In an escalating war of cybercrime, smaller healthcare providers are plainly losing more battles than they are winning. Is it time to try a different approach to security?
An increasing number of healthcare providers globally are succumbing to the overwhelming resources of sophisticated nation-state military espionage units and organized crime syndicates. Is it now time for some to consider throwing in the towel and transferring their cyber risks to specialist healthcare managed security services providers?
Covid-19 has transformed healthcare around the world. Many staff have been furloughed as non-emergency procedures are postponed, nearly all non-clinical employees now work from home, and telehealth has largely replaced doctor visits and consults. The attack surface has radically increased and attackers know it!
Many criminals are using this confusion and disruption to attack exposed healthcare systems. They do so for everything from simple criminal monetary gain, via ransomware attacks and other forms of extortion, to the attempted theft of clinical research, other IP, and non-public data, as we reported in our previous article.
Already outnumbered at least five to one, the odds of successfully defending a cyberattack for healthcare providers just got much worse. Would they be better, therefore passing the defensive torch to an outside team of cybersecurity experts?
This was a question I put to my panel of guests this week at the CTG Intelligence Cybersecurity Virtual Forum in Albuquerque, NM. Watch what they had to say below in this 32-minute video.
There’s nothing like a good crisis to cause a re-evaluation of how we do things. While any epidemic is sure to stress the health system of just about any country, in the United States we needed to be jarred out of our comfort zone to re-think how we do things and how we more efficiently deliver healthcare services to the population.
While no one is doubting the dedication of our doctors and nurses or the many others involved in the delivery of health services, we have unfortunately inherited a broken legacy system from the post-war 1940s that has struggled to contain costs, and to provide healthcare services to all who need them.
Unrealistic vertical demand for health services has combined with corruption and mass profit taking by certain parts of the system that has led to huge inefficiencies that divert scarce funds away from where they are needed. It has also highlighted the horrific imbalance of access to health services. One only has to look at the COVID death rates between rich and poor Americans to realize that something is very wrong.
Medical malpractice insurance doubles the costs of a medical procedure, while an overly complex and bureaucratic medical billing and insurance system creams a good percentage off the top of available funds. Reimbursement delays from insurance and patients, neither of whom can figure this stuff out compound losses, however it is the exorbitant costs of pharmaceutical drugs in the US that sucks the life out of the system. It is actually cheaper for Americans to fly to the other side of the world to purchase their US and European manufactured drugs than it is to buy them with insurance at home. This is a subject I wrote about last year to much popular acclaim in a three part story on Medical Tourism.
But public health is a 'public good' to all of us. There is an economic, social, and moral utility for the person sat next to me on the subway or an aircraft to be healthy and disease free for my own benefit, and those I work and live with. Surely this is a lesson we should have learned in the 19th century with Typhoid and other communicable diseases. Yet our national approach to pandemic disease control, appears to be closer to a King in the Middles Ages trying to containing the Black Death, than to 21st century science-based pandemic disease control - even accounting for the fact that some of our elected representatives plainly flunked out of their middle school science classes. Lets face it, US healthcare is in serious trouble. The needless deaths of hundreds of thousands of Americans to the SARS-CoV-2 virus, is just a symptomatic expression of much bigger structural problems in our health system.
In fact, COVID-19 may have just saved US Healthcare from its swan dive – and a spiraling decline of rising costs, and diminishing reimbursement rates, while much of the population is denied access. In the last decade hospitals have frantically engaged in massive cost-shifting between federal, state, IHS, and insurance systems to try and stay afloat. Many haven’t, and that has been devastating for the rural communities they once served. Let’s face it, the system has been broken for a quite a while, and we have done very little about fixing it. COVID-19 however, has changed that!
The truly massive growth in telehealth and telemedicine since February has been amazing. Doctors and nurses love it, patients love it, and it keeps the slightly sick away from those who may be highly contagious and in need of radical medical intervention. Both primary care and specialist physicians have commented how many more patients they can see per hour using video technology, but there are things that we need to fix.
This session looks at what the future of digital healthcare will be, post-COVID, using new tools, new approaches and improved broader access to health services. It will examine necessary changes to regulation, patient identity verification, cybersecurity and the rise of healthcare IoT including wearables.
Hear from two national experts as they share their thoughts for the future of US healthcare.
Cyber Thoughts is dedicated to the disclosure and discussion of cybersecurity events, trends and concerns impacting the global healthcare and life sciences industry. If this is an area of interest for you, please feel free to subscribe to the email RSS feed below, so you don’t miss anything.
Cyber Thoughts welcomes the participation of readers via the comments section of articles and from qualified guest bloggers, healthcare practitioners and cybersecurity thought leaders.
Original stories and articles may be republished for free provided that attribution is provided to the source and author.
There is a danger that our appetite for new medical technology and digital maturity is allowed to outpace our adoption of cyber maturity leading to huge gaps in our security.
Anatomy of an Attack
Ever wondered how a hacker gets inside your network?
It's remarkably easy. Watch this carefully! (You might want to maximize the window so as not to miss anything).
Hacking IoT is easy!
Still think that your IoT isn’t a risk to your business network and applications.
It’s remarkably easy. Watch this carefully! (You might want to maximize the window so as not to miss anything).
Beekeeper Attack
Share this with elderly friends and relatives. This is how hackers steal all your money.
Translate
A Career in Cybersecurity
Considering your career options and interested in getting into a role in cybersecurity? This may be for you.
Featured Interview
Livestream interview from the HIMSS AsiaPac Conference in Bangkok, Thailand.