TLDR:
- Cybersecurity attacks in the healthcare industry can infiltrate medical devices and cripple critical care.
- Northeastern expert, Kevin Fu, warns that the industry needs to focus on securing its infrastructure and be proactive in the face of cyber threats.
Cybersecurity attacks have the potential to infiltrate medical devices and cripple health care, according to Northeastern expert Kevin Fu. The recent cyberattack on Change Healthcare is a prime example of the risks involved. Fu emphasizes the need for the healthcare industry to prioritize securing its infrastructure and shift towards proactive measures rather than reactive responses. He points out that hackers have already infiltrated critical medical devices, such as cancer radiation therapy machines, in previous attacks. Fu suggests that companies should abandon perimeter-based thinking in cybersecurity and instead focus on creating resilient systems that can withstand cyber threats. He also recommends that health care providers refer to the Joint Security Plan for cybersecurity guidance.
Change Healthcare is still dealing with the aftermath of the cyberattack, impacting essential services like Medicare reimbursements. The U.S. Department of Health and Human Services has initiated an investigation into the incident. The complexity and interconnectedness of the healthcare system make it challenging to resolve such attacks quickly. Fu advocates for more comprehensive technical guidelines and regulations to prevent future cybersecurity incidents in critical infrastructure. Overall, the cyberattack on Change Healthcare serves as a wake-up call for the healthcare industry to enhance its cybersecurity measures to protect patient care and critical services.