Skip to main page content
U.S. flag

An official website of the United States government

Dot gov

The .gov means it’s official.
Federal government websites often end in .gov or .mil. Before sharing sensitive information, make sure you’re on a federal government site.

Https

The site is secure.
The https:// ensures that you are connecting to the official website and that any information you provide is encrypted and transmitted securely.

Access keys NCBI Homepage MyNCBI Homepage Main Content Main Navigation
. 2020 Sep 17;22(9):e23692.
doi: 10.2196/23692.

Cybersecurity Risks in a Pandemic

Christina Meilee Williams #  1 Rahul Chaturvedi #  2 Krishnan Chakravarthy  3
Affiliations

Cybersecurity Risks in a Pandemic

Christina Meilee Williams et al. J Med Internet Res. .

Abstract

Cybersecurity threats are estimated to cost the world US $6 trillion a year by 2021, and the number of attacks has increased five-fold after COVID-19. Although there is substantial literature on the threats technological vulnerabilities have on the health care industry, less research exists on how pandemics like COVID-19 are opportunistic for cybercriminals. This paper outlines why cyberattacks have been particularly problematic during COVID-19 and ways that health care industries can better protect patient data. The Office for Civil Rights has loosened enforcement of the Health Insurance Portability and Accountability Act, which, although useful in using new platforms like Zoom, has also loosened physical and technical safeguards to cyberattacks. This is especially problematic given that 90% of health care providers had already encountered data breaches. Companies must implement well-defined software upgrade procedures, should use secure networks like virtual local area networks, and conduct regular penetration tests of their systems. By understanding factors that make individuals, health care organizations, and employers more susceptible to cyberattacks, we can better prepare for the next pandemic.

Keywords: COVID-19; SARS-CoV-2; cybersecurity; hack; pandemic; patient data; privacy; risk.

PubMed Disclaimer

Conflict of interest statement

Conflicts of Interest: None declared.

References

    1. The 2020 Official Annual Cybercrime Report. Herjavic Group. 2020. https://tinyurl.com/y56trmgv.
    1. Kruse Cs, Frederick B, Jacobson T, Monticone D. Cybersecurity in healthcare: a systematic review of modern threats and trends. Technol Heal Care. 2017 Feb 21;25(1):1–10. doi: 10.3233/thc-161263. - DOI - PubMed
    1. Argaw ST, Troncoso-Pastoriza J, Lacey D, Florin M, Calcavecchia F, Anderson D, Burleson W, Vogel JM, O'Leary C, Eshaya-Chauvin B, Flahault A. Cybersecurity of hospitals: discussing the challenges and working towards mitigating the risks. BMC Med Inform Decis Mak. 2020 Jul 03;20(1):146. doi: 10.1186/s12911-020-01161-7. - DOI - PMC - PubMed
    1. Naidoo R. A multi-level influence model of COVID-19 themed cybercrime. Eur J Inf Syst. 2020 May 31;29(3):306–321. doi: 10.1080/0960085x.2020.1771222. - DOI
    1. WHO reports fivefold increase in cyber attacks, urges vigilance. World Health Organization. 2020. Apr 23, https://www.who.int/news-room/detail/23-04-2020-who-reports-fivefold-inc....

MeSH terms