Healthcare Industry at Serious Risk Due to IoT Devices

Healthcare Industry at Serious Risk Due to IoT Devices

The proliferation of healthcare IoT devices, along with unpartitioned networks, insufficient access controls and the reliance on old legacy systems, has exposed a vulnerable attack surface that can be exploited by cybercriminals determined to steal personally identifiable information and protected health information, in addition to disrupting healthcare delivery processes, according to the Vectra 2019 Spotlight Report on Healthcare.

"Healthcare IT security teams are often kept in the dark and behind the curve when it comes to changes in infrastructure. For example, new medical devices are often connected to the network without informing IT security teams. Gaps in IT security policies and procedures make it easier for healthcare staffs to make unintentional errors that result in exposure and increased security risk. This can take the form of improper handling and storage of patient files, which is a soft spot for cybercriminals in search of weaknesses to exploit," says Chris Morales, Head of Security Analytics, Vectra.

Advertisement

Key findings include:

  • The most prevalent method attackers use to hide command-and-control communications in healthcare networks was hidden HTTPS tunnels. This traffic represents external communication involving multiple sessions over long periods of time that appear to be normal encrypted web traffic.
  • The most common method attackers use to hide data exfiltration behaviors in healthcare networks was hidden domain name system (DNS) tunnels. Behaviors consistent with exfiltration can also be caused by IT and security tools that use DNS communication.
  • There was a spike in behaviors consistent with attackers performing internal reconnaissance in the form of internal darknet scans and Microsoft Server Message Block (SMB) account scans. Internal darknet scans occur when internal host devices search for internal IP addresses that do not exist on the network. SMB account scans occur when a host device rapidly makes use of multiple accounts via the SMB protocol that is typically used for file sharing.
  • While many healthcare organizations experienced ransomware attacks in recent years, the report found that ransomware threats were not as prevalent in the second half of 2018. It is still important to catch ransomware attacks early, before files are encrypted and clinical operations are disrupted.
  • Botnet attacks are opportunistic and are not targeted at specific organizations. While botnet attacks persist everywhere, their rate of occurrence in healthcare is lower than other industries.
#iot

Leave a comment

Make sure you enter all the required information, indicated by an asterisk (*). HTML code is not allowed.

back to top

Popular UK Tech Reviews

ExpressVPN UK Review: The best VPN service around

ExpressVPN UK Review: The best VPN service around

11 May, 2019

What impressed us about ExpressVPN the most, is that it has gone the extra mile to provide a great user experience. ...

Nintendo Labo VR Kit UK Review: Virtual reality fun for your Switch

Nintendo Labo VR Kit UK Review: Virtual reality fun for your Switch

10 May, 2019

A year after the Nintendo’s buildable Labo kits was intorduced came a wide range of Labo experiences to pick and cho...

Apple 27-inch iMac 2019 UK Review: Power and style

Apple 27-inch iMac 2019 UK Review: Power and style

07 May, 2019

There are many reasons people spend alot of money on an iMac, particularly the 5K 27in model.

Amazon Kindle (2019) e-reader UK Review: Basic no more

Amazon Kindle (2019) e-reader UK Review: Basic no more

20 May, 2019

With the arrival of the 2019 model, the issue of the previous Amazon Kindle being a bit basic have been redressed; you...

Canon EOS R UK Review: A real mirrorless statement

Canon EOS R UK Review: A real mirrorless statement

16 May, 2019

Just like that, the mirrorless camera market has gone from being popular to ruling the waves in a very short time. ...

Lindy BNX-100 Headphones UK Review: Great sound at a good price

Lindy BNX-100 Headphones UK Review: Great sound at a good price

09 May, 2019

The BNX-100 are, like their predecessor, a set of wireless over-the-ear active noise-cancelling (ANC) headphones. They...

Twelve South BookArc UK Review: Simple and beautiful

Twelve South BookArc UK Review: Simple and beautiful

23 May, 2019

The most popular and most iconic Twelve South product of all is the BookArc — a simple piece of curved aluminum...

Team Sonic Racing UK Review: Sega's iconic hedgehog is back

Team Sonic Racing UK Review: Sega's iconic hedgehog is back

22 May, 2019

The kart racer has long been a favourite with game publishers looking to squeeze extra cash out of family-friendly chara...

Apple iPhone XS Max UK Review: It's glorious

Apple iPhone XS Max UK Review: It's glorious

21 May, 2019

Apple told us in 2017 that the iPhone X was a taste of the future, they weren't joking. iPhone XR, iPhone XS and the i...

Categories

Home Tech Reviews UK

Mobile Tech Reviews UK

×

Sign up to keep in touch!

Be the first to hear th latest Cyber and Tech News straight to your mailbox.

Check out our Privacy Policy & Terms of use
You can unsubscribe from email list at any time