VIDEO: How to prepare hospitals for ransomware attacks

 

John Gaede, director of information systems, Sky Lakes Medical Center, Oregon, discusses how hospitals should prepare for possible cyberattacks. Gaede speaks from experience after his own hospital was hit by a ransomware attack in 2020 that took down their entire network. Because of a backup system, the system was able to get back up and running within a month.

"I would say the experience was very much like a person getting hit by lightening," explained Gaede. "It happens, but no one gets into their car in the morning on their way to work thinking they are going to get hit by lightening. It's the same thing with ransomware attacks."

According to Gaede, hospital IT departments might want to think more about what they can do to prevent or mitigate these types of attacks. He also noted that cyberattacks on healthcare organizations is the fastest growing area for such attacks across all industries.

Gaede said bad actors want to encrypt data so they can hold it hostage and ransom it for payment. The criminals also want to exfiltrate the organization's data so it can be used elsewhere for malicious purposes. Gaede said the way to recover from these types of attacks is to have really strong data backups.

"Sky Lakes bought a new backup system a year before the attack for efficiency, and did not know we also got a ransomware protection package," he said. That ended up being key to speeding their recovery with minimal loss of patient data.

To prevent exfiltration of health system data or ransomware attacks, he said health systems need both automated detection, possibly using artificial intelligence (AI), to monitor systems for possible signs of an attack. But this also needs to be done with human watchmen to monitor data systems traffic on a 24-hour a day, 365-day a year schedule. 

"The No. 1 thing we learned was that we worked downtime out of our processes, because we had been on automated electronic medical record processes for 18 years," Gaede said. "During the ransomware attack, we lost all of that. So, how do you get an order down to an emergency department, or how you you get those things you had always put into tubes back to a lab and you realize you now need runners? We worked all the downtime and runners out of our systems."

He said emergency plans worked for a short time, but it was a shock to everyone in the health system when they suddenly had to go back to a paper-based system they had not used for nearly two decades. The system began breaking down after 72 hours. 

"It broke down because of simple things, like having enough paper prescription pads to write medication orders, things like that," Gaede explained. "So hospitals need to think about the long-term effects of not having access to your system, because the potential harm to patients is extremely high."

He said his hospital was lucky it did not have to pay a ransom because it did have a backup system. He also said there were no reports of patient harm, but it easily could have happened in the disarray of a cyberattackand the disruption to workflows it causes.

Find out more details on this cyberattack in the VIDEO: How radiology was restored after a ransomware attack at Sky Lakes Medical Center in Oregon.

 

Dave Fornell is a digital editor with Cardiovascular Business and Radiology Business magazines. He has been covering healthcare for more than 16 years.

Dave Fornell has covered healthcare for more than 17 years, with a focus in cardiology and radiology. Fornell is a 5-time winner of a Jesse H. Neal Award, the most prestigious editorial honors in the field of specialized journalism. The wins included best technical content, best use of social media and best COVID-19 coverage. Fornell was also a three-time Neal finalist for best range of work by a single author. He produces more than 100 editorial videos each year, most of them interviews with key opinion leaders in medicine. He also writes technical articles, covers key trends, conducts video hospital site visits, and is very involved with social media. E-mail: dfornell@innovatehealthcare.com

Around the web

Cardiovascular devices are more likely to be in a Class I recall than any other device type. The FDA's approval process appears to be at least partially responsible, though the agency is working to make some serious changes. We spoke to a researcher who has been tracking these data for years to learn more. 

Updated compensation data includes good news for multiple subspecialties. The new report also examines private equity's impact on employment models and how much male cardiologists earn compared to females.

When drugs are on the FDA’s shortage list, outsourcing facilities can produce their own compounded versions. When the FDA removed tirzepatide from that list with no warning, it created a considerable amount of chaos both behind the scenes and in pharmacies all over the country. 

Trimed Popup
Trimed Popup