While the healthcare sector has long been at risk from cyberattacks, the harms to human security are heightened during crises like the COVID-19 pandemic, when people across the world are particularly reliant on health services. Cyber operations that disrupt healthcare services are a direct threat to human security, which is vital to cyberpeace.
Healthcare providers and people in need of medical care are the victims of cyberattacks. At the peak of the pandemic, we documented one attack against healthcare providers per day: the death of a patient after a ransomware attack in Duesseldorf; the crippling of 400 hospitals run by Universal Health Services in the United States, and the leak of patient records in Finland to name a few.
Many states, private sector and civil society organizations have reaffirmed their view that international law applies in cyberspace. Existing laws offer strong protection for the health sector against cyber operations, but the effectiveness of this protection may be limited by a number of grey areas, such as differing definitions of key terms and concepts or contrasting application in different contexts.
Recent attacks against healthcare providers and vaccine producers show a new modus operandi – double extortion. Rather than just encrypting victims’ files and requesting a ransom, the attackers exfiltrate sensitive personal data and threaten to leak it if their demands are not met.
Victim’s Story: How Hancock Regional Hospital Responded to a Ransomware Attack
It all happened in less than 48 hours: a ransomware attack, vital hospital computer systems shut down, a bitcoin payment secured on the dark web, and decryption codes used to make systems operational again.
A cyberattack no one saw coming in January 2018 taught Hancock Regional Hospital officials a valuable lesson – investing in cybersecurity is crucial.
Steve Long, CEO and President of the Hancock Regional Hospital talked to Adrien Ogee, COO of the CyberPeace Institute about how the attack unfolded in the hospital and why they decided to pay a ransom.
In recent months, media outlets have described attacks against medical facilities all over the world – in France, Czech Republic, China, Nicaragua, United States, Germany, Finland, Spain etc. The global health crisis has not only been a boon for cybercriminals but has also provided an opportunity for states to shift the realities of global geopolitics. This has translated directly into an escalation of nation-state activity in cyberspace. Browse through the timeline to know more.
Discover the magnitude and location of cyberattacks against healthcare organizations.
Our Call to Action invited governments to stop cyber operations against medical facilities and protect healthcare.
We partner with qualified companies to provide free and trusted cybersecurity assistance to healthcare professionals fighting COVID-19.
Healthcare needs a voice. We are calling on anyone who has experienced consequences of such attacks to share their stories.
Have you been a victim of a cyberattack?
Do you need help?