A new report has revealed that last year in the UK, 67% of healthcare organisations experienced a cyber security incident.
The findings, published by data security provider Clearswift, “highlight the serious threat that data breaches and malicious attacks pose to the UK’s health-related data”.
The survey revealed that almost half (48%) of incidents within the sector occurred as a result of introduction of viruses or malware from third-party devices, such as IoT devices or USB sticks, and that problems included employees sharing information with unauthorised recipients (39%).
Further, 37% of respondents said that users were not following their protocol and data protection policies, and 28% had received malicious links in emails and on social media.
Despite the vulnerability within the sector to cyber attacks, the report also revealed that not even a quarter (24%) of respondents had an adequate level of budget allocated to cyber security.
Alyn Hockey, vice president of product management at Clearswift emphasised that “The healthcare sector holds important patient data, so it is alarming to see such high numbers of security incidents occurring in the industry.”
He went on to suggest that the healthcare sector needs to securely share data across departments and organisations “in order to facilitate excellent patient care.
“With the proliferation of third-party devices in this process, it’s more important than ever that the industry bolsters its cyber security efforts to reduce the risk of everything from unwanted data loss to malicious attacks and focusses on keeping patient data safe and secure.”
Back in 2017 the infamous WannaCry ransomware attack cost the NHS £92 million in cancelled appointments, after it shut down hundreds of thousands of computers around the world with messages from hackers demanding ransom payments.
33% of those surveyed said that attacks like this have had the biggest impact on board level involvement and spend around cyber security, while hacks that involved third-party data aggregator losses, such as the AMCA healthcare breach, were also identified by 29% of respondents as having influenced the level of spend and board involvement on the issue.