A new report from a non-profit healthcare group is telling hospitals to brace for a spike in ransomware attacks, used to shut down computer networks and hold them hostage until they receive payment.
Ransomware is effectively digital extortion – malicious programs that control user devices and files until the user ponies up, usually in the digital currency Bitcoin.
The report comes from a study of 30 mid-sized U.S. Hospitals performed by the Health Information Trust Alliance late last year which found that 52% of hospitals were infected with malicious software, according to the HITTRUST chief exec Daniel Nutkis.
Ransomware attacks have become more commonplace in 2016. Last month, Los Angeles’ Hollywood Presbyterian Hospital paid $17,000 to regain access, and just this week an attack on Washington D.C.’s MedStar Health forced it to shut down, with the Baltimore Sun reporting a ransom of $18,500 being sought.
Ransomware was the found to be the most common type of malware on the systems, present in 35% of hospitals included in a study of network traffic performed by software security maker Trend Micro.
HITRUST said it expects ransomware attacks to continue as they’ve become a profitable business for hackers, who Lutkis said are beginning to move away from stealing patient data.
“If stuff isn’t working, they move on. If stuff is working, they keep doing it. Organizations that are paying have considered their options, and unfortunately they don’t have a lot of options,” Nutkis told Reuters.
Just last week, 3 U.S. hospitals were hit by ransomware, bringing down their IT systems, according to a report from NBC News.
Methodist Hospital in Ky. and California’s Chino Valley Medical Center and Desert Valley Hospital all fell victim to ransomware, according to NBC news. The 2 California hospitals reported that they were running normally again shortly after the attack.
“The malware disruption did not impact patient safety or compromise patient records, staff records or patient care,” said Prime Healthcare Management spokesperson Fred Ortega, according to NBC News. Prime Healthcare Management represents both Chino Valley and Desert Valley hospitals.
A representative for Methodist Hospital in Ky. said the hospitals IT systems were affected by a ransomware called “Locky,” according to NBC News.
The news service said that Symantec Security identified Locky as a virus that travels through spam email campaigns disguised as invoices, which if run will install locky onto the victim’s computer.
Last November, a report from Forreseter Research said that life-saving medical devices could be held hostage by ‘ransomware’.
