Rural hospitals are particularly vulnerable to ransomware, report finds | CyberScoop<\/title> <meta name=\"description\" content=\"The most vulnerable hospitals are unprepared to deal with the impact of digital extortion as ransomware attacks target health care facilities.\"> <link rel=\"canonical\" href=\"https:\/\/cyberscoop.com\/rural-hospital-ransomware-cyber\/\"> <meta property=\"og:locale\" content=\"en_US\"> <meta property=\"og:type\" content=\"article\"> <meta property=\"og:title\" content=\"Rural hospitals are particularly vulnerable to ransomware, report finds\"> <meta property=\"og:description\" content=\"The most vulnerable hospitals are unprepared to deal with the impact of digital extortion as ransomware attacks target health care facilities.\"> <meta property=\"og:url\" content=\"https:\/\/cyberscoop.com\/rural-hospital-ransomware-cyber\/\"> <meta property=\"og:site_name\" content=\"CyberScoop\"> <meta property=\"article:published_time\" content=\"2024-06-04T10:00:00+00:00\"> <meta property=\"article:modified_time\" content=\"2024-06-03T23:43:57+00:00\"> <meta property=\"og:image\" content=\"https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2024\/06\/rural-hospitals-are-particularly-vulnerable-to-ransomware-report-finds-2.jpg\"> <meta property=\"og:image:width\" content=\"1920\"> <meta property=\"og:image:height\" content=\"1110\"> <meta property=\"og:image:type\" content=\"image\/jpeg\"> <meta name=\"author\" content=\"Christian Vasquez\"> <meta name=\"twitter:card\" content=\"summary_large_image\"> <meta name=\"twitter:creator\" content=\"@chrismvasq\">  <link rel=\"dns-prefetch\" href=\"\/\/securepubads.g.doubleclick.net\">\n<link rel=\"dns-prefetch\" href=\"\/\/use.typekit.net\">\n<link rel=\"alternate\" type=\"application\/rss+xml\" title=\"CyberScoop \u00bb Feed\" href=\"https:\/\/cyberscoop.com\/feed\/\">\n<link rel=\"alternate\" type=\"application\/rss+xml\" title=\"CyberScoop \u00bb Comments Feed\" href=\"https:\/\/cyberscoop.com\/comments\/feed\/\"> <link rel=\"stylesheet\" id=\"all-css-2\" href=\"https:\/\/cyberscoop.com\/wp-includes\/css\/dist\/block-library\/style.min.css?m=1715117951g\" type=\"text\/css\" media=\"all\"> <link rel=\"stylesheet\" id=\"all-css-6\" href=\"https:\/\/cyberscoop.com\/wp-content\/mu-plugins\/search\/elasticpress\/dist\/css\/related-posts-block-styles.min.css?m=1715115084g\" type=\"text\/css\" media=\"all\"> <link rel=\"stylesheet\" id=\"all-css-8\" href=\"https:\/\/cyberscoop.com\/wp-content\/themes\/scoopnewsgroup\/dist\/css\/frontend.css?m=1716385020g\" type=\"text\/css\" media=\"all\">\n<link rel=\"stylesheet\" id=\"typekit-css\" href=\"https:\/\/use.typekit.net\/itk2qbh.css?ver=74528d75ce0daeb8628a\" media=\"all\"> <link rel=\"https:\/\/api.w.org\/\" href=\"https:\/\/cyberscoop.com\/wp-json\/\"><link rel=\"alternate\" type=\"application\/json\" href=\"https:\/\/cyberscoop.com\/wp-json\/wp\/v2\/posts\/80644\"><link rel=\"EditURI\" type=\"application\/rsd+xml\" title=\"RSD\" href=\"https:\/\/cyberscoop.com\/xmlrpc.php?rsd\">\n<meta name=\"generator\" content=\"WordPress 6.5.3\">\n<link rel=\"shortlink\" href=\"https:\/\/cyberscoop.com\/?p=80644\">\n<link rel=\"alternate\" type=\"application\/json+oembed\" href=\"https:\/\/cyberscoop.com\/wp-json\/oembed\/1.0\/embed?url=https%3A%2F%2Fcyberscoop.com%2Frural-hospital-ransomware-cyber%2F\">\n<link rel=\"alternate\" type=\"text\/xml+oembed\" href=\"https:\/\/cyberscoop.com\/wp-json\/oembed\/1.0\/embed?url=https%3A%2F%2Fcyberscoop.com%2Frural-hospital-ransomware-cyber%2F&format=xml\">   <link rel=\"icon\" href=\"https:\/\/cyberscoop.com\/wp-content\/uploads\/sites\/3\/2023\/01\/cropped-cs_favicon-2.png?w=32\" sizes=\"32x32\">\n<link rel=\"icon\" href=\"https:\/\/cyberscoop.com\/wp-content\/uploads\/sites\/3\/2023\/01\/cropped-cs_favicon-2.png?w=192\" sizes=\"192x192\">\n<link rel=\"apple-touch-icon\" href=\"https:\/\/cyberscoop.com\/wp-content\/uploads\/sites\/3\/2023\/01\/cropped-cs_favicon-2.png?w=180\">\n<meta name=\"msapplication-TileImage\" content=\"https:\/\/cyberscoop.com\/wp-content\/uploads\/sites\/3\/2023\/01\/cropped-cs_favicon-2.png?w=270\"> <\/head><body