Gulf hospitals urged to invest in better cybersecurity
Internet of Things makes hospitals vulnerable to attackers
DUBAI: A lack of proper cybersecurity training is making Gulf hospitals and medical providers among the most vulnerable targets for “catastrophic” attacks by hackers who have more than one way to breach their defenses, experts have warned.
The IT framework of health care facilities has also created challenges in building an effective cyber-safeguard, according to information security leaders who say health chiefs must adopt a “360-degree view” of cybersecurity to block “bad actors.”
The ramifications of hackers invading the health sector were illustrated in May, when the global WannaCry ransomware attack crippled the UK’s National Health Service (NHS), causing IT shutdowns at hospitals and GP surgeries.
Experts say health care organizations are potentially disadvantaged because they fear threatdetecting measures could impair how medical staff do their vital jobs.
Despite the measures introduced by countries such as the UAE to ensure health care facilities have rigorous security networks and data protection procedures, Amir Kolahzadeh, CEO of Dubaibased cybersecurity firm ITSEC, said there is no room for complacency because cybercriminals are not restricted to conventional hacking.
“In the context of one-dimensional security, medical companies and hospitals in the UAE and the region are well-protected,” he said.
“But as cybersecurity becomes more complex to defend against, we have to adopt a 360-degree, multidimensional view. The lack of understanding of social engineering, social media safety, and proper cybersecurity and patient privacy training for medical and administration staff places these organizations in a higher-risk category.”
Kolahzadeh said cybercriminals