The advancement of technology has significantly transformed the healthcare industry, providing patients with convenience and efficiency through telemedicine, IoT devices, and electronic health records (EHR). However, this progress has also led to a new threat: the theft of sensitive patient data.
Reports from an Israeli cybersecurity solutions provider reveal that India’s healthcare sector is a primary target for cybercriminals, facing over 6,900 cyberattacks on a weekly basis. This alarming statistic underscores the vulnerabilities within the digital infrastructure of India’s healthcare institutions.
The abundance of attacks can be attributed to the diverse and sensitive data stored by healthcare organizations, including medical, personal, and financial information. The critical nature of their operations makes them prime targets for cyber threats, as any disruption could have life-threatening consequences.
Moreover, many healthcare systems in India still rely on outdated legacy technology, leaving them more susceptible to attacks. Limited financial resources further hinder efforts to upgrade security measures, exacerbating the cybersecurity issue within the sector.
In the face of such threats, victim organizations are often compelled to meet ransom demands in order to restore critical care services. A notable example is the case of the United Kingdom’s National Health Service (NHS), which experienced service disruptions when a Russian hacking group stole over 400GB of private medical data from a vendor named Synnovis.
Apart from the healthcare sector, education and research organizations have also emerged as prime targets for hackers, experiencing an average of 6,244 weekly attacks. Government and military entities have not been spared either, facing over 3,600 attacks in recent times.
The report further highlights that Indian organizations have been targeted an average of 2,924 times per week over the past six months, significantly higher than the global average of 1,401 attacks per organization. Malicious software such as “FakeUpdates” and botnets like Remcos have been commonly used in these attacks.
Email remains a popular method for delivering malicious files, with over 63% of such files in India being distributed through email. The report notes that email spoofing and the ability to deliver weaponized content make email a potent tool for spreading malware and executing social engineering attacks.
Recent years have seen several high-profile cyberattacks targeting India’s healthcare sector. In late 2022, hackers targeted the systems of AIIMS and demanded a ransom of around Rs 200 crore in cryptocurrency. Nearly a year later, the Indian Council of Medical Research (ICMR) fell victim to a serious cyberattack, resulting in the loss of personally identifiable information (PII) of 81 crore Indians.
The prevalence of cyber threats in India’s healthcare sector underscores the urgent need for enhanced cybersecurity measures to safeguard sensitive patient data and ensure the continuity of critical care services. As technology continues to evolve, it is crucial for healthcare organizations to stay vigilant and proactive in mitigating cybersecurity risks.
Serbian 
English 
Albanian 
Croatian 