class=\"post-template-default single single-post postid-80644 single-format-standard\" id=\"readabilityBody\"> <a href=\"https:\/\/cyberscoop.com\/rural-hospital-ransomware-cyber\/#main\" class=\"skip-to-content-link visually-hidden-focusable\">Skip to main content<\/a> <\/p>\n<div class=\"ad ad--top ad--top-desktop\">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<p> <main id=\"main\" role=\"main\" tabindex=\"-1\"> <\/p>\n<div class=\"ad ad--top ad--top-mobile\">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<section id=\"stickybar\" class=\"stickybar stickybar--newsletter js-stickybar\" readability=\"0.82\"> <button class=\"stickybar__close js-stickybar-close\" aria-controls=\"stickybar\"> <svg class=\"icon icon--close\" width=\"21\" height=\"22\" viewBox=\"0 0 21 22\" fill=\"none\"><path d=\"m.822.518-.805.805L9.695 11 .017 20.678l.805.805 9.678-9.678 9.677 9.678.806-.805L11.305 11l9.678-9.677-.806-.805-9.677 9.677L.822.518Z\" fill=\"currentColor\" \/><\/svg> <span class=\"visually-hidden\">Close<\/span> <\/button> <\/section>\n<article class=\"single-article content\">\n<div class=\"single-article__container js-single-article-content\">\n<header class=\"single-article__header \" readability=\"24.533870967742\">\n<div class=\"single-article__header-content\" readability=\"30.023529411765\">\n<p> The most vulnerable hospitals are unprepared to deal with the impact of digital extortion as ransomware attacks target health care facilities. <\/p>\n<\/p><\/div>\n<div class=\"single-article__cover-wrap\">\n<figure class=\"single-article__cover\"> <img data-recalc-dims=\"1\" fetchpriority=\"high\" width=\"640\" height=\"370\" src=\"https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2024\/06\/rural-hospitals-are-particularly-vulnerable-to-ransomware-report-finds.jpg?resize=640%2C370&ssl=1\" class=\"single-article__cover-image wp-post-image\" alt decoding=\"async\" fetchpriority=\"high\" srcset=\"https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2024\/06\/rural-hospitals-are-particularly-vulnerable-to-ransomware-report-finds-2.jpg 1920w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2024\/06\/rural-hospitals-are-particularly-vulnerable-to-ransomware-report-finds-2.jpg?resize=300,173 300w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2024\/06\/rural-hospitals-are-particularly-vulnerable-to-ransomware-report-finds-2.jpg?resize=768,444 768w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2024\/06\/rural-hospitals-are-particularly-vulnerable-to-ransomware-report-finds-2.jpg?resize=1024,592 1024w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2024\/06\/rural-hospitals-are-particularly-vulnerable-to-ransomware-report-finds-2.jpg?resize=1536,888 1536w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2024\/06\/rural-hospitals-are-particularly-vulnerable-to-ransomware-report-finds-2.jpg?resize=600,347 600w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2024\/06\/rural-hospitals-are-particularly-vulnerable-to-ransomware-report-finds-2.jpg?resize=291,168 291w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2024\/06\/rural-hospitals-are-particularly-vulnerable-to-ransomware-report-finds-2.jpg?resize=583,337 583w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2024\/06\/rural-hospitals-are-particularly-vulnerable-to-ransomware-report-finds-2.jpg?resize=1168,675 1168w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2024\/06\/rural-hospitals-are-particularly-vulnerable-to-ransomware-report-finds-2.jpg?resize=1458,843 1458w\" sizes=\"(max-width: 1168px) 100vw, 1168px\"><figcaption> A broken piggy bank with a stethoscope. (Getty Images) <\/figcaption><\/figure>\n<\/p><\/div>\n<\/header>\n<div class=\"single-article__content\">\n<div class=\"single-article__content-inner has-drop-cap\"> <html readability=\"52.583210362354\"><body readability=\"106.87630662021\"><\/p>\n<p>As health care providers continue to get hammered by ransomware, a new report from an influential think tank warns that rural hospitals are likely to be hardest hit by such attacks unless the industry makes major cybersecurity investments. <\/p>\n<p>The <a href=\"https:\/\/www.fdd.org\/analysis\/2024\/06\/04\/healthcare-cybersecurity-needs-a-check-up\">study<\/a> from CSC 2.0, an offshoot of the Cyberspace Solarium Commission, finds that whether the U.S. health care sector will be able to protect itself against future cyberattacks hinges largely on how much \u2014 or how little \u2014 funding Congress will allocate to address the issue. <\/p>\n<p>\u201cThis does come down to money and in a lot of the cases it\u2019s about federal funding,\u201d said Annie Fixler, a co-author of the report and the director of the Foundation for the Defense of Democracies\u2019 Center on Cyber and Technology Innovation. \u201cThere\u2019s some things we can do without Congress, but a lot of this stuff does come down to funding.\u201d<\/p>\n<p>The threat facing U.S. health care systems is no longer theoretical, with several important health care providers getting hit by ransomware attacks in recent months. <\/p>\n<div class=\"ad ad--inline_1 \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<p>In May, hackers hit one of the United States\u2019s <a href=\"https:\/\/cyberscoop.com\/ransomware-used-in-attack-that-disrupted-us-hospitals\/\">largest health care providers, Ascension<\/a>, which runs 140 hospitals across 19 states. That attack disrupted the availability of health records and systems needed for medical procedures and the provision of medication across the nation. In February, a ransomware attack on the payment processor Change Healthcare impacted patient care at nearly three-quarters of all U.S. hospitals, with more than half of all facilities reporting serious financial impact, per Tuesday\u2019s report.<\/p>\n<p>The report notes that the majority of rural hospitals are considered \u201ccritical access,\u201d which refers to a 24\/7 facility that provides fewer than 25 beds and is at least 35 miles from another hospital. The concept seeks to capture regional health care scarcity, and hospitals that meet the criteria usually service populations that are older, sicker, poorer and more often uninsured, all while operating on tighter budgets. <\/p>\n<p>When hit by a ransomware attack, the consequences can be particularly devastating for such facilities and their patients. <\/p>\n<p>\u201cThe biggest threat from ransomware though, we believe, is the increase in time it takes for patients to receive emergency care. For some medical complications such as cardiac arrest, mere minutes can be the difference between life and death,\u201d said Michael Sugden, a co-author of the report and a research analyst and editorial associate at FDD. \u201cAnd if a facility is affected by ransomware and cannot treat time-sensitive conditions like this, patients may need to be rerouted to alternative facilities \u2014 that additional time can be catastrophic.\u201d <\/p>\n<p>The report notes that determining the human toll of ransomware on health care systems is difficult, as the sector records medical causes of death, not availability of health records or inoperable equipment due to a cyberattack.<\/p>\n<div class=\"ad ad--inline_1 \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<p>The report suggests that the federal government develop new long-term sector-specific cybersecurity objectives, work with the health care industry to identify the most vital services and create a road map to segment those networks. The report recommends increasing funding for the Department of Health and Human Services, which is charged with overseeing and protecting the industry from threats, and charges the Government Accountability Office with auditing the agency to determine resourcing needs or changes to its structure. The report also recommends additional funds directed to resourcing HHS\u2019s cyber performance goals and incentive programs, and establishing a pilot rural virtual chief information security officer program for facilities that can\u2019t afford a full position.