Almost one year has passed since the reports began to appear that the Healthcare change was the enormous clearing process, It suffers from a major electronic attack.
The company – which treats the claim for hundreds of thousands of doctors, pharmacies, and others, was running away about 15 billion transactions every year – Hit by BlackCat Ransomware Essentially delusional.
In weeks and months after that, Follow repercussions When the volume and scope of the breach became clear, Countless health care organizations in the country Of all shapes and sizes are unable to obtain their claims.
It was also revealed in the UNITEDHEALTH GROUP certificate before Congress that the infiltrators managed to reach the Change Network thanks The lack of simple safety tools such as multi -factor authentication.
By the end of 2024, the attack was easily The largest health care data breach this year And – until now at least – All the time. Even recently last month, the number of affected individuals has been reviewed up, as about 190 million people were affected, according to January. a report.
Within 12 months since the long -term cybersecurity event, what lessons did we learn?
We have recently heard from many executives of sellers in companies in all the corners of the industry about their experience – and about their ideas about what the positives arose from the violation he was feeling through health care.
“This incident was a blatant reminder of the weakness that was not resolved related to sellers, partners and partners – issues discussed for a long time but not to a large extent. .
He said, “Although the violation was a major setback, it shed light on the regular problems, which sparked the late legislative progress and pushing innovation among the leaders of cybersecurity for health care,” he said. “Although the challenges are still ongoing, this violation has put the way for imminent changes with our transfer to 2025.”
These lessons include an understanding of “the decisive importance of a strong safety framework, such as Hitrust, to manage security risks and sensitive data protection,” added Jonathan Schumaker, CEO of About Healthcare, which develops patients in Amnesty International. “It also reminds us of the importance of working with the best high -quality practices to measure and monitor the risks that ultimately help us to protect our systems, data and customer patients effectively.”
I put the time for a few weeks to stop the need for the need to obtain health care information wherever and when there is a need-I presented a lesson in the need for iron-covered safety.
“The data is invaluable, so we must be more useful in protecting and transferring the data,” said Kim Perry, chief growth official at EMTLILIGENT, an analysis company that supports artificial intelligence. “This is especially important because we are seeking to increase data liquidity to meet Hitech, HT-1 and other health standards and intertwined standards.”
Dr. Michael Boko, chief clinical official at the Equality Company at the value -based care company, said that the accident “highlighted the weaknesses inherent in the central health care platforms, where the concentration of sensitive data could become a major goal for electronic criminals.”
“To alleviate such risks, we must invest in advanced security measures, including quantum security techniques, to protect our systems,” he added. “Enhancing the capabilities of detecting the end and response point is also very important. In addition, strong employee education programs are necessary to prevent hunting and other electronic threats.”
“We have gained a year to violate the change in the field of health care.
Raidi said: “The motivations, service providers, Al -Maqasra, EHRS and the revenue course need to establish repetition and create multiple layers of protection to defend and respond to electronic threats.” “By sharing ideas and resources, we can enhance our collective defenses and protect the ecosystem for health care more effectively.”
But it begins with the basics and simple tools, such as MFA.
He said: “The health care industry still has great progress in the increasing combating advanced electronic attacks.” “Many organizations give priority to rest on security, leaving themselves weak.
He added: “Simple, but influential measures, such as implementing multiple factors, strict training of employees, and testing the security of fixed external parties can have a long way towards protecting systems.” “The industry must adopt a proactive cybersecurity culture to protect sensitive data and maintain confidence in the digital age.”
Mike Milliad is the executive of the Healthcare It News
Email Author: mike.miliaard@himssmedia.com
Healthcare is news that publish HIMSS.
