SmartStateIndia
Reports

Nearly 106 million healthcare records exposed over 14 months reveals Tenable research

healthcare

Analysis by Tenable’s Security Response Team (SRT) has revealed 237 breaches in the healthcare sector in the calendar year 2020. The incidents continued into 2021, with 56 breaches already disclosed by the end of February 2021.

Ransomware was reported as the most prominent root cause of healthcare breaches, accounting for a whopping 54.95%. The top ransomware used was Ryuk, accounting for 8.64% of ransomware-related breaches. It was followed by Maze (6.17%), Conti (3.7%) and REvil/Sondinokibi (3.09%).

Third-party breaches accounted for over a quarter of the breaches tracked and nearly 12 million exposed records. Other leading causes included email compromise/phishing (21.16%), insider threat (7.17%) and unsecured databases (3.75%).

Apart from the obvious strain of dealing with the pandemic, telehealth solutions surfaced as a prominent risk area over the last year. While it may be the much-needed answer to getting medical care to those in need, beyond the limitations of social distancing norms, telehealth solutions considerably expand the surface area for attacks.

“As the COVID-19 pandemic continues to place unprecedented strain on global healthcare infrastructure, attackers are finding what was already an attractive target even more enticing. Technology dependent services such as telehealth, COVID-19 contact tracing app, and a rush to develop and distribute vaccines have greatly expanded the attack surface. With no signs of cyberattacks slowing down in 2021, healthcare organisations need the resources and tools necessary to understand and reduce their cyber risk,” said Rody Quinlan, Security Response Manager, Tenable.

In order to reduce the risk of compromise, healthcare organizations should take a two-pronged approach to reduce the growing threats:

  • Prioritise vulnerabilities: Identify and remediate vulnerabilities most likely to target and impact your organisation.
  • Address the root cause: Once the vulnerabilities most likely to introduce business risk are identified and prioritized, remediate them and continue regular maintenance check-ups.

Related posts

Cyber-capacity building in APAC should involve growing talent pool, regional cooperation and public-private partnerships

SSI Bureau

o9 Solutions Reports Another Record Quarter With 51% Annual Recurring Revenue growth in Q3 2023

SmartStateIndia

External Storage Market Witnessed 21.8% YoY Decline in CY 2020: IDC India

SSI Bureau

Leave a Comment

This website uses cookies to improve your experience. We'll assume you're ok with this, but you can opt-out if you wish. Accept Read More