The Times Australia
The Times World News

.
The Times Real Estate

.

A cancer centre is the latest victim of cyber attacks. Why health data hacks keep happening

  • Written by Mohiuddin Ahmed, Senior Lecturer of Computing and Security, Edith Cowan University
A cancer centre is the latest victim of cyber attacks. Why health data hacks keep happening

It seems hardly a day goes by without another report of a cyber crime incident. With Medibank still fresh in our minds, the latest attack[1] is on a Sydney-based cancer treatment facility, Crown Princess Mary Cancer Centre in Westmead Hospital.

The cyber criminal group Medusa claims to have stolen thousands of files and is holding them to ransom.

Screenshot of Medusa Blog from Dark Web Site
Screenshot of Medusa Blog from Dark Web Site. Author provided

In what has become a common practice, the criminal gang seems to be using double extortion. In such scenarios, criminals typically demand a fee to “release” the data back to the organisation – often with a “sample” made available to verify their claims.

The gangs then double-down with threats to publicise the data via their websites if payment isn’t made – in this case, a deadline of seven days.

Medusa is offering a range of options to delay the public release of data by 24 hours (US$10,000), to download and/or delete the data from the gang for US$100,000.

It’s currently unclear what will happen on Friday morning if the ransom is not paid. However, the Medusa Blog offers free access to data stolen from previous victims who did not pay the ransom by the deadline.

Victims data published on Medusa Blog Victims data published on Medusa Blog. Author provided

According to CyberCX[2], Medusa is the “second-most active cyber extortion group in the Pacific”. Medusa has been trying to compromise[3] organisations in Australia and New Zealand since the beginning of 2023.

Read more: Why are there so many data breaches? A growing industry of criminals is brokering in stolen data[4]

Why target health services?

Any cyber attacks on the health sector are dangerous. While some cyber criminals have previously avoided schools[5] and health-care organisations[6], it seems these are now fair game.

Knowing the services and data held by these organisations are critical, it’s not surprising to see so many ransomware attacks are launched against critical health-care infrastructure.

Some notable incidents targeting the Australian health systems have included Medibank[7], Melbourne Heart Group[8] and Eastern Health[9] which operates four hospitals in Melbourne’s east – an attack which resulted in elective surgeries needing to be postponed.

According to tech giant Microsoft[10], the health-care sector (and aligned industries) is one of the top targets for cyber criminals.

Ransomware incident and recovery engagements by industry. Microsoft Digital Defense Report 2022

Read more: Australian hospitals are under constant cyber attack. The consequences could be deadly[11]

What are the impacts?

The health sector deals with our most private data – none of us want this data in criminal hands. Apart from the privacy issues, the inability to continue regular activities in any health-care facility poses life-threatening risks.

A recent study[12] showed from 2016-2021, US health-care providers experienced 374 ransomware attacks that exposed the private health information of nearly 42 million patients.

Nearly half of these ransomware attacks disrupted the health-care services, with impacts including electronic system downtime, cancellations of scheduled care, and ambulance diversions.

Why do they keep happening?

Technical advances in the health industries have undoubtedly improved treatment and overall patient care. While this growth in technology is a positive for health care, it exposes health systems to cyber criminals.

With each passing year there is increased connectivity between clinical systems and medical devices. The health-care sector needs to be more staffed[13] and heavily reliant on internet-connected systems[14] also known as digital health. This inter-connectivity makes health systems more complex and harder to secure[15].

With the exception of state-sponsored groups, cyber criminals are primarily motivated by financial gain. Health care is undoubtedly one of the most promising targets as, if compromised, the organisations are more likely to pay the ransom – ultimately, because lives are at stake.

Cyber criminals capitalise on this and, even after good governance and enhanced cybersecurity within the sector, these incidents are likely to continue.

Read more: Is Australia a sitting duck for ransomware attacks? Yes, and the danger has been growing for 30 years[16]

Living with cyber criminals around us

So far, reports about the Cancer Centre at Westmead have not indicated that operations have been significantly impacted. This may imply no computing devices have actually been compromised and locked – this could be seen as a positive.

However, those who have examined the samples of data published on the Medusa Blog have suggested it seems genuine[17].

As Robert Mueller, former Director of the FBI, famously said:

There are only two types of companies: those that have been hacked and those that will be hacked.

Cyber crime has become a global industry with estimates predicting the impact at more than US$8 trillion in 2023[18]. With such potentially lucrative benefits, we have to accept we will be sharing cyberspace with criminals for the foreseeable future.

There are, of course, actions that can improve our cybersecurity preparedness, regardless of the sector. While nothing will completely eliminate the risk, making ourselves a less attractive target helps to reduce the likelihood of being a victim. So it’s important to:

  • protect your systems: apply patches to all devices (including mobile phones); educate users to segregate personal and business activities; use strong and unique passwords for all systems/services
  • include all systems: don’t forget the internet of things and operational technology (all the devices and software we use that connect to the internet); check default settings (changing any default passwords); and plan the disposal of old systems
  • protect your data: data collected from all sources need to be kept in appropriate locations; think about how long you will keep data; and ensure data is protected from creation to destruction.
  • protect your people: educate all staff on basic cyber hygiene; vet new staff; and think about your off-boarding practices
  • seek advice: when things go wrong bring in the experts and liaise with law enforcement or other government agencies as appropriate.

