LATEST UPDATES » Vol 23, No 11, November 2019 – Evaluating cost effectiveness of genomic profiling       » Ion treatment offers new hope for cancer patients       » Empowering sustainability through innovation       » Meeting clinical needs in Asia with HealthTech       » The key in diagnosis and treatment       » Singapore's first private co-working laboratory and office space       » Singapore-based MedTech company announced as winner of 2019 Asia Pacific Showcase Competition at The MedTech Forum      
Alarm raised over increased targeted cyberattacks against pharmaceutical industry
Global cybersecurity company Kaspersky reveals an alarming trend observed in the pharmaceutical industry – a year-on-year steady increase on the number of devices being attacked by cybercriminals.

At