The risks of poor cybersecurity hygiene have never been greater. Here’s how physicians can improve theirs.
Healthcare remains one of the most breached sectors, with hacker attacks hitting clinics and hospitals and making news headlines almost every day. It is estimated that, in 2020, ransomware attacks alone affected over 600 separate healthcare institutions and more than 18 million individual patient records (a staggering 470% increase from 2019).
Healthcare organizations make an ideal prey for hackers, as many of them use outdated security software and continue to underinvest in cybersecurity. At the same time, they get to keep an overwhelming amount of the most sensitive data.
According to the expert, in the majority of security incidents, the patients’ data gets compromised due to employee negligence and simple human error. Hackers can get unauthorized access to the organization’s network as a result of successful phishing attacks or other scams. Unfortunately, doctors may be unknowingly contributing to some major security issues too, especially during these hectic times of telehealth and digital transformation.
What are the most common mistakes at doctors' offices?
Weak password management. One of the duties of healthcare providers is to protect their patients’ medical records and personal information, which is very sensitive. You can always change your leaked passwords or get a new credit card, but your DNA is for life. Unfortunately, doctors use shockingly weak passwords, and those are one of the top causes of data breaches.
Unsecure data storing and sharing. In most cases, doctors store their patients’ records unencrypted on their computers. This is a major risk when ransomware hits, as hackers gain access to files and may threaten to leak or destroy them unless a ransom is paid. Additionally, many clinics share their patients’ information among themselves or with third-party providers via email. However, email is one of the least safe methods to exchange information.
Using out-of-date software. With patient care being a priority at the doctor’s office and everything else secondary, computer security usually gets overlooked. One of the major mistakes is missing software updates. Updates are very important as they include important fixes and patches that prevent hackers from exploiting known security vulnerabilities.
How could doctors improve cybersecurity?
Despite cybersecurity being a complex mechanism, there are some easy-to-follow measures a doctor needs to take to improve their cybersecurity hygiene.
Oliver Noble is a cybersecurity expert at NordLocker, a data encryption solution.
NordLocker is the world’s first end-to-end file encryption tool with a private cloud. It was created by the cybersecurity experts behind NordVPN – one of the most advanced VPN service providers in the world. NordLocker is available for Windows and macOS, supports all file types, offers a fast and intuitive interface, and guarantees secure sync between devices. With NordLocker, files are protected from hacking, surveillance, and data collection. For more information: nordlocker.com.