• 4 months ago
• Posted in:Uncategorized
• 0
• Author: ehret-79734

Cyber attacks seem to be a growing concern for hospital systems. The cyber criminals are using ransomware to attack hospital systems. “Ransomware is a type of malicious software, or malware, that prevents you from accessing your computer files, systems, or networks and demands you pay a ransom for their return.” (1) These attacks lead to both patient care issues and data breaches with personal identification. A recent example occurred just this past June (just four months ago) with the Ascension Hospital system. This hospital system encompasses 140 hospitals across 10 states the attack affected patient electronic health records, which in turn affects medications, test results, and procedures. However, hospital systems are either switching or have switched to electronic medical records in order for patient continuity of care.  When healthcare providers are locked out of patient’s charts, it throws everyone into chaos. Being locked out of the patient’s charts can lead to medication errors, delay in lab results, and fatal mistakes. The article from NPR regarding the Ascension Hospital says one woman died from cardiac arrest due to lab results being delayed by four hours. (2) Basically, patient care is compromised until a fix is in place. These cyber attacks can possibly affect professional licenses should something detrimental occur with a patient.  Hospitals are mandated by the government to protect patient information according to HIPAA (Health Insurance Portability and Accountability Act).  “However, there are no federal requirements for hospitals to prevent or prepare for cyberattacks that could compromise their electronic systems.”(3). Hospitals are pretty much at the mercy of cyber criminals because they will pay the ransom.  It was reported that in 2023,“the health sector experienced the largest share of ransomware attacks of 16 infrastructure sectors considered vital to national security or safety, according to an FBI report on internet crimes. In March, the federal Department of Health and Human Services said reported large breaches involving ransomware had jumped by 264% over the past five years.”(4). The article says the hospital system said it restored access to the electronic health records, but it did not say how. Could they have paid the ransom?  It makes one wonder.  These types of attacks effect the hospital systems financially, as well as its reputation;  more more importantly, it can have a major impact on patient lives. Unfortunately, there is nothing that we can do as patients to protect ourselves; we are at the mercy of the hospital system cyber security policies to protect our information.

1. https://www.fbi.gov/investigate/cyber
2. https://www.npr.org/2024/06/19/nx-s1-5010219/ascension-hospital-ransomware-attack-care-lapses
3. https://www.npr.org/2024/06/19/nx-s1-5010219/ascension-hospital-ransomware-attack-care-lapses
4. https://www.npr.org/2024/06/19/nx-s1-5010219/ascension-hospital-ransomware-attack-care-lapses