And, finally, do not pay the ransom – it may be a difficult decision, but it only encourages the criminals behind the ransomware campaigns to keep going.

Read more: Medibank won't pay hackers ransom. Is it the right choice?[19]

References

  1. ^ latest attack (www.abc.net.au)
  2. ^ CyberCX (www.cybersecurityconnect.com.au)
  3. ^ trying to compromise (www.bitdefender.com)
  4. ^ Why are there so many data breaches? A growing industry of criminals is brokering in stolen data (theconversation.com)
  5. ^ avoided schools (www.bitdefender.com)
  6. ^ health-care organisations (www.bleepingcomputer.com)
  7. ^ Medibank (www.sbs.com.au)
  8. ^ Melbourne Heart Group (www.abc.net.au)
  9. ^ Eastern Health (ia.acs.org.au)
  10. ^ Microsoft (www.microsoft.com)
  11. ^ Australian hospitals are under constant cyber attack. The consequences could be deadly (theconversation.com)
  12. ^ recent study (jamanetwork.com)
  13. ^ more staffed (www.forbes.com)
  14. ^ internet-connected systems (www.sciencedirect.com)
  15. ^ more complex and harder to secure (www.hackread.com)
  16. ^ Is Australia a sitting duck for ransomware attacks? Yes, and the danger has been growing for 30 years (theconversation.com)
  17. ^ suggested it seems genuine (www.databreaches.net)
  18. ^ more than US$8 trillion in 2023 (cybersecurityventures.com)
  19. ^ Medibank won't pay hackers ransom. Is it the right choice? (theconversation.com)

Read more https://theconversation.com/a-cancer-centre-is-the-latest-victim-of-cyber-attacks-why-health-data-hacks-keep-happening-205131

The Times Features

Energy-Efficient Roof Restoration Trends to Watch in Sydney

As climate consciousness rises and energy costs soar, energy-efficient roof restoration has become a significant focus in Sydney. Whether you're renovating an old roof or enhan...

Brisbane Water Bill Savings: Practical Tips to Reduce Costs

Brisbane residents have been feeling the pinch as water costs continue to climb. With increasing prices, it's no wonder many households are searching for ways to ease the burde...

Exploring Hybrid Heating Systems for Modern Homes

Consequently, energy efficiency as well as sustainability are two major considerations prevalent in the current market for homeowners and businesses alike. Hence, integrated heat...

Are Dental Implants Right for You? Here’s What to Think About

Dental implants are now among the top solutions for those seeking to replace and improve their teeth. But are dental implants suitable for you? Here you will find out more about ...

Sunglasses don’t just look good – they’re good for you too. Here’s how to choose the right pair

Australians are exposed to some of the highest levels[1] of solar ultraviolet (UV) radiation in the world. While we tend to focus on avoiding UV damage to our skin, it’s impor...

How to Style the Pantone Color of the Year 2025 - Mocha Mousse

The Pantone Color of the Year never fails to set the tone for the coming year's design, fashion, and lifestyle trends. For 2025, Pantone has unveiled “Mocha Mousse,” a rich a...

Times Magazine

CSIRO and Space Machines partner to test Australian flexible solar cells in space

Space Machines and CSIRO partner to test Australian flexible solar cells in space  SYDNEY, Australia - Thursday 5th August 2021 - Australian in-space transportation provider Space Machines Company (SMC) and CSIRO, Australia's national scie...

Kitten fun: 3 awesome toys for indoor cats

Not all kittens love to be outside. Some kittens prefer the comfort and serenity of being inside as opposed to prowling around the neighbourhood in search of a rodent-shaped hunting trophy. However, this doesn’t mean you should allow your cat ...

What are the Top Skills You Learn in Certificate 3 in Hairdressing Online Programs?

There are many skills that you can acquire when you use the right courses for your growth. Now, speaking of TMICE: Flexible Certificate 3 in Hairdressing Online Programs, these can ensure you have manifold skills in this direction. You would get ...

Choosing the Right Supplements for Your Pet: A Comprehensive Guide

In the pursuit of ensuring the best health and vitality for our furry companions, pet parents often find themselves navigating the complex world of dietary supplements. With a myriad of options available, it's imperative to choose wisely to support...

Familiar Environmental Problems and How to Solve Them

Social Studies gives an outlook on man, his environment, and how he relates to it. This outlook has shown man to be an ever-evolving species, and this evolution is influenced by how well he utilizes and interacts with the resources present in his...

An Introductory Guide to Electrical Sub Boards

Advantages of Installing an Electrical SubBoard Installing an electrical subboard is a great way to keep your home or business safe and properly wired. By adding a subboard to your existing wiring system, you can increase the safety and efficien...

LayBy Shopping