Trends in Malware Attacks against United States Healthcare Organizations, 2016-2017

Branch, Lauren E; Eller, Warren S.; Bias, Tom; McCawley, Michael; Myers, Daniel J.; Gerber, Brian J.; Bassler, John

doi:10.31646/gbio.7

Cited by 14 publications

(26 citation statements)

References 4 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Cyberattacks have been increasing worldwide and are a growing concern for health care organizations, which are ideal targets because they often have out‐of‐date cybersecurity systems and provide limited training for staff members on safety practices 1,2 . In a 2019 survey of 166 information security leaders at a variety of health care facilities, more than three‐fourths reported experiencing a significant security event in the last year 3 .…”

mentioning

confidence: 99%

“…In a 2019 survey of 166 information security leaders at a variety of health care facilities, more than three‐fourths reported experiencing a significant security event in the last year 3 . The health care sector is especially susceptible to cyberattacks because interruptions in services can have wide‐ranging consequences; for example, disclosure of patient health information can lead to identity theft and medical fraud, and loss of personnel access to medical records can affect patient safety 1,2,4 …”

mentioning

confidence: 99%

“…Cyberattacks can come from inside the organization, such as through negligent employees, or outside the organization, such as through online scam artists and attackers 3 . Facility computers or networks can be accessed through e‐mail, hardware or software infected with malicious software (i.e., malware), compromised medical devices, third‐party web sites, or wireless networks 2,3 . Cybersecurity threats that have had a major effect in health care include e‐mail phishing and ransomware attacks 4 .…”

mentioning

confidence: 99%

See 2 more Smart Citations

Protecting your organization from e‐mail phishing and ransomware attacks

Croke¹

2020

AORN Journal

View full text Add to dashboard Cite

Cyberattacks have been increasing worldwide and are a growing concern for health care organizations, which are ideal targets because they often have out-of-date cybersecurity systems and provide limited training for staff members on safety practices. 1,2 In a 2019 survey of 166 information security leaders at a variety of health care facilities, more than three-fourths reported experiencing a significant security event in the last year. 3 The health care sector is especially susceptible to cyberattacks because interruptions in services can have wideranging consequences; for example, disclosure of patient health information can lead to identity theft and medical fraud, and loss of personnel access to medical records can affect patient safety. 1,2,4 Cyberattacks can come from inside the organization, such as through negligent employees, or outside the organization, such as through online scam artists and attackers. 3 Facility computers or networks can be accessed through e-mail, hardware or software infected with malicious software (i.e., malware), compromised medical devices, third-party web sites, or wireless networks. 2,3 Cybersecurity threats that have had a major effect in health care include e-mail phishing and ransomware attacks. 4 According to Julie Chua, PMP, CAP, CISSP, governance, risk management, and compliance division director, U.S. Department of Health and Human Services, Washington, DC, it is important that nurses and nurse leaders have an awareness and knowledge of what cyberattacks look like and what lines of defense and response are available. "A lack of cybersecurity awareness is one of the main things that comes to mind with regard to why health care organizations are vulnerable to e-mail phishing and ransomware attacks," she said. Sidebar 1 provides a list a of cybersecurity resources for health care organizations.

show abstract

mentioning

confidence: 99%

mentioning

confidence: 99%

mentioning

confidence: 99%

See 1 more Smart Citation

Protecting your organization from e‐mail phishing and ransomware attacks

Croke¹

2020

AORN Journal

View full text Add to dashboard Cite

show abstract

“…For example, health‐care systems are entirely connected and grossly vulnerable to ransomware attacks. In many cases, these crimes are dealt with outside of law enforcement but hold the ability to completely paralyze hospitals for days at a minimum (Branch et al, , ). More dramatically, the country of Georgia found itself unable to communicate from distributed denial of service attacks that took place in the summer of 2008 (Korns & Kastenberg, ).…”

Section: Future Opportunities For Homeland Security Policy Researchmentioning

confidence: 99%

“…Moreover, these data represent a fraction of data in the area. Data for acts of cybercrime and cyber terrorism are mostly unavailable, and those that exist only address relatively well‐known instances of cybercrime (Branch et al, ). The gray area between crime and terrorism hampers efforts to categorize the real probabilities of terror acts systematically.…”

