India's Health Systems Are A Top Target

India ranks second globally in cyber attacks on health systems. The government is currently promoting digitisation across the economy, although the country does not yet have specific data protection laws. As they work towards becoming Digital India, such cyber attacks causing growing concern. 

Now, a report by Artificial Intelligence company CloudSEK has found that the health sector’s speedy transition to technology due to Covid-19 has left many vulnerabilities.

The United States recorded the highest number of cyber attacks and breaches in healthcare in 2021, at 28 percent, due to heavy digitisation, and huge investments and growth opportunities in the sector that makes it a lucrative target for hackers

  • India ranked second in cyber attacks on the healthcare sector to a CloudSEK, an AI that specializes in  predicting cyber threats.
  • France ranked third in the world for the number of attacks on the healthcare industry, accounting for seven percent of all attacks. 
  • According to the report, the overall number of cyber attacks against healthcare has increased by 95.34 percent in the first four months of 2022, as compared to the number of cyber attacks in 2021.

The Indian government has been creating digital health account numbers of citizens under the Ayushman Bharat Digital Mission, which aims to digitise the health records of all patients. It has been reported that of the 23 million  health account numbers generated for individuals till August 17, three-quarters had been created using the CoWIN, national Covid-19 vaccination portal, and the databases from national the health insurance scheme.

The pandemic appears to have given impetus to the generation of health data online, often without adequate data  protection, and there are concerns that many Indian citizens do not know that these accounts had been created using their name using their unique personal 'Aadhaar' number and mobile phone details.

The Aadhaar  is a 12-digit unique identity number voluntarily available to Indian citizens and is the world's largest biometric ID system

The CloudSEK report observed that the pandemic forced the healthcare industry to adopt new technologies it was not completely equipped to handle. “The transition wasn’t smooth and left multiple gaps in cyber security for the attackers to exploit,” the CloudSEK report observed. 

Security experts have expressed concern over the large-scale digitisation of medical records and the risk of the data being misused.

In 2021, the Indian government began using the CoWIN portal and app to record immunisations against Covid-19. According to CloudSEK , vaccination records suffered the most breaches globally, followed by the personal identifiable information of health workers and patients. Personal information included name, address, email, contact number and gender.

Scroll:      Gov.In:     CNBC:    Business Fortnight:     Lite News:   JSNewstimes:     Flipboard

You Might Also Read: 

Inventive Ransomware Group Focused On Healthcare Data:

 

« New Cyber Security Laws For Telecoms Providers
Securing Hybrid Identity »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

ON-DEMAND WEBINAR: What Is A Next-Generation Firewall (and why does it matter)?

ON-DEMAND WEBINAR: What Is A Next-Generation Firewall (and why does it matter)?

Watch this webinar to hear security experts from Amazon Web Services (AWS) and SANS break down the myths and realities of what an NGFW is, how to use one, and what it can do for your security posture.

The PC Support Group

The PC Support Group

A partnership with The PC Support Group delivers improved productivity, reduced costs and protects your business through exceptional IT, telecoms and cybersecurity services.

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

Aqua Security Software

Aqua Security Software

Aqua Security helps enterprises secure their cloud native applications from development to production, whether they run using containers, serverless, or virtual machines.

EuroISPA

EuroISPA

EuroISPA is a pan European association of European Internet Services Providers Associations and the world’s largest association of ISPs.

ASU Online - Information Technology Program

ASU Online - Information Technology Program

The Information Technology program at ASU Online provides you with the expertise to design, select, implement and administer computer-based information solutions.

Intensity Analytics

Intensity Analytics

Intensity Analytics is a software firm that develops next-generation, physical user and entity behavioral authentication ("physical UEBA") security software technology.

SAASPASS

SAASPASS

SAASPASS is a full-stack identity and access management solution, a single product which allows you to manage all your digital and physical access needs securely and conveniently.

SecLytics

SecLytics

SecLytics is the leader in Predictive Threat Intelligence. Our SaaS-based Augur platform leverages behavioral profiling and machine learning to hunt down cyber criminals.

Seric Systems

Seric Systems

Seric is a technology business specialising in security, infrastructure and data management.

Zettaset

Zettaset

Zettaset’s XCrypt Data Encryption Platform delivers proven protection for Object, Relational/SQL, NoSQL, and Hadoop data stores…in the cloud and on-premises.

Padlock

Padlock

Padlock is a trusted platform with an intimate knowledge of the cybersecurity industry that connects businesses with freelance professionals

Madrona Venture Group

Madrona Venture Group

Madrona Venture Group invests in seed and early-stage technology companies in areas including cybersecurity.

CACI International

CACI International

CACI is at the forefront of developing and delivering technological breakthroughs that transform and optimize government operations.

Phished

Phished

Phished is an AI-driven platform that focuses on the human side of cybersecurity. By combining fully automated training software with personalised, realistic simulations of cyberattacks.

Condition Zebra

Condition Zebra

Condition Zebra has wide experience in providing IT Security Services, Training, and Certification in the field of cybersecurity.

ISSQUARED

ISSQUARED

ISSQUARED is a leading provider of Cyber Security, Cloud, Infrastructure, Consulting and Digital Transformation services.

ProArch

ProArch

ProArch is a global team of multidisciplinary experts in cloud, infrastructure, data analytics, cybersecurity, compliance, and software development.

Omnex

Omnex

Omnex provides consulting and training services in Quality, Environmental, and Health and Safety standards-based management systems including Automotive Cybersecurity.