Cybersecurity Risk Exposure of Radiology Practices and Imaging Centers

Topics:
Thought leadership
This is some text inside of a div block.
Tools & processes
This is some text inside of a div block.
Regulatory
This is some text inside of a div block.

August 8, 2024

Cybersecurity Risk Exposure of Radiology Practices and Imaging Centers

In recent years, the healthcare sector, including radiology practices and medical imaging centers, has faced a significant rise in cyberattacks. The highly integrated, data reliant, and continuously connected ecosystem used for imaging service delivery creates a complex attack surface that is susceptible to cybersecurity threats. Notable examples include a Minnesota-based specialty radiology practice notifying over 500,000 individuals about a breach and the substantial disruptions caused by the Change Healthcare cyberattack. These events underscore why radiology and medical imaging centers are prime cybersecurity targets and illustrate the financial and patient care impacts of such breaches.

Unique Cybersecurity Challenges in Radiology

Cybersecurity risk management in radiology and medical imaging departments is distinct from other clinical areas in several ways. Radiology services span multiple service lines including outpatient, inpatient, intensive care, emergency care, and intraoperative care. Additionally, many radiology services operate with standalone IT infrastructures and may have a dedicated IT team, adding complexity to cybersecurity measures and incident response.

MRI machine

The Challenges of Encrypting Medical Images

Radiology and medical imaging practices are particularly vulnerable to cyber risks due to the complexity of their systems and the use of legacy technologies, especially when it comes to encrypting medical images. Many of the older imaging products were not designed with encryption in mind as the FDA did not enforce stringent security requirements at the time Additionally, imaging systems often consist of devices from various manufacturers, combining old and new technologies, which complicates the process of securing data in transit. Ensuring secure data transmission requires collaboration among all parties involved, which has proven difficult to achieve. Encrypting data in transit is crucial for security, but the lack of standardized and unified solutions complicates the process, leading to inconsistent implementation across the industry.

High Volume of Sensitive Data

Radiology practices handle vast amounts of sensitive data, from patient names and birthdates to detailed medical histories, imaging reports, and the images themselves. This volume of data makes these practices lucrative targets for cybercriminals. Hackers can exploit this information for various malicious activities, including identity theft, ransom demands and blackmail, and fraudulent billing. For instance, researchers from Aplite discovered that the legacy DICOM protocol, used in medical imaging, exposed around 60 million records over the past few decades due to a lack of proper security, highlighting the critical need for robust cybersecurity measures in radiology​.

Financial Impact of Cyberattacks

The financial repercussions of cyberattacks on radiology and medical imaging practices are profound. These incidents often result in significant costs related to breach notification, identity theft protection services, legal fees, and potential fines. Apilite’s research highlighted the exponential financial risk due to the high volume of data leakage, with an estimated 60 million records compromised. Additionally, the consolidation of class action lawsuits, as seen with Shields Health Care Group, can further escalate financial liabilities.

Class Action Lawsuit Filed Against Shields Health Care Group Over 2 Million-Record Data Breach in HIPAA Journal

Direct Impact on Patient Care

Cyberattacks on radiology practices not only have financial and reputational implications but also directly affect patient care. Disruptions caused by these attacks can delay critical diagnostic services, essential for timely and accurate treatment decisions. For instance, the Change Healthcare cyberattack led to widespread disruptions in healthcare delivery. According to the American Hospital Association (AHA), 74% of hospitals reported direct patient care impacts, and 40% reported patients experiencing difficulty accessing care due to these delays. Such delays can worsen patient outcomes, especially in emergencies where prompt diagnosis is crucial.

Additionally, the tampering of radiology devices and altering imaging results pose severe risks to patients. Malicious actors could manipulate imaging data, leading to incorrect diagnoses and treatment plans, potentially endangering patients’ health and even lives.

Resilience and Cybersecurity Measures

The heightened awareness of cybersecurity threats has prompted the healthcare industry to prioritize cybersecurity. Recent studies highlight the vulnerability of medical imaging servers, specifically Picture Archiving and Communication System (PACS), which have been responsible for over 275 million unsecured images across 130 health systems due to security gaps. This underscores the need for a robust cybersecurity framework. Recommended measures include a zero-trust approach, ensuring all devices and users are validated before network access, implementing firewalls, adhering to cybersecurity hygiene best practices, and providing comprehensive employee training.

Conclusion

Radiology practices and medical imaging centers are targets for cybercriminals due to the challenges of encrypting medical images and implementing other cybersecurity best practices, as well as the high volume and attractiveness of the sensitive data they handle. The financial impact of such breaches can be significant, encompassing lost revenue, mitigation costs, legal fees, and potential fines. More critically, these cyberattacks directly affect patient care by causing delays in diagnostic services and posing risks to patient safety through data tampering.

While hospitals often manage the interconnectivity in the imaging space, the security vulnerabilities of individual practices can compromise the entire network. This creates a “lowest common denominator” effect where the weakest link in the chain determines the overall security level. Consequently, enhancing cybersecurity measures across all radiology and medical imaging centers can uplift the entire network’s security posture. By adopting comprehensive cybersecurity practices and fostering collaboration, the healthcare sector can ensure that a rising tide of improved security will lift all ships, benefiting both patient care and financial stability.

Medcrypt provides proactive cybersecurity solutions for medical device manufacturers. Take Medcrypt’s FDA Readiness Assessment or email us at info@medcrypt.com to learn how we can help your organization develop a security strategy that meets FDA requirements and protects patient safety.

Related articles

Navigating the Evolving Landscape of Medical Device Cybersecurity
This is some text inside of a div block.

Navigating the Evolving Landscape of Medical Device Cybersecurity

Thought leadership
This is some text inside of a div block.

December 4, 2024

Top 5 Things People Get Wrong About SBOM Generation
This is some text inside of a div block.

Top 5 Things People Get Wrong About SBOM Generation

Vulnerability management
This is some text inside of a div block.
Tools & processes
This is some text inside of a div block.
Thought leadership
This is some text inside of a div block.
Jobe Naff
Jobe Naff

October 30, 2024

Cybersecurity in FDA CDRH’s Proposed Guidance List for Fiscal Year 2025
This is some text inside of a div block.

Cybersecurity in FDA CDRH’s Proposed Guidance List for Fiscal Year 2025

FDA readiness
This is some text inside of a div block.
Regulatory
This is some text inside of a div block.
Thought leadership
This is some text inside of a div block.
Axel Wirth
Axel Wirth

October 28, 2024

Subscribe to Medcrypt news

Get the latest healthcare cybersecurity news right in your inbox.

We'll never spam you or sell your information