<\/p>\n<p>The report also recommends updating the entities in the health care sector that are included on the list of so-called \u201csystemically important entities\u201d maintained by the Cybersecurity and Infrastructure Security Agency. That recommendation is inspired by the fact that Change Healthcare <a href=\"https:\/\/cyberscoop.com\/pcast-critical-infrastructure-resilience\/\">was not on that list<\/a>, despite the severe consequences of the attack on the sector. <\/p>\n<p>The report urges industry to make some basic investments into cyber hygiene training for employees and encourages underfunded facilities to engage managed IT service providers that can outsource work to part-time cyber defenders. Additionally, the report calls on health care providers to develop contingency plans for patient care if a facility is targeted by ransomware so service disruption is kept to a minimum.<\/p>\n<p>Citing a <a href=\"https:\/\/www.himss.org\/sites\/hde\/files\/media\/file\/2022\/01\/28\/2021_himss_cybersecurity_survey.pdf\">2021 survey<\/a> in which 73% of respondents reported using legacy operating systems, the report notes that health care providers are made more vulnerable by their reliance on older computer systems. Health care providers also suffer from a large attack surface, with hospitals, for example, running hundreds of medical devices, numerous computers for reviewing and updating medical records, water and wastewater treatment facilities and other operational technology \u2014 all of which could be a way in for hackers.<\/p>\n<p>While the Biden administration has <a href=\"https:\/\/www.whitehouse.gov\/briefing-room\/statements-releases\/2023\/11\/01\/fact-sheet-biden-harris-administration-convenes-third-global-gathering-to-counter-ransomware\/\">highlighted the combating of ransomware<\/a> as a key national security priority, <a href=\"https:\/\/cyberscoop.com\/ransomware-increasing-2023-mandiant\/\">attacks are only increasing<\/a>, with 50 new malware variants appearing within the past year, according to new research by the Google-owned cybersecurity firm Mandiant.<\/p>\n<div class=\"ad ad--inline_1 \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<p>The FBI\u2019s 2022 Internet Crime Report found that the health care and public health industry experienced more ransomware attacks than any of the other 16 critical infrastructure sectors.A survey of 600 health care organizations found that around 70% of those that faced a ransomware attack said the incident led to longer hospital stays and delayed services, with 22% experiencing <a href=\"https:\/\/www.theverge.com\/2021\/9\/27\/22696097\/hospital-ransomware-cyberattack-death-rates-patients\">increased death rates<\/a>.<\/p>\n<p><\/body> <\/p>\n<footer class=\"single-article__footer\" readability=\"1.4134078212291\">\n<div class=\"author-card\" readability=\"9\">\n<div class=\"author-card__avatar\">\n<figure class=\"author-card__image-wrap\"> <img data-recalc-dims=\"1\" decoding=\"async\" class=\"author-card__image\" src=\"https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2024\/06\/rural-hospitals-are-particularly-vulnerable-to-ransomware-report-finds-1.jpg?w=640&ssl=1\" alt=\"Christian Vasquez\"> <\/figure>\n<\/p><\/div>\n<p><h4 class=\"author-card__name\">Written by Christian Vasquez<\/h4>\n<p> Christian covers industrial cybersecurity for CyberScoop News. He previously wrote for E&E News at POLITICO covering cybersecurity in the energy sector. Reach out: christian.vasquez at cyberscoop dot com <\/p>\n<\/p><\/div>\n<div class=\"single-article__tags-container\">\n<h4 class=\"single-article__tags-title\">In This Story<\/h4>\n<\/p><\/div>\n<\/footer>\n<p> <\/html><\/div>\n<\/p><\/div>\n<\/p><\/div>\n<div class=\"single-article__ads js-single-article-sidebar\">\n<div class=\"ad ad--sidebar js-single-article-sidebar-5 ad--rightrail_1 \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<div class=\"ad ad--sidebar js-single-article-sidebar-4 ad--rightrail_2 \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<div class=\"ad ad--sidebar js-single-article-sidebar-3 ad--rightrail_3 \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div><\/div>\n<\/article>\n<div class=\"popular-stories popular-stories--single-post\">\n<div class=\"popular-stories__container\">\n<h2 