Section: Future Opportunities For Homeland Security Policy Researchmentioning

confidence: 99%

Contemporary Policy Challenges in Protecting the Homeland

Eller¹,

Wandt²

2020

Policy Studies Journal

View full text Add to dashboard Cite

The terrorist attacks of 2001 served as a triggering event for the inception of a policy domain focused on homeland security, and with it came a body of research substantively concentrated on public policy addressing the unique challenges presented in the emerging policy domain. Since naissance, policy issues addressing homeland security have been both disparate and highly salient creating a literature that covers topics ranging from measuring vulnerability of populations to denial of service attacks on medical facilities. This article reviews the literature for a description of what Homeland Security policy is (or is not), where the research in public policy broadly defined has improved knowledge or practice, aspects of the policy domain that require development, and the challenges associated with research in this area. We find that broadly speaking, the most productive areas of inquiry in this domain are those that have the least uncertainty-those that migrated as a mature area of research, those based on objective measures, and those with identifiable origins. KEY WORDS: homeland security, policy process, disaster networking, future challenges S34 Policy Studies Journal, 48:S1

show abstract

Ransomware Attack Associated With Disruptions at Adjacent Emergency Departments in the US

et al. 2023

View full text Add to dashboard Cite

ImportanceCyberattacks on health care delivery organizations are increasing in frequency and sophistication. Ransomware infections have been associated with significant operational disruption, but data describing regional associations of these cyberattacks with neighboring hospitals have not been previously reported, to our knowledge.ObjectiveTo examine an institution’s emergency department (ED) patient volume and stroke care metrics during a month-long ransomware attack on a geographically proximal but separate health care delivery organization.Design, Setting, and ParticipantsThis before and after cohort study compares adult and pediatric patient volume and stroke care metrics of 2 US urban academic EDs in the 4 weeks prior to the ransomware attack on May 1, 2021 (April 3-30, 2021), as well as during the attack and recovery (May 1-28, 2021) and 4 weeks after the attack and recovery (May 29 to June 25, 2021). The 2 EDs had a combined mean annual census of more than 70 000 care encounters and 11% of San Diego County’s total acute inpatient discharges. The health care delivery organization targeted by the ransomware constitutes approximately 25% of the regional inpatient discharges.ExposureA month-long ransomware cyberattack on 4 adjacent hospitals.Main Outcomes and MeasuresEmergency department encounter volumes (census), temporal throughput, regional diversion of emergency medical services (EMS), and stroke care metrics.ResultsThis study evaluated 19 857 ED visits at the unaffected ED: 6114 (mean [SD] age, 49.6 [19.3] years; 2931 [47.9%] female patients; 1663 [27.2%] Hispanic, 677 [11.1%] non-Hispanic Black, and 2678 [43.8%] non-Hispanic White patients) in the preattack phase, 7039 (mean [SD] age, 49.8 [19.5] years; 3377 [48.0%] female patients; 1840 [26.1%] Hispanic, 778 [11.1%] non-Hispanic Black, and 3168 [45.0%] non-Hispanic White patients) in the attack and recovery phase, and 6704 (mean [SD] age, 48.8 [19.6] years; 3326 [49.5%] female patients; 1753 [26.1%] Hispanic, 725 [10.8%] non-Hispanic Black, and 3012 [44.9%] non-Hispanic White patients) in the postattack phase. Compared with the preattack phase, during the attack phase, there were significant associated increases in the daily mean (SD) ED census (218.4 [18.9] vs 251.4 [35.2]; P &lt; .001), EMS arrivals (1741 [28.8] vs 2354 [33.7]; P &lt; .001), admissions (1614 [26.4] vs 1722 [24.5]; P = .01), patients leaving without being seen (158 [2.6] vs 360 [5.1]; P &lt; .001), and patients leaving against medical advice (107 [1.8] vs 161 [2.3]; P = .03). There were also significant associated increases during the attack phase compared with the preattack phase in median waiting room times (21 minutes [IQR, 7-62 minutes] vs 31 minutes [IQR, 9-89 minutes]; P &lt; .001) and total ED length of stay for admitted patients (614 minutes [IQR, 424-1093 minutes] vs 822 minutes [IQR, 497-1524 minutes]; P &lt; .001). There was also a significant increase in stroke code activations during the attack phase compared with the preattack phase (59 vs 102; P = .01) as well as confirmed strokes (22 vs 47; P = .02).Conclusions and RelevanceThis study found that hospitals adjacent to health care delivery organizations affected by ransomware attacks may see increases in patient census and may experience resource constraints affecting time-sensitive care for conditions such as acute stroke. These findings suggest that targeted hospital cyberattacks may be associated with disruptions of health care delivery at nontargeted hospitals within a community and should be considered a regional disaster.

show abstract

Trends in Malware Attacks against United States Healthcare Organizations, 2016-2017

Cited by 14 publications

References 4 publications

Protecting your organization from e‐mail phishing and ransomware attacks

Protecting your organization from e‐mail phishing and ransomware attacks

Contemporary Policy Challenges in Protecting the Homeland

Ransomware Attack Associated With Disruptions at Adjacent Emergency Departments in the US

Contact Info

Product

Resources

About