The United States and the United Kingdom have arrested and charged 11 Russians for running a cybercrime network that targeted hospitals.
According to Check Point Research analysis, in the first half of 2023 alone, the number of attacks on healthcare services increased by 18%, with healthcare organizations experiencing an average of 1634 cyber attacks each week.
The United States and the United Kingdom have arrested and charged 11 Russians for directing a cybercrime network that has been attacking hospitals internationally in recent months. This is in response to a growing number of attacks on healthcare. According to Check Point Research analysis, within the first half of 2023 alone, the number of attacks on healthcare has increased by 18%, with healthcare organizations experiencing an average of 1634 cyber attacks each week. In Poland, this equates to over 2000 attacks weekly.
The Russians were allegedly collaborating with the Russian hacking group Conti, known as one of the most renowned gangs involved with ransomware software. They were behind the creation of the Trickbot Trojan, which Conti utilized to gain access to hospital computer networks.
Polish Hospitals are also targeted
In Poland, the reported number of cyber attacks on healthcare facilities has tripled in just one year – from 13 in 2021 to 43 in 2022, and this number continues to rise, according to official data from the Ministry of Digital Affairs. Healthcare is one of the sectors most frequently attacked globally, with over 2000 attacks per week. In 2022, the industry recorded a 74% increase in the number of attacks worldwide. Experts from Check Point Research reveal that only in the first half of 2023, this rise amounted to 18%.
As a result of attacks by software that blocks access to computer systems or prevents data reading, medical facilities worldwide lost nearly 40% of data last year. A cyber attack on a hospital in French Versailles ended up requiring patient evacuation at the end of 2022. At the end of last October, the Victim Mother Health Center Institute in Łódź also fell victim to a cyber attack. To enhance the safety of their data, hospital directors had until November 30th last year to apply for a special NFZ program support offering funds of up to PLN 900,000 for the purchase and implementation of IT systems and their related services.
“Hackers have been blocking critical medical systems, including those used in intensive care units, demanding a ransom for their unblocking. Such actions can have serious consequences for patients and might even pose a threat to their lives. The majority of the attacks are targeted and ordered, with specific data or just data that can be sold being the target,” emphasizes Wojciech Głażewski, Check Point Software Director in Poland.
Patient Information Costs $1000 per Person
Hospitals and other such centers, due to the nature of their operations and the sensitive data they collect, become attractive targets for cybercriminals. And medical information has high value on the black market. When it comes to stolen medical data, each patient’s data could be worth up to $1000, according to Fierce Healthcare.
Security experts have long been pointing out ties between cybercrime in Russia, where hackers targeting foreign objectives seem to operate with impunity, and Russian security services. In the announcement of British sanctions, it was stated that Conti was one of the first to offer support for the Russian invasion of Ukraine, maintaining connections and receiving tasks from Russian intelligence services.
Cindi Carter from Check Point Software indicates that healthcare is the third most frequently attacked industry and the fifth industry most affected by ransomware software. Meanwhile, Conti is estimated to be the second most populous group involved with ransomware software.
