New Study Shows Just How Vulnerable Hospitals Are To Phishing Attacks

Research led by Brigham and Women’s Hospital in Boston has shown that hospitals are hugely vulnerable to potentially disastrous phishing attacks.

As the world becomes increasingly digitised, more businesses are grappling with how cybersecurity threats could impact them. The threat cybercriminals pose is particularly potent for the healthcare industry; a successful phishing attack could not only compromise patient data, but could wreak havoc on patient care.

So, how vulnerable are healthcare organisations to these kinds of attacks? Vulnerable enough to warrant concern, according to a new study released by Brigham and Women’s Hospital in Boston, Massachusetts.

“Information security is increasingly important for healthcare organisations, and cybersecurity attacks are a major risk to a hospital’s ability to operate and deliver care,” explained corresponding author Dr William Gordon of Brigham’s division of general internal medicine and primary care.

The researchers gauged susceptibility to phishing attacks through a multicentre study, which collected data from six healthcare organisations. Each organisation ran phishing scam simulations over the course of seven years to track how often healthcare employees would click through. In total, the team analysed click rates for almost 3m simulated emails that ranged from office- and IT-related to personal correspondence.

The investigation report a high click rate for simulated phishing attacks – more than 14pc of phishing emails were clicked. Click rates ranged from 13pc to 49pc, however, depending on industry. This action would open an organisation up to attack were the email sent by a genuine bad actor.

Yet the team also noted a reduction in click rates after campaigns were mounted raising awareness of phishing threats; after institutions had run 10 or more phishing simulation campaigns, the click-through rates reduced by one-third, suggesting that the issue can be remedied.

“We know that in healthcare, the stakes are high. Patient data, patient care, patient trust and financial stability may be on the line,” Gordon added.

“Understanding susceptibility but also what steps can be taken to mitigate it are critical as cyberattacks continue to rise … Our study suggests that while the risk is high, there is an opportunity to mitigate it through training.”

RECENT NEWS

Big Techs Spending Soars With Data Centre Boom

The rapid expansion of data centres has turned Big Tech into big spenders. As companies strive to meet the growing deman... Read more

SEC's Oversight Over Digital Assets: Balancing Regulation And Innovation

As the digital asset market continues to expand, regulatory agencies like the Securities and Exchange Commission (SEC) a... Read more

Harnessing AI To Combat Cyber Risk: Strategies For Financial Institutions

Cyber threats pose an ever-present danger to financial institutions, requiring robust strategies to mitigate risks effec... Read more

Adaptation And Innovation: Revolut's Response To Banking License Delay Through Advertising Sales Push

As Revolut eagerly awaits the acquisition of its banking license, the fintech giant has demonstrated remarkable adaptabi... Read more

Riding The Wave: The Evolution Of Fintech Investment Strategies

The fintech industry has experienced unprecedented growth in recent years, captivating the attention of investors worldw... Read more

How Fintech Is Revolutionizing Traditional Banking

How fintech is revolutionizing traditional banking is a topic that is garnering positive and immense discourse within th... Read more

We use cookies to give you the best experience possible. By continuing we’ll assume you’re on board with our cookie policy.