Rural hospitals need extra cybersecurity protection.

Facebook
X
LinkedIn
Pinterest
Threads
Email

The White House announced that it was sponsoring an effort to help rural hospitals cope with the staggering number of  cybersecurity attacks that have been targeting them in recent years. Microsoft and Google moved forward to assist with the initial effort, and the White House trusts that other security and tech firms will join also.

Medical care in general has been under the crosshairs from hackers lately, with new intelligence community report saying that attacks are up 128% year over year, with 258 known attacks in 2023 versus only 113 out of 2022. However, those figures don’t represent the weaknesses faced by numerous rural medical services organizations that don’t have the money or assets to invest more in cybersecurity protections.

In addition to weaker cybersecurity protections, another worry is the larger than usual effect that the misfortune, even temporarily, of a rural hospital has on individuals who live nearby.  Rural hospitals which are characterized by the White House as those that are no less than 35 miles from a comparable facility, might be the main great treatment choice for large number of individuals. Without those hospitals, emergency treatments may be postponed for quite a long time as critical patients are shipped to other far away facilities.

Fortunately, a large portion of us have probably never been impacted by the closure of a nearby hospitals, yet at some point prior I directed a digital broadcast about a local area that truly suffered when their local medical services office was brought down a cyberattack. The podcast was really emotional, and this recent development and endeavors to protect rural hospitals, while positive, brought back the memory of that conversation.

The hospital in question was Sky Lakes Medical Center, a rural, not-for-profit center serving a huge local area of around 100,000 individuals in focal Oregon. It’s the main facility nearby, with the following nearest hospital situated more than 70 miles away and got to through a mountain pass that isn’t generally open or protected during terrible winter climate.

Sky Lakes was attacked on the morning of October 26th, 2020. The ransomware attack spread very rapidly, and before the day’s over a large portion of the hospital’s critical frameworks were scrambled and knocked offline.Poorly planned and maintained backup systems failed to enact appropriately, and tasks were brought to a screeching halt.

The Coronavirus emergency was in full flood at that point, and each bed in the facility was filled when the attack hit. Yet, without PCs or IT support, most patients couldn’t securely stay there. Numerous patients in the 100-bed facility must be immediately transported to different spots, while tasks that were being performed at the time must be immediately wrapped up. Obviously, the hospital was also shut to most new patients.

The attack brought the hospital down for over 23 days, leaving a whole local area without advanced medical protection. A few systems took significantly longer to bring back on the web. It was a very long time before Sky Lakes was completely functional once more.

Quite possibly of the most surprising thing about the attack, as per the Director of Information Services for Sky Lakes Medical Center John Gaede, was the speed at which it spread and how quick devastating medical clinic operations was capable.

“It was 3:30 toward the beginning of the day and I was resting all around well when I got the call from one of my supervisors saying that we had been hit with ransomware,” Gaede said. “By then our frameworks were at that point being scrambled, and we likewise found the ransomware note. When we understood what was happening, the main thing we did was contact the other clinical facilities and systems we were connected with and had them disconnect from us so the issue would be bound to simply Sky Lakes.”

Investigations later uncovered that a representative at the hospital got an email the day preceding that appeared to come from an inner source at the hospital. It congratulated the employee and offered them a reward for their great work. The worker succumbed to the phishing attack and tapped on the link, which permitted the ransomware into the organization by linking to a zero day exploitation site. Quite soon, nearly everything had been compromised.

Like the vast majority of the rural hospitals that the new cybersecurity efforts are intended to help, Sky Lakes Medical Center had an underfunded cybersecurity program, limited staff and an absence of coordination among their guarded platforms and frameworks.

“Before focusing on Coronavirus and executing new frameworks to assist with that, we were currently changing our old endpoint detection management system over to a more state-of-the-art system,” Gaede said. “We were seven days into executing those new protections, yet we have a little staff so we didn’t yet have it completely designed, so a part of our current circumstance had the new framework and part of it of it had the old framework. We likewise were managing some current performance issues that assisted with concealing the underlying ransomware activation.”

To attempt to manage the issue, the Sky Lakes IT staff began to reestablish systems from their backups, however they couldn’t initially eliminate the ransomware from their system. Accordingly, when any system was restored, it was very quickly compromised again. They had no option except to shut down each and every system and device in the hospital to prevent additionally spread, successfully ending all activities. Everything was taken offline, including electronic clinical records, 650 servers, email, billing system, HR, time cards, correspondences and each outsider system in the hospital.

The impact on the surrounding community can’t be overstated.

“For our community, they needed to drive more than 140 miles toward the north to get to the following hospital that way or 75 miles toward the west over a mountain range,” Gaede said. “So this was devastating for our community, especially for people like our radiology patients who needed to make that difficult trip to other hospitals to get their regular treatments.”

As per the White House, Microsoft will offer awards and limits of up to 75% on security items tailored for smaller hospitals, while Google will offer free endpoint security consulting and start a fund designed to help hospitals migrate to new software. Those projects would have been priceless for Sky Lakes Clinical Center had they been accessible at that point, yet will ideally be prepared to assist with defending rural hospitals and the communities that depend on them in the near future.

Never Miss An Update
Never miss any important news. Subscribe to our newsletter.
Latest News

Subscribe to our newsletter

Sign up for newsletter and receive exclusive cyber news regularly