Super Bowl, elections, the Olympics, are all opportunities on which cybercriminals try to capitalize. 

Overall, the frequency and sophistication of these attacks has forced the healthcare industry to reexamine how to protect its systems. As it struggles to employ enough staff and keep supplies stocked, any other disruptions could be significant in cumulative effect over time.  

Katie Oberkircher Director, Market Intelligence & Insights Read More

More in P&C

Cyber Consulting Could Save Your Clients’ Business
P&C Cyber Consulting Could Save Your Clients’ Business
Buying a cyber policy doesn’t ensure a business stays open after an attack.
P&C Insurtech Farm
Satellite and drone imagery are improving yields and reducing costs for farmers ...
Tech Plants Its Seeds in Farming
P&C Tech Plants Its Seeds in Farming
Q&A with Rom Aviv, Managing Director, Head of Insurance, Agritask
Civil Authority and Other Common BI Coverages May Not Cover Coronavirus Losses
P&C Civil Authority and Other Common BI Coverages May Not Cover Coronavirus Losses
Most require direct physical loss or damage, which can be hard to prove.
Three Key Cyber Events
P&C Three Key Cyber Events
The past six months have brought three new reasons to improv...
Lloyd’s Burns Off Cyber Fog
P&C Lloyd’s Burns Off Cyber Fog
The London market has mandated some clarity on cyber cover, ...