More than a third of Australia’s top hospitals putting ‘patients data at risk’:...

Tuesday, 12 December 2023 14:09

More than a third of Australia’s top hospitals putting ‘patients data at risk’: research Featured

By Gordon Peters

Steve Moros, Senior Director, Advanced Technology Group, Asia Pacific and Japan at Proofpoint

More than one out of three of Australia’s top-ranked public and private hospitals are lagging behind on basic cybersecurity measures, subjecting patients, healthcare professionals and stakeholders to a higher risk of email-based impersonation attacks, including fraud and domain spoofing, according to cybersecurity firm Proofpoint.

The findings of Profpoint’s research are based on a Domain-based Message Authentication, Reporting and Conformance (DMARC) analysis of 70 Australian public and private hospitals.

DMARC is an email validation protocol designed to protect domain names from being misused by cyber criminals, and it authenticates the sender's identity before allowing a message to reach its intended destination. DMARC has three levels of protection1 – monitor, quarantine and reject with reject being the most secure for preventing suspicious emails from reaching the inbox.

Proofpoint’s says its research reveals that 36% of the Australian public and private hospitals have not implemented the recommended and strictest level of DMARC protection, leaving these organisations open to email fraud and domain spoofing attacks.

“Hospitals are uniquely at risk due to the highly sensitive patient data they store, which includes everything from a person’s identifying information like their date of birth, gender, and address, through to their bank account details and, of course, medical history. These details make hospitals a prime target for threat actors,” said Steve Moros, Senior Director, Advanced Technology Group, Asia Pacific and Japan at Proofpoint.

“With email-based phishing attacks remaining one of the most common techniques used by cyber criminals, hospitals should prioritise tightening email security.”

Proofpoint notes that whilst itt’s research showed that 97% of the Australia’s top hospitals have adopted a DMARC protocol, only 64% are properly implementing DMARC to the recommended and highest level by blocking suspicious emails.

“Public hospitals were significantly better protected than private healthcare organisations, with 77% of these organisations having properly implemented DMARC to the recommended and highest level by blocking suspicious emails. Worryingly, less than half (44%) of the Australian private hospitals had adopted the email authentication protocol to this same level,” Moros said.

Earlier this year, Proofpoint warned that healthcare was one of Australia’s most vulnerable sectors to threat actors, citing the industry’s focus on investing technology spend on devices and digitising medical records, rather than on security, as a cause for concern. According to Proofpoint’s 2023 State of the Phish Report, Australian organisations are the most likely to experience successful phishing attacks (94% vs 84% global average), with email remaining the favoured attack method for cyber criminals.

Proofpoint notes that against this backdrop, Google and Yahoo! recently announced that from February 2024, they will require email authentication to be able to send messages from their platforms, signaling that important steps are being taken to prevent spam and scams.

“These security requirements will apply especially to accounts that send large volumes of emails per day, such as healthcare organisations, which will have to have the DMARC authentication protocol deployed, amongst other measures.

“Failure to comply will significantly impact the deliverability of legitimate messages to customers with Gmail and Yahoo accounts,” observes Proofpoint.

“Hospitals are organisations that all Australians, at some point in their lives, will engage with and share their sensitive, personal information with. Threat actors know this and can prey on the people in our society who need to be cared for, as well as the doctors, nurses and other staff providing this care. Implementing email authentication protocols such as DMARC provides a crucial line of defence to strengthen protection against email fraud and ensure the safety of patients and their families, as wellas employees and other stakeholders from potentially harmful cyber threats,” concluded Moros.

The full findings of Proofpoint's DMARC analysis of Australia’s top-ranked hospitals show:

36% of Australia’s top public and private hospitals currently do not enforce the recommended strictest level of DMARC, while 3% do not have any DMARC record and are wide open to email fraud and domain spoofing attacks.
77% of Australia’s public hospitals had properly implemented DMARC to the recommended and highest level by blocking suspicious emails, while only 44% of private hospitals had adopted the email authentication protocol to this same level.
97% of Australia’s hospitals implement some form of DMARC, yet the DMARC policy levels employed vary as follows:
o 64% use DMARC – Reject (the highest level of protection)
o 2% use DMARC – Quarantine
o 31% use DMARC – Monitor

Proofpoint lists some best practices for patients, staff, and other stakeholders:

Check the validity of all email communication and be aware of potentially fraudulent emails impersonating colleagues, suppliers, and stakeholders.
Be cautious of any communication attempts that request log-in credentials or threaten to suspend service or an account if a link isn’t clicked.
Follow best practices when it comes to password hygiene, including using strong passwords, changing them frequently and never re-using them across multiple accounts.

This analysis was conducted in October 2023 using data from the World’s Best Hospitals 2023 – Australia ranking.

Read 101 times

Please join our community here and become a VIP.

Subscribe to ITWIRE UPDATE Newsletter here
JOIN our iTWireTV our YouTube Community here
BACK TO LATEST NEWS here

GARTNER MARKET GUIDE FOR NDR 2022

You probably know that we are big believers in Network Detection and Response (NDR).

Did you realise that Gartner also recommends that security teams prioritise NDR solutions to enhance their detection and response?

Picking the right NDR for your team and process can sometimes be the biggest challenge.

If you want to try out a Network Detection and Response tool, why not start with the best?

Vectra Network Detection and Response is the industry's most advanced AI-driven attack defence for identifying and stopping malicious tactics in your network without noise or the need for decryption.

Download the 2022 Gartner Market Guide for Network Detection and Response (NDR) for recommendations on how Network Detection and Response solutions can expand deeper into existing on-premises networks, and new cloud environments.

DOWNLOAD NOW!

PROMOTE YOUR WEBINAR ON ITWIRE

It's all about Webinars.

Marketing budgets are now focused on Webinars combined with Lead Generation.

If you wish to promote a Webinar we recommend at least a 3 to 4 week campaign prior to your event.

The iTWire campaign will include extensive adverts on our News Site itwire.com and prominent Newsletter promotion https://itwire.com/itwire-update.html and Promotional News & Editorial. Plus a video interview of the key speaker on iTWire TV https://www.youtube.com/c/iTWireTV/videos which will be used in Promotional Posts on the iTWire Home Page.

Now we are coming out of Lockdown iTWire will be focussed to assisting with your webinars and campaigns and assistance via part payments and extended terms, a Webinar Business Booster Pack and other supportive programs. We can also create your adverts and written content plus coordinate your video interview.

We look forward to discussing your campaign goals with you. Please click the button below.

MORE INFO HERE!