Published on November 16, 2023, 8:03 pm

Cybercriminals have been successful in encrypting data in around 75% of ransomware attacks targeting healthcare organizations, as stated in “The State of Ransomware in Healthcare 2023” report shared by Sophos. This alarming figure represents the highest rate of encryption over the past three years.

On the other hand, only 24% of healthcare organizations have reported being able to disrupt a ransomware attack before data encryption, marking the lowest rate of disruption in the sector during the same period.

Chester Wisniewski, Director and Field CTO at Sophos, expressed concern about these numbers and highlighted that they indicate a decline in security maturity within the healthcare sector. Wisniewski noted that this declining trend suggests that healthcare organizations are increasingly losing ground against cyber attackers and struggling to detect and stop attacks in progress.

Ransomware attacks continue to evolve and become more sophisticated, with attackers accelerating their operations. The median time for an attack to occur is now just five days, often taking place after regular business hours for 90% of organizations.

To prevent these attacks, Sophos recommends strengthening defensive measures with security tools that can effectively counter common attack vectors. Additionally, optimizing attack preparation by regularly backing up data, practicing data recovery from backups, and maintaining an up-to-date incident response plan are essential steps. Lastly but equally important is maintaining good security hygiene through timely patching and regularly reviewing security tool configurations.

The healthcare sector must take decisive action to fortify its defenses against cyber attackers. By adopting proactive security strategies and staying vigilant in implementing best practices recommended by experts like Sophos, organizations can significantly reduce their risk of falling victim to ransomware attacks.

For more information on this topic, you can read the full article on FutureCIO’s website.


Comments are closed.