A scourge of enormous proportions. Between 2022 and 2023, thirty French hospitals were the subject of a cyber attack by ransomware, which encrypted data rendering it unusable, according to the “state of the cyber threat” on the healthcare sector published Thursday by Anssi, the guardian of the French IT security.
“In 2022 and 2023, ANSSI was informed of 30 ransomware breaches and encryptions affecting healthcare facilities,” which “represent 10% of the ransomware-related incidents reported to ANSSI in this period,” he specifies. the document.
In August 2022, the attack on the Paris South Hospital Center in Corbeil-Essonnes notably involved the transfer of newborns from the neonatal department to another hospital and the paralysis of biological analysis machines. Eleven gigabytes of data were stolen at once and then published online by hackers.
“Hospitals that respond quickly and well” but efforts still need to be made
However, according to ANSSI director general Vincent Strubel, hospitals are now able to better control the consequences of these attacks. “What we see today is that hospitals react quickly and well to attacks and manage to prevent an attack from spreading to the entire hospital IT system,” he explains to AFP.
The attacks “cause significant interruptions in the functioning” of the factories “for a few weeks”, but “we no longer see (…) an almost complete paralysis of IT”, which requires “months” of work to restore normal functioning, he underlines.
However, “the attacks continue to cause disruption, there are data thefts, so we cannot be satisfied” with the current situation, he believes, calling for continued efforts to improve the defense of hospitals. In 2024, two hospitals were again victims of significant cyber attacks: the Armentières hospital, in February, and the Cannes hospital, in April.
In the note, ANSSI also mentions other cyber risks that weigh on the healthcare sector, and in particular that linked to connected medical devices. Remember then that in September 2022 the company Medtronic “reported a vulnerability affecting its insulin pumps”. This now-patched vulnerability could specifically “allow an attacker to have unauthorized access to an insulin pump and increase or decrease the dose of insulin administered,” the institution indicates.
In February 2024, the French third-party payment management specialists Almerys and Viamedis were also victims of cyber attacks “which resulted in the leak of personal data of over 33 million people, or almost half of the French population”, recalls also Anssi.
Time.news Interview: The Rising Threat of Ransomware in Healthcare
Editor: Welcome to Time.news. Today, we have the pleasure of speaking with Dr. Camille Renard, an expert in cybersecurity with a focus on the healthcare sector. Dr. Renard, thank you for joining us.
Dr. Renard: Thank you for having me. It’s a pleasure to discuss such an important topic.
Editor: Let’s dive right in. Recent reports from ANSSI indicate that between 2022 and 2023, thirty French hospitals experienced cyber attacks involving ransomware. That’s a staggering number. Why are hospitals becoming prime targets for hackers?
Dr. Renard: Hospitals are particularly vulnerable for several reasons. First, they handle sensitive information and large volumes of data—everything from patient records to financial information. Secondly, in a crisis scenario, hospitals often prioritize patient care over cybersecurity, making them more susceptible to attacks when their systems are compromised. Hackers know that disrupting a hospital’s operations creates significant pressure to pay the ransom.
Editor: One instance highlighted in the report was the attack on the Paris South Hospital Center, where newborns had to be transferred for safety, and biological analysis machines were paralyzed. That sounds terrifying. What can hospitals do to improve their defenses against such attacks?
Dr. Renard: It’s crucial for hospitals to adopt a proactive cybersecurity posture. This means not only investing in better technology but also in training staff to recognize phishing attempts and other vulnerabilities. Regular drills simulating ransomware attacks can also help prepare personnel to respond effectively if a real attack occurs.
Editor: The report mentions that hospitals today are reacting more effectively to these attacks. What strategies are they employing that signify this improvement?
Dr. Renard: As Vincent Strubel of ANSSI pointed out, hospitals are now more adept at quickly isolating affected systems to prevent the spread of an attack. This quick reaction minimizes downtime and protects data integrity. Furthermore, many facilities are investing in regular updates to their software and infrastructure, which is critical in warding off potential vulnerabilities.
Editor: That’s a positive shift. Can you elaborate on the balance between patient care and cybersecurity? How can hospitals ensure they don’t compromise one for the other?
Dr. Renard: It’s definitely a delicate balance. Cybersecurity measures need to be integrated seamlessly into healthcare operations without hindering patient care. This might include multi-factor authentication systems that verify the identity of healthcare providers while ensuring that patient care processes remain as efficient as possible. Engaging all stakeholders in discussions about cybersecurity can also foster a culture of safety without compromising the mission of healthcare delivery.
Editor: Looking forward, what do you think the healthcare sector needs to focus on most in the face of these increasing cyber threats?
Dr. Renard: Collaboration is key. The healthcare industry should engage in shared learning initiatives and create partnerships with cybersecurity firms to enhance threat intelligence. Additionally, policies need to be in place to ensure that cybersecurity is a priority at the governmental level. More robust funding for cybersecurity infrastructure in healthcare will be crucial as cyber threats evolve.
Editor: That raises an important point about policy. Are there any trends in legislation that could help healthcare facilities protect themselves better?
Dr. Renard: Absolutely. Governments are increasingly recognizing the need for stricter cybersecurity regulations tailored to the healthcare sector. There’s a push for mandatory reporting of cyber incidents, which would enhance transparency and encourage facilities to share information regarding breaches. This could lead to stronger collective defenses against emerging threats.
Editor: Thank you, Dr. Renard, for your insights today. It’s clear that while healthcare sectors face significant challenges from ransomware attacks, there are also promising advancements being made. Any final thoughts for our readers?
Dr. Renard: Yes. I encourage everyone to advocate for stronger cybersecurity measures in their local healthcare institutions. Awareness is the first step toward a more secure future in our healthcare systems. Together, we can contribute to a safer environment for both patients and healthcare professionals.
Editor: Thank you once again for your time, Dr. Renard. This conversation has been incredibly enlightening.