India's Health Systems Are A Top Target

Uploaded on 2022-09-14 in BUSINESS-Services-Health & Welfare, FREE TO VIEW

India ranks second globally in cyber attacks on health systems. The government is currently promoting digitisation across the economy, although the country does not yet have specific data protection laws. As they work towards becoming Digital India, such cyber attacks causing growing concern. 

Now, a report by Artificial Intelligence company CloudSEK has found that the health sector’s speedy transition to technology due to Covid-19 has left many vulnerabilities.

The United States recorded the highest number of cyber attacks and breaches in healthcare in 2021, at 28 percent, due to heavy digitisation, and huge investments and growth opportunities in the sector that makes it a lucrative target for hackers

  • India ranked second in cyber attacks on the healthcare sector to a CloudSEK, an AI that specializes in  predicting cyber threats.
  • France ranked third in the world for the number of attacks on the healthcare industry, accounting for seven percent of all attacks. 
  • According to the report, the overall number of cyber attacks against healthcare has increased by 95.34 percent in the first four months of 2022, as compared to the number of cyber attacks in 2021.

The Indian government has been creating digital health account numbers of citizens under the Ayushman Bharat Digital Mission, which aims to digitise the health records of all patients. It has been reported that of the 23 million  health account numbers generated for individuals till August 17, three-quarters had been created using the CoWIN, national Covid-19 vaccination portal, and the databases from national the health insurance scheme.

The pandemic appears to have given impetus to the generation of health data online, often without adequate data  protection, and there are concerns that many Indian citizens do not know that these accounts had been created using their name using their unique personal 'Aadhaar' number and mobile phone details.

The Aadhaar  is a 12-digit unique identity number voluntarily available to Indian citizens and is the world's largest biometric ID system

The CloudSEK report observed that the pandemic forced the healthcare industry to adopt new technologies it was not completely equipped to handle. “The transition wasn’t smooth and left multiple gaps in cyber security for the attackers to exploit,” the CloudSEK report observed. 

Security experts have expressed concern over the large-scale digitisation of medical records and the risk of the data being misused.

In 2021, the Indian government began using the CoWIN portal and app to record immunisations against Covid-19. According to CloudSEK , vaccination records suffered the most breaches globally, followed by the personal identifiable information of health workers and patients. Personal information included name, address, email, contact number and gender.

Scroll:      Gov.In:     CNBC:    Business Fortnight:     Lite News:   JSNewstimes:     Flipboard

You Might Also Read: 

Inventive Ransomware Group Focused On Healthcare Data:

 

« New Cyber Security Laws For Telecoms Providers
Securing Hybrid Identity »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

ON-DEMAND WEBINAR: What Is A Next-Generation Firewall (and why does it matter)?

ON-DEMAND WEBINAR: What Is A Next-Generation Firewall (and why does it matter)?

Watch this webinar to hear security experts from Amazon Web Services (AWS) and SANS break down the myths and realities of what an NGFW is, how to use one, and what it can do for your security posture.

Zurich

Zurich

Zurich is a leading multi-line insurer providing a wide range of property and casualty, and life insurance products and services in more than 210 countries and territories.

Steptoe & Johnson

Steptoe & Johnson

Steptoe is an international law firm with offices in the USA, Europe and China. Practice areas include Cybersecurity, Privacy & National Security.

Cyber Army Indonesia (CyberArmyID)

Cyber Army Indonesia (CyberArmyID)

Cyber Army Indonesia (CyberArmyID) is the first platform in Indonesia to collect and validate reports from hackers (referred to as Bug Hunter) regarding vulnerabilities that exist in an organization.

ITU Arab Regional Cyber Security Center (ITU-ARCC)

ITU Arab Regional Cyber Security Center (ITU-ARCC)

ITU-ARCC acts as ITU’s cybersecurity hub in the Arab Region localizing and coordinating cybersecurity initiatives.

Pentest People

Pentest People

Pentest People are a UK-based security consultancy focussing on bringing the benefits of Pentesting as a Service (PTaaS) to all its clients.

Cyber Physical Security Research Center (CPSEC)

Cyber Physical Security Research Center (CPSEC)

CPSEC aims to contribute to the security enhancement of industrial infrastructure that creates value across cyber space and physical space.

Cloudsine

Cloudsine

Cloudsine (formerly Banff Cyber Technologies) is a cloud technology company specializing in cloud adoption, security and innovation.

Swarmnetics

Swarmnetics

Swarmnetics helps customers discover hard-to-find software vulnerabilities by hacking your system before the bad guys do.

Rizikon Assurance

Rizikon Assurance

Rizikon Assurance is an Online System that improves Third-Party Assurance and Risk Management, through efficiency, automation and better visibility.

SecureStack

SecureStack

SecureStack helps software developers find security & scalability gaps in their web applications and offers ways to fix those gaps without forcing those developers to become security experts.

Vigilant Technology Solutions

Vigilant Technology Solutions

Vigilant is a global cyber security technology company offering solutions to manage entire IT & cyber security lifecycles.

VCG Group

VCG Group

VCG provides everything you need for the design, implementation and management of data centres, cyber-secure enterprise networks, cloud and connectivity services.

MillenniumIT ESP (MIT ESP)

MillenniumIT ESP (MIT ESP)

MillenniumIT ESP provides solutions and services around Core Infrastructure, Cloud, Cyber Security, Enterprise Applications, Intelligent Automation and Data, Smart Buildings, and Managed Services.

CommandK

CommandK

CommandK provides companies with infrastructure to protect their sensitive data. Built-in solutions to prevent data-leaks and simplify governance.

ZILLIONe

ZILLIONe

ZILLIONe is one of Sri Lanka´s top enterprise technology solutions providers.

Blackwell Security

Blackwell Security

Blackwell is a driving force in healthcare cybersecurity, transforming how security operations are conducted within this critical sector.