class=\"popular-stories__title\"> More Scoops <\/h2>\n<p>  <\/div>\n<p>\n<\/div>\n<p> <\/p>\n<section class=\"latest-podcasts\">\n<h2 class=\"latest-podcasts__title\"> Latest Podcasts\t<\/h2>\n<\/section>\n<div class=\"top-categories\">\n<div class=\"top-categories__container\">\n<h3 class=\"top-categories__category-title\">Government<\/h3>\n<\/p><\/div>\n<div class=\"top-categories__container\">\n<h3 class=\"top-categories__category-title\">Technology<\/h3>\n<\/p><\/div>\n<div class=\"top-categories__container\">\n<h3 class=\"top-categories__category-title\">Geopolitics<\/h3>\n<\/p><\/div>\n<\/p><\/div>\n<p> <\/main> <\/p>\n<div class=\"ad ad--bottom \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<div id=\"interstitial\" class=\"welcome__container\"> <button id=\"close-modal-1\" class=\"welcome__clickable_area\"><\/button> <\/p>\n<div class=\"welcome__ad_wrapper\">\n<p> <button id=\"close-modal-3\" class=\"welcome__continue-button\">Continue to CyberScoop<\/button> <\/p>\n<\/p><\/div>\n<\/p><\/div>\n<p>   <\/body> <a href=\"https:\/\/cyberscoop.com\/rural-hospital-ransomware-cyber\/\">Source<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Rural hospitals are particularly vulnerable to ransomware, report finds |<\/p>\n","protected":false},"author":11,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[1603,413,1436,224,439,46],"tags":[1605,415,1439,232,443,54],"class_list":["post-3870","post","type-post","status-publish","format-standard","hentry","category-change-healthcare","category-critical-infrastructure","category-department-of-health-and-human-services-hhs","category-healthcare","category-policy","category-ransomware","tag-change-healthcare","tag-critical-infrastructure","tag-department-of-health-and-human-services-hhs","tag-healthcare","tag-policy","tag-ransomware"],"featured_image_urls":{"full":"","thumbnail":"","medium":"","medium_large":"","large":"","1536x1536":"","2048x2048":"","chromenews-featured":"","chromenews-large":"","chromenews-medium":""},"author_info":{"display_name":"Cyber Scoop","author_link":"https:\/\/ddi.mohflo.net\/index.php\/author\/cyberscoop\/"},"category_info":"<a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/change-healthcare\/\" rel=\"category tag\">Change Healthcare<\/a> <a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/critical-infrastructure\/\" rel=\"category tag\">critical infrastructure<\/a> <a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/department-of-health-and-human-services-hhs\/\" rel=\"category tag\">Department of Health and Human Services (HHS)<\/a> <a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/healthcare\/\" rel=\"category tag\">Healthcare<\/a> <a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/policy\/\" rel=\"category tag\">Policy<\/a> <a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/ransomware\/\" rel=\"category tag\">ransomware<\/a>","tag_info":"ransomware","comment_count":"0","jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/posts\/3870","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/users\/11"}],"replies":[{"embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/comments?post=3870"}],"version-history":[{"count":0,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/posts\/3870\/revisions"}],"wp:attachment":[{"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/media?parent=3870"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/categories?post=3870"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/tags?post=3870"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}

{"id":3870,"date":"2024-06-04T05:00:00","date_gmt":"2024-06-04T10:00:00","guid":{"rendered":"https:\/\/cyberscoop.com\/?p=80644"},"modified":"2024-06-04T05:00:00","modified_gmt":"2024-06-04T10:00:00","slug":"rural-hospitals-are-particularly-vulnerable-to-ransomware-report-finds","status":"publish","type":"post","link":"https:\/\/ddi.mohflo.net\/index.php\/2024\/06\/04\/rural-hospitals-are-particularly-vulnerable-to-ransomware-report-finds\/","title":{"rendered":"Rural hospitals are particularly vulnerable to ransomware, report finds"},"content":{"rendered":"