Spanish Healthcare Service Works On Resilience

The digitisation of healthcare systems and the reliance on technology to run hospitals and healthcare facilities have made the healthcare sector an attractive target for cyber criminals. Hackers know that medical devices don’t contain any patient data themselves, however, they see them as an easy target, lacking the security found on other network devices like laptops and computers.

Threats against medical devices can cause problems for healthcare organisations, giving hackers access to other network devices or letting them install costly ransomware. Secure network devices help limit the damage caused by an attack on medical devices.

In response the  rising number of cyber threats on medical organisations, Spain’s health sector is taking decisive action.

Following the regional Catalan Government allocated funds to combat cyber threats, the Spanish Private Health Alliance (ASPE) convened a forum to deal with the serious problem. This move underscores the escalating concern over cybercrime within Spain’s health sector. 

Cyber attacks on Spanish healthcare have been increasing, affecting hospitals and healthcare centres across the country. In 2022 more than 500 institutions reported incidents, which, according to data from INCIBE, the National Institute of Cybersecurity, was an increase of 48% compared to 2021. 

The  Cybercrime Threat

The health sector in Spain is facing a significant challenge. The convergence of health data at a European level further exposes patient records to potential threats. Both public and private healthcare entities in Spain, including ASPE and the Catalan government, are rallying resources to combat this menace.

According to ASPE's Director, ‘cyber security in the health system is not an option, it is something fundamental,'  highlighting the healthcare sector’s dedication to maintaining trust through robust cybersecurity measures.  These concerns are amplified by the European Union’s move towards a unified health data market, raising the stakes for data security.

However, according to analysis by leading Spanish firm, Aiuken Cybersecurity there is  a gap between ASPE's goals and the current needs of Spanish healthcare. Aiuken criticises the sector’s outdated technological infrastructures and calls for increased investment to deter cybercriminals. The principal threats faced by the health sector includ3s ransomware. Indeed, ransomware attack on one of Barcelona’ s main hospitals last year that  crippled the main computer system and forced the cancellation of 150 non-urgent operations and up to 3,000 patient appointments.

To counter these threats, solutions such as restricting access to electronic health records and enhancing training for those with access are being proposed. With a concerted effort to improve cybersecurity, including the development of action plans and regulatory advice, Spain’s health sector aims to certify under the National Security Scheme. 

This initiative is a big step towards safeguarding patient data and ensuring the integrity of healthcare services against cyber threats, which are taking place on health systems around the world.

Euro Weekly News     |    ETKHO    |    Dig Watch     |    SC Magazine     |    Security Week     |    Swivel Secure

Image: Ideogram

You Might Also Read: 

Scottish Health Service Patient Data Hacked & Stolen:

___________________________________________________________________________________________

If you like this website and use the comprehensive 6,500-plus service supplier Directory, you can get unrestricted access, including the exclusive in-depth Directors Report series, by signing up for a Premium Subscription.

  • Individual £5 per month or £50 per year. Sign Up
  • Multi-User, Corporate & Library Accounts Available on Request

Cyber Security Intelligence: Captured Organised & Accessible


 

« Cambridge University Medical IT System Hacked
A New Era Of Accelerated Computing »

CyberSecurity Jobsite
Check Point

Directory of Suppliers

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

BackupVault

BackupVault

BackupVault is a leading provider of automatic cloud backup and critical data protection against ransomware, insider attacks and hackers for businesses and organisations worldwide.

Directory of Cyber Security Suppliers

Directory of Cyber Security Suppliers

Our Supplier Directory lists 8,000+ specialist cyber security service providers in 128 countries worldwide. IS YOUR ORGANISATION LISTED?

Alvacomm

Alvacomm

Alvacomm offers holistic VIP cybersecurity services, providing comprehensive protection against cyber threats. Our solutions include risk assessment, threat detection, incident response.

Citicus

Citicus

Citicus provides world-class security, risk and compliance management software, plus supporting services.

Digital Guardian

Digital Guardian

Digital Guardian is a next generation data protection platform designed to stop data theft.

ISGroup (Information Security Group)

ISGroup (Information Security Group)

ISGroup services include network penetration testing, Web application penetration testing, ethical hacking, vulnerability assessments, code review and associated training.

SynerComm

SynerComm

SynerComm is an IT solution provider specializing in network and security infrastructure, enterprise mobility, remote access, wireless solutions, audit, pentesting and information assurance.

itbox.online

itbox.online

Itbox.online offers IT solutions to ensure that your company's technologies are always available and secure as your business demands.

Bright Machines

Bright Machines

Bright Machines delivers intelligent, software-defined manufacturing by bringing together our flexible factory robots with intelligent software, production data and machine learning.

Greylock Partners

Greylock Partners

Greylock Partners is a leading venture capital firm based in Silicon Valley. We invest in all sectors of enterprise software technology including applications, cloud/SaaS, networking and security.

Korn Ferry

Korn Ferry

Korn Ferry is a global organizational consulting firm, synchronizing strategy and talent to drive superior performance for our clients in key areas including cybersecurity.

DeepSeas

DeepSeas

DeepSeas is the result of a merger between Security On-Demand (SOD) and the commercial Managed Threat Services (MTS) business of Booz Allen Hamilton.

CyGlass

CyGlass

CyGlass simply and effectively identifies, detects, and responds to threats to your network without requiring any additional hardware, software, or people.

Vanta

Vanta

Vanta helps companies scale security practices and automate compliance for the industry’s most sought after standards - SOC 2, ISO 27001, HIPAA, GDPR, and other security and privacy frameworks.

U2opia Technology

U2opia Technology

U2opia is a consortium with a proven track record of delivering groundbreaking technology, cybersecurity, and innovative business solutions.

Cyber Risk International

Cyber Risk International

Cyber Risk International offer CyberPrism, a B2B SaaS solution that empowers businesses to perform a self-assessment of their cyber security program.

Memcyco

Memcyco

Memcyco is a provider of cutting-edge digital trust technologies to empower brands in combating online brand impersonation fraud, and preventing fraud damages to businesses and their clients.

LaScala

LaScala

LaScala is an IT Managed Services provider delivering technical, security, and compliance solutions with dedication, compassion, and agility.

Blackwired

Blackwired

Blackwired has established a new category in cyber security with an intelligence-led model based on the USMC’s Combat Hunter programme ‘Left of Bang’.