Healthcare institutions are facing challenges from ransomware attacks as Frederick Health and New York Blood Center Enterprises (NYBCe) grapple with disruptions caused by separate incidents in the past week.
According to an update on Frederick Health’s website on Jan. 27, the institution identified a ransomware event and is currently working with cybersecurity experts to contain the issue and restore its systems. While most of its facilities remain open and continue to provide patient care, the Village Laboratory is temporarily closed, leading to potential operational delays for patients.
Similarly, NYBCe, a nonprofit consisting of independent blood centers, detected suspicious activity affecting its IT systems on Jan. 26. By Jan. 29, the organization had taken its systems offline to mitigate the threat linked to a ransomware attack. Restoration efforts are underway, but the timeline for full operational recovery remains uncertain, with processing times for blood donations expected to be longer than usual at NYBCe centers and offsite blood drives.
As neither institution has disclosed information on the attackers or potential data breaches, no ransomware groups have claimed responsibility for the attacks.
Ransomware attacks pose an ongoing threat to the healthcare sector, with the potential to impact patient care and safety significantly. A 2024 study by Microsoft revealed that nearly 400 US healthcare organizations fell victim to ransomware, with reported payments averaging $4.4 million and downtime costs reaching up to $900,000. The vast amount of sensitive data stored by healthcare institutions, combined with limited cybersecurity resources, creates vulnerabilities that threat actors exploit for financial gain.
To address these challenges, efforts are being made to enhance cybersecurity resilience in the healthcare industry. The Advanced Research Projects Agency for Health (ARPA-H) recently allocated $50 million to develop software aimed at improving hospital cybersecurity through initiatives like Universal Patching and Remediation for Autonomous Defense (Upgrade). These programs seek to strengthen vulnerability management and enhance collaboration between IT staff, equipment managers, and cybersecurity experts to identify and address cybersecurity weaknesses.
Additionally, the Department of Health and Human Services (HHS) has recognized the importance of bolstering healthcare cybersecurity measures following significant breaches in the sector. Implementing immutable backups with guaranteed Return-To-Operations (RTO) is emphasized as a top priority for healthcare institutions to ensure quick recovery in the event of a cyberattack without succumbing to ransom demands.
Moving forward, a proactive and collaborative approach to cybersecurity is essential for healthcare organizations to mitigate the growing threat of ransomware attacks and safeguard patient data and services. By investing in robust cybersecurity measures and fostering resilience through industry-wide initiatives, the healthcare sector can better protect against cyber threats and ensure uninterrupted patient care in the face of evolving cybersecurity challenges.