By Kacey Wheeler and Michael Hummel, Marsh McLennan Agency Threat Landscape Today Email compromise and ransomware are the two most common incident types affecting healthcare according to Kroll1. Healthcare organizations, including community health centers (CHCs), store a vast amount of valuable information including personal and medical information. Cybercriminals can use this data for various malicious purposes, such as identity theft, financial fraud, extortion, or selling on the dark web. Email compromise and ransomware attacks provide direct access to this valuable data. CHCs operate in a time-sensitive and critical environment where uninterrupted access to patient data and systems is essential for providing quality care. Ransomware attacks, which encrypt data and demand a ransom for its release, can severely disrupt operations, leading to potential harm to patients and financial losses associated with recovery or a potential ransom payment. The healthcare industry also faces ongoing risks from insider threats. It is important to recognize that attackers may not always originate externally but can also emerge from within the organization itself. Vendor Cyber Risk Third party cyber risk imposed from relationships with vendors continues to be a prevalent issue for CHCs, especially since healthcare organizations often have complex supply chains and relationships with third party vendors. Third party vendors provide countless crucial services that can lead to large losses if shut down by a cyber-attack or other failure such as systems crashing from a software update. This can lead to critical downtime or breach of data within the custody of a vendor. Furthermore, network connections with the third-party vendor can provide an entry point for attackers if the third party is breached. How Cyber Insurance Helps You Stay Protected Cyber insurance plays a crucial role in managing cybersecurity risks for CHCs by providing financial protection and support in the event of a cyber incident. Here are six key areas that policies cover:
What to Consider when Selecting Cyber Coverage
Technology plays a crucial role in the healthcare space, enabling advancements in patient care, medical research, and operational efficiency. However, along with these benefits, technology also brings inherent risks, particularly in terms of cybersecurity. Balancing the advancements that technology allows with a robust cybersecurity management program is essential. While implementing security controls is of utmost importance, the significance of having a well-crafted insurance policy is a critical component to the cybersecurity puzzle. https://www.kroll.com/en/insights/publications/cyber/state-cyber-defense-healthcare To learn more check out the free Managing Cyber Risk in Healthcare: The Essential Role of Cyber Insurance Webinar! https://mmc.zoom.us/rec/share/I7dT5NCXFWzCfYfOei4rUVe3X6zzkvkfTJrkY4-J9KImiSBmoqCIuEzqJGmp0T8V.iZ9p3bjcWpeWeVGC?startTime=1724778023000 Passcode: 2H&9bn5&
NWRPCA welcomes and regularly publishes white papers and articles submitted by members, partners and associates with subject matter expertise. The appearance of any guest publication in our Health Center News database represents the views of the author and does not constitute endorsement by NWRPCA of the stated opinions or perspectives, nor does it suggest endorsement of the contributor's products or services.
Comments are closed.
|
Archives
October 2024
Categories |