South Florida Hospital News
Sunday June 13, 2021

test 2

June 2016 - Volume 12 - Issue 12

Why Doctors and Hospitals Need an Incident Response Plan?

You’ve been breached. Now what? Perhaps valuable patient data has been stolen. Maybe hackers are asking for ransom in exchange for your own data that is now under their control. Hackers work 24x7 planning breaches and attacks to get your valuable patient health information – and they have a high rate of success. The breach or the attack itself is not the biggest problem – being unprepared for it is!

Recently, multiple hospitals have been in the news for being victims of ransomware attacks in which their computer systems and/or data were locked down and would only be returned if a ransom was paid. Patients and treatments were impacted and the hospitals practically came to a standstill, losing revenue and impacting their reputations. In more than one case, ransoms were paid to return to normalcy. If clear incident response plans had been in place and current, these issues could have been addressed with different outcomes.
The underground black market has become a thriving scene for private health data. Medical records fetch the highest price, making hospitals and medical facilities a prime target for cyber-attacks and be at risk of intrusions. Considering that more often than not, your patients’ data and lives may be adversely impacted by these attacks, can you afford to not have an incident response plan for your facility?

Rema Deo is a Managing Director at 24By7Security, Inc. which focuses on compliance and security issues for healthcare and other industries and provides services such as HIPAA security risk assessment, breach/ incident response, HIPAA policies and procedures, and more. To learn more, visit or reach Rema directly at

Share |