New Study Shows Just How Vulnerable Hospitals Are To Phishing Attacks

Research led by Brigham and Women’s Hospital in Boston has shown that hospitals are hugely vulnerable to potentially disastrous phishing attacks.

As the world becomes increasingly digitised, more businesses are grappling with how cybersecurity threats could impact them. The threat cybercriminals pose is particularly potent for the healthcare industry; a successful phishing attack could not only compromise patient data, but could wreak havoc on patient care.

So, how vulnerable are healthcare organisations to these kinds of attacks? Vulnerable enough to warrant concern, according to a new study released by Brigham and Women’s Hospital in Boston, Massachusetts.

“Information security is increasingly important for healthcare organisations, and cybersecurity attacks are a major risk to a hospital’s ability to operate and deliver care,” explained corresponding author Dr William Gordon of Brigham’s division of general internal medicine and primary care.

The researchers gauged susceptibility to phishing attacks through a multicentre study, which collected data from six healthcare organisations. Each organisation ran phishing scam simulations over the course of seven years to track how often healthcare employees would click through. In total, the team analysed click rates for almost 3m simulated emails that ranged from office- and IT-related to personal correspondence.

The investigation report a high click rate for simulated phishing attacks – more than 14pc of phishing emails were clicked. Click rates ranged from 13pc to 49pc, however, depending on industry. This action would open an organisation up to attack were the email sent by a genuine bad actor.

Yet the team also noted a reduction in click rates after campaigns were mounted raising awareness of phishing threats; after institutions had run 10 or more phishing simulation campaigns, the click-through rates reduced by one-third, suggesting that the issue can be remedied.

“We know that in healthcare, the stakes are high. Patient data, patient care, patient trust and financial stability may be on the line,” Gordon added.

“Understanding susceptibility but also what steps can be taken to mitigate it are critical as cyberattacks continue to rise … Our study suggests that while the risk is high, there is an opportunity to mitigate it through training.”

RECENT NEWS

Reassessing AI Investments: What The Correction In US Megacap Tech Stocks Signals

The recent correction in US megacap tech stocks, including giants like Nvidia, Tesla, Meta, and Alphabet, has sent rippl... Read more

AI Hype Meets Reality: Assessing The Impact Of Stock Declines On Future Tech Investments

Recent declines in the stock prices of major tech companies such as Nvidia, Tesla, Meta, and Alphabet have highlighted a... Read more

Technology Sector Fuels U.S. Economic Growth In Q2

The technology sector played a pivotal role in accelerating America's economic growth in the second quarter of 2024.The ... Read more

Tech Start-Ups Advised To Guard Against Foreign Investment Risks

The US National Counterintelligence and Security Center (NCSC) has advised American tech start-ups to be wary of foreign... Read more

Global IT Outage Threatens To Cost Insurers Billions

Largest disruption since 2017’s NotPetya malware attack highlights vulnerabilities.A recent global IT outage has cause... Read more

Global IT Outage Disrupts Airlines, Financial Services, And Media Groups

On Friday morning, a major IT outage caused widespread disruption across various sectors, including airlines, financial ... Read more

We use cookies to give you the best experience possible. By continuing we’ll assume you’re on board with our cookie policy.