The Media and I: The Critical Importance of Cybersecurity in Healthcare

Profile picture for user Henry Miller
By Henry I. Miller, MS, MD — Dec 28, 2023
Related content:
Protecting Our Water Systems in the Age of Cyber Threats
America’s Drinking Water Infrastructure at Risk
Cybersecurity in Health Care: Critical to Patients, Medical Providers
As Russians Target Our Electrical Grid, Here's What's Needed To Protect It
Every Picture Tells a Story: Wuhan’s Institute for Virology is Not Alone
In a CBS Eye on the World interview, host John Batchelor and I discussed myriad pressing concerns regarding data security in the healthcare sector.
Image by Michi S from Pixabay

The conversation opened with John Batchelor highlighting the pervasive role of data in contemporary life, particularly in healthcare. I underscored the critical question of whether such data are truly secure and protected from malicious actors.  I related an unfortunate incident at a small regional hospital, which led to hacking of the institution's computer system, and the challenge of managing costs and demands when information is continually updated.

I delineated two primary avenues through which healthcare systems can be compromised:

  • The susceptibility of smart medical devices, such as pacemakers and insulin pumps, to hacking, which threatens patients' well-being.
  • Major cybersecurity breaches can result in chaos, including the canceling of surgeries and critical medical procedures. The fragility of hospitals increased during the height of the pandemic, when strained resources led to the postponement or cancelation of outpatient diagnostics and treatment. 

As a potential remedy, I mentioned the 3-2-1 backup approach endorsed by the federal Cybersecurity and Infrastructure Security Agency (CISA). This strategy advocates saving three copies of critical healthcare data in at least two different formats, with one copy stored offline to mitigate exposure to ransomware and other cyber-threats. We also touched on the significance of cybersecurity protocols, such as password changes, as a frontline defense for hospitals. I noted that while essential, these measures might not fully address the issue, especially when individuals are negligent in handling personal emails on work computers.

Although Congress has introduced requirements for the FDA to enhance cybersecurity for medical devices, the lack of resources for implementation suggests there will be protracted delays in fortifying the healthcare industry against cyber-threats.

You can find the complete audio of our conversation here. Looking for a bit more? Here is my article on our website.

Tags:
Category
Harm Reduction
Profile picture for user Henry Miller

Henry I. Miller, MS, MD

Henry I. Miller, MS, MD, is the Glenn Swogger Distinguished Fellow at the American Council on Science and Health. His research focuses on public policy toward science, technology, and medicine, encompassing a number of areas, including pharmaceutical development, genetic engineering, models for regulatory reform, precision medicine, and the emergence of new viral diseases. Dr. Miller served for fifteen years at the US Food and Drug Administration (FDA) in a number of posts, including as the founding director of the Office of Biotechnology.

Recent articles by this author:
The Media and I: Organ Transplantation
‘Suppose you were an idiot, and suppose you were a member of Congress. But I repeat myself.’ –Mark Twain
The Media and I: A Potpourri of Scientific & Medical Issues
When Genetics Pulls A Fast One, Gender Identification Can Become Complicated
How Anti-Vaccine Kooks And Quacks Lie To You
All articles by this author
ACSH relies on donors like you. If you enjoy our work, please contribute.

Make your tax-deductible gift today!

 

 

Popular articles

ACSH Podcasts

Latest from Henry

Latest from Josh

Latest from Chuck