2 minute read
On February 21, 2024, Change Healthcare, a subsidiary of UnitedHealth Group, faced a major cyberattack, disrupting over 100 services for weeks and impacting millions of healthcare providers and patients. This incident, labeled one of the most disruptive cyberattacks in healthcare history, highlights the severe consequences of such events in the industry.
Prevention Guidance
With the rise of ransomware incidents such as the Change Healthcare cyberattack posing increasing threats and financial burdens, it is crucial for organizations to proactively safeguard themselves against similar losses. Here are some key ransomware prevention strategies for organizations to prioritize:
- Protect sensitive data. Secure confidential information to prevent cybercriminal access during ransomware incidents by storing data in safe locations, establishing backup protocols, and implementing access control policies like least privilege and multifactor authentication.
- Utilized effective security software. Security solutions such as antivirus software, patch management, endpoint detection, response solutions, and email authentication can defend organizations against ransomware threats.
- Purchase proper coverage. Organizations must secure cyber insurance for financial protection against ransomware attacks and consult insurance professionals for specific coverage needs.
- Approach ransom demands with caution. The FBI advises against paying ransom demands as cybercriminals may not honor negotiations, leading to increased losses. Additionally, organizations that comply are more likely to be targeted in future ransomware attacks.
- Have a plan. Cyber incident response plans enable organizations to swiftly respond to attacks, including ransomware scenarios. Regular evaluations through tabletop exercises and penetration testing ensure plan effectiveness.
- Educate employees. Educate employees on ransomware threats and response methods to bolster cybersecurity defenses.
- Prioritize technical procedures. Implement technical procedures like setting up RDP safeguards, network segmentation, and end-of-life software management to minimize ransomware risks.
Employer Takeaway
Ensuring robust cybersecurity measures for organizations is paramount in today's digital landscape. Cyber threats are constantly evolving, making it essential for organizations to stay vigilant and proactive in safeguarding their sensitive data and systems. By implementing stringent cybersecurity protocols and staying informed about the latest security trends, organizations can protect themselves from potential breaches and attacks. It is crucial for organizations to prioritize cybersecurity to maintain the trust of their employees, customers, and stakeholders. Download the bulletin for more details.
National Insurance Services is not a law firm and no opinion, suggestion, or recommendation of the firm or its employees shall constitute legal advice. Readers are advised to consult with their own attorney for a determination of their legal rights, responsibilities and liabilities, including the interpretation of any statute or regulation, or its application to the readers’ business activities.