Fraud Management & Cybercrime , Healthcare , Industry Specific

Healthcare Dilemma: Pay the Ransom, Get Hacked Again

Josh Wasserman of Semperis on Proactive Defense for Healthcare Ransomware
Josh Wasserman, northeast area vice president, Semperis

Ransomware attacks in healthcare continue to soar, driven by the financial gain attackers receive when hospitals pay ransom. These institutions often find themselves repeatedly targeted due to this willingness to pay, said Josh Wasserman, northeast area vice president at Semperis.

See Also: Corelight's Brian Dye on NDR's Role in Defeating Ransomware

Identity systems, particularly Active Directory, play a critical role in these incidents, Wasserman said. Compromised AD systems, he said, can disrupt operations, disrupting everything from computer logins to building access.

"If we keep paying again, they're going to keep coming. Hackers talk to each other … And if one successfully attacks and breaches one entity, his friend's going to find out, and he's going to want to do the same thing," Wasserman said. "If an entity, a hospital or healthcare network pays one [hacker], there's a good chance their data will not be given back to them, or will be given back to them and it'll be corrupt and they can't recover. Or, even worse, it'll be leaked anyway."

In this video interview with Information Security Media Group at the 2024 Healthcare Cybersecurity Summit, Wasserman also discussed:

  • The lessons learned from the Change Healthcare attack;
  • The need for continuous monitoring and proactive security measures;
  • Semperis' approach of helping organizations prepare for potential attacks.

Wasserman has 14 years of experience in cybersecurity, with expertise in direct and channel sales, strategic account management, and sales processes. Prior to Semperis, he was the senior sales director at Tenable.


About the Author

Marianne Kolbasuk McGee

Marianne Kolbasuk McGee

Executive Editor, HealthcareInfoSecurity, ISMG

McGee is executive editor of Information Security Media Group's HealthcareInfoSecurity.com media site. She has about 30 years of IT journalism experience, with a focus on healthcare information technology issues for more than 15 years. Before joining ISMG in 2012, she was a reporter at InformationWeek magazine and news site and played a lead role in the launch of InformationWeek's healthcare IT media site.




Around the Network

Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing inforisktoday.asia, you agree to our use of cookies.