A new kind of healthcare hacker has been invading networks for years. Can it be stopped?
Cybersecurity researchers recently spotlighted a new kind of healthcare hacker. Orangeworm, as the group is called, has been preying on glaring vulnerabilities in healthcare networks for years. Can it be stopped?
To find out, Data Book talks to Jon DiMaggio, a senior threat intelligence analyst for Symantec. He’s one of the people who unearthed Orangeworm a few years ago. Ever since, he’s been investigating how the hacker (or hackers) operate and for which end. As you’ll hear, Orangeworm likely isn’t a nation-state, like North Korea or Russia. Instead, DiMaggio says, the group is probably engaging in some sort of corporate espionage.
>> READ: How Orangeworm Burrowed into Healthcare’s Supply Chain
The thing about its hacks is, healthcare has long known of the vulnerabilities that allowed it to enter sensitive systems. Orangeworm takes advantage of old, out-of-date systems, typically found in medical imaging devices. CynergisTek’s John Nye joins Data Book to describe what went wrong, what’s still going wrong, and how healthcare organizations and related vendors can plug the gaps.
Also of note: This episode puts Ryan Black, an editor for Healthcare Analytics News™ in the copilot seat, alongside co-host Jack Murtha. (Tom Castles, a regular co-host, was off covering all things ophthalmology in Hawaii when this episode was recorded.)
To read our coverage of Orangeworm and how healthcare can defend itself, click here and here.
If you enjoy Data Book, remember to subscribe, rate, and review on iTunes, Google Play, Spotify, and all of your favorite podcasting apps. We publish new episodes on the best stories and insights in big data, artificial intelligence, and cybersecurity at 8 a.m. every Friday.
And if you’re using any great healthcare apps, let us know via Twitter, Facebook, or LinkedIn. If you uncover a hidden gem, we might publish it in the magazine.
Finally, please, please, please don’t forget to update your systems.
Get the best insights in healthcare analytics directly to your inbox.
Related
Ep. 5: Amazon’s Path of Disruption
Ep. 4: Overcoming the Cultural Resistance to Health Tech
Ep. 3: The Gene-Editing Company That Didn’t Need CRISPR
Cybersecurity panel: Hospitals threatened by attacks aimed at vendors
November 4th 2024Chief Healthcare Executive presents another installment from our conversation on cybersecurity, with experts from the American Hospital Association, HIMSS and Providence. They talk about breaches tied to business partners.
Cybersecurity panel: The scope of recent ransomware attacks in healthcare
October 28th 2024Chief Healthcare Executive hosted a discussion on cybersecurity with leading experts from the American Hospital Association, HIMSS and the Providence health system. They talked about the growing problem of cyberattacks.