Attacks on health care organisations up 85 percent in past year

By

Attempted cyberattacks on health care organisations have increased 85 percent in the past year, according to SecureWorks, a software-as-a-service vendor.


The company's health care clients have been targeted 10,630 times per day during the second half of 2007 and January of this year, a significant increase over the average rate of 11,146 times per client per day during the first half of 2007, according to a recent release.

SecureWorks researchers blamed the spike on an increase in client-side attacks against organisations, as well as health care institutions' use of large attack surfaces and high volumes of personally identifiable information and computing resources.

The rise in application-based attacks affects all organisations, health care or otherwise, according to SecureWorks researcher Hunter King.

“Client-side attacks have continued to be popular with hackers because compromising an employee's PC is often much easier than hacking directly into an organisation's database,” he said. “Many times it is simpler to compromise an employee PC because an employee's position often requires them to have access to the web. A company's databases are also desirable because they have authority to communicate to a company's backend systems, whereas communications coming from an IP address outside the network is often blocked.”

Health care organisations also store more personal information than other businesses -- including Social Security numbers, names, addresses, birth dates and banking and credit card information --  making them a rich target for cyberthieves, according to the analysts.

“They have to remain fairly open to a lot of different systems. Facilities might be setup differently, and there's a lot of administrative overhead,” said researcher Don Jackson. “There are a lot of doors they have to make sure are locked.”

Health care organisations are also attractive targets for cyberattackers because the institutions are accustomed to using open networks to conduct billing, record transfers and communication with different providers. Such a structure gives malicious hackers more openings to attack a network, according to SecureWorks.

Medical organisations also inadvertently help malicious hackers by using networks with large numbers of computing resources, such as high bandwith networks, systems with many PCs connected to them, and around-the-clock resources, the researchers said.

See original article on scmagazineus.com
Got a news tip for our journalists? Share it with us anonymously here.
Copyright © SC Magazine, US edition
Tags:
security

Sponsored Whitepapers

Datacom + Microsoft Azure: Turn Ideas Into Impact in Just 4 Weeks
Datacom + Microsoft Azure: Turn Ideas Into Impact in Just 4 Weeks
Protect APIs. Protect Your Business.
Protect APIs. Protect Your Business.
KnowBe4 Benchmark Report: Reducing Human Risk & Phishing Vulnerability in ANZ
KnowBe4 Benchmark Report: Reducing Human Risk & Phishing Vulnerability in ANZ
Modern Identity for SAP and Beyond: Replace SAP IDM with Saviynt
Modern Identity for SAP and Beyond: Replace SAP IDM with Saviynt
Saviynt Simplifies GRC and Access Control for SAP and Beyond
Saviynt Simplifies GRC and Access Control for SAP and Beyond

Events

Most Read Articles

SA Water plans 'once-in-a-generation' core technology uplift

SA Water plans 'once-in-a-generation' core technology uplift
Ex-student charged over Western Sydney University cyberattacks

Ex-student charged over Western Sydney University cyberattacks
WhatsApp banned on US House of Representatives devices

WhatsApp banned on US House of Representatives devices
Victoria's first government tech chief steps down

Victoria's first government tech chief steps down
techpartner.news logo
Dave Stevens on Brennan's evolution and the need for Aussie tech unity
Dave Stevens on Brennan's evolution and the need for Aussie tech unity
Sydney's ITKnocks on contact centre AI and the slow death of the IVR
Sydney's ITKnocks on contact centre AI and the slow death of the IVR
"It's an exciting time to be part of the health and aged care sector"
"It's an exciting time to be part of the health and aged care sector"
Insicon founder Matt Miller on the coming 'tsunami' of compliance and educating boards about cyber security
Insicon founder Matt Miller on the coming 'tsunami' of compliance and educating boards about cyber security
Orro claims Australia first with managed digital asset discovery service
Orro claims Australia first with managed digital asset discovery service

Log In

  |  Forgot your password?