Search

Taking care of people, data and healthcare systems

Measure sector temperature

What’s the diagnosis?

Since Covid-19 the health sector is under pressure, but patients' health remains the main priority. An objective that hackers profit from as they take advantage of the permanent urgency of access to industry data, in order to receive money via ransomware attacks. Especially since the healthcare sector is particularly vulnerable due to the lack of investment in cybersecurity, the vulnerabilities of existing technology and the behavior of staff. The progressive digitization of the sector, notably on the inter-connections between IT systems and equipment or on data exchanges, has strongly increased the attack surface, allowing the possibilities of data-breaches to grow.

The attractiveness of health data

Health data brings more value due to its multitude of information. The average value of health records on the dark web is estimated to be $100, while a credit card number is only valued at $1 or $2. Health appears to be the new Eldorado for hackers, and the sector has a lot of catching up to do.

Security Navigator 2024: explore some key findings for healthcare

According to our research the main challenges for IT security in healthcare are:

  • Legacy systems that have to be maintained for operating expensive machinery
  • Complex network setups that had to be extended on demand
  • Redundancy is a requirement: failure of certain systems can be life-threatening
  • The “medical IoT” offers an increasing attack surface as security is hardly ever considered in the development of such devices.

Health Care and Social Assistance is in 6th place this year with 5% of all Cyber Extortion (Cy-X) victims we recorded. The number of victims increased by 61% compared to last year. Three quarters of the threat actors for Health Care and Social Care incidents were classified as External, which means that internal actors are much less of a concern than in other industries (industry average: 43% of incidents caused internally).

Find out more on industry rankings in the Security Navigator 2024!

Prevent risks while empowering humans

Know your weaknesses

Orange Cyberdefense helps you stay ahead of threats with a four-step path. It helps you better understand your vulnerabilities, identify and fix them before they are exploited.

Raise awareness within your company

Humans are the first superspreader and at the heart of cyberhealth. That's why your employees need to be trained on the risks and the right actions to take. Through our trainings, your employees will be able to:

  • Learn about the threats and update attack tactics regularly
  • Know the process to signal an incident 
  • Identify suspicious activities
  • Be aware of cyberattack impacts
Discover our trainings

Securing assets: protect your patients and your reputation

Ensuring continuity of medical care

Cyber Crisis Management

Orange Cyberdefense helps you strengthen your security posture through a holistic approach that addresses both temporality and multi-dimensionality aspects: 

  • Before the crisis as preparation is key to victory
  • During the crisis helping you respond efficiently in line with defined plans
  • After the crisis supporting you to restore and prepare for the next crisis

 

 

 

Learn how to deal with a cyber crisis

How we can help you

Support

Quick incidence response capacity in case of cyber attacks.

Experience

Take advantage of our strong customer experience in the healthcare sector.

Skills

Expertise and support on local regulations.

Recognition

A trusted partner referencing on public markets and central purchasing agencies.

Expertise

Intelligence-led security reports such as the Security Navigator.

Incident Response Hotline

Facing cyber incidents right now?

Contact our 24/7/365 world wide service incident response hotline.

CSIRT