Hospitals face cybersecurity risks in surprising new ways

June 17, 2022

While ransomware attacks have been stealing the headlines, threats can come from many sources making it critical for healthcare organizations to have a comprehensive cybersecurity strategy.

Cyber threats take many forms and while the degree of sophistication can vary, every cyberattack has the potential to impact the availability, integrity or confidentiality of your system and the data within it. Cyber threats can happen anywhere within your organization or sneak in through third-party vendors.

Ransomware attacks are currently the number one threat to healthcare organizations. More than half of healthcare organizations were hit by a ransomware attack in 2021 and of those, 66% said the cybercriminals were successful in encrypting their data. Ransomware threat actors are getting more sophisticated and the cost to retrieve sensitive data from cybercriminals is rising.

While ransomware attacks have been stealing the headlines, threats can come from many sources making it critical for healthcare organizations to have a comprehensive cybersecurity strategy. During a February 16, 2022, HealthLeaders webinar, Securing the Healthcare Enterprise in ‘The New Normal’, presenters Christine Wheaton, Chief Privacy and Security Officer at Henry Ford Health in Detroit, MI and Jacqueline Sullivan, VP of Security Operations Coordination for Minneapolis-based U.S. Bank, discussed some strategies that organizations can use to protect against cyber threats.

1. Comprehensive training

Tried and true cybersecurity practices still hold up. Make sure your workforce is getting periodic cybersecurity safety training and ensure staff members are aware of the risks around the data.

2. Proactive practices

When looking at a new solution, a new medical device, even a new web application solution, make sure your security and risk experts are involved from the start. As part of the evaluation, your security and risk team can identify potential vulnerabilities and determine if they can be addressed.

3. Identify your weaknesses

Every organization has a unique environment with its own vulnerabilities. Establish a workflow between your security team who are identifying vulnerabilities and determining risk and your IT teams who manage the assets and who can remediate.

4. Vet your vendors

Ensure that third party vendors have adequate cybersecurity measures in place. Conduct a supplier risk assessment to identify potential areas of risk with third party vendors and the fourth party vendors that provide services and supplies to them.

For more information, read our guide to Protecting your healthcare organization from cyber criminals featuring additional insights from Christine Wheaton and Jacqueline Sullivan.

Tyler Eppley is the vice president of healthcare payment solutions at U.S. Bank and has worked exclusively with providers for more than 15 years to optimize revenue cycle operations and improve the patient experience.

Learn about U.S. Bank

Visit usbank.com

Request a call

3 ways to make practical use of real-time payments

Risk management strategies for foreign exchange hedging

What to know about romance scams

Kick off the new year with a cybersecurity boot camp

Cybersecurity – Protecting client data through industry best practices

BEC: Recognize a scam

How to report a scam

Student loan scams and other common student scams to be aware of

8 of the newest scams targeting your money

What is financial fraud?

What is Medicare? Understanding your coverage options

7 financial questions to consider when changing jobs

How a Health Savings Account (HSA) can benefit your retirement plan

7 ways to teach your children to be smart about online scams

4 benefits to paying foreign suppliers in their own currency

Benefits of billing foreign customers in their own currency

Money muling 101: Recognizing and avoiding this increasingly common scam

Don’t let an uptick in scams ruin your holidays

How to keep your assets safe

6 things to know about long-term care insurance cost and benefits

Is your employer long term disability insurance enough?

Webinar: CRE technology trends

Restaurant surveys show changing customer payment preferences

Enhancing the patient experience through people-centered payments

Digital trends poised to reshape hotel payments

Automate escheatment for accounts payable to save time and money

3 benefits of integrated payments in healthcare

Avoiding the pitfalls of warehouse lending

Improve government payments with electronic billing platforms

Myth vs. truth: What affects your credit score?

More payment options create checkout success

Want AP automation to pay both businesses and consumers?

Meeting healthcare strategy goals with electronic patient refunds

Access, flexibility and simplicity: How governments can modernize payments to help their citizens

ABCs of APIs: Drive treasury efficiency with real-time connectivity

The latest on cybersecurity: Mobile fraud and privacy concerns

Liquidity management: A renewed focus for European funds

Cryptocurrency custody 6 frequently asked questions

5 questions you should ask your custodian about outsourcing

Insource or outsource? 10 considerations

10 ways a global custodian can support your growth

The benefits of a full-service warehouse custodian

Colleges respond to student needs by offering digital payments

6 timely reasons to integrate your receivables

Third-party vendor risk: protecting your company against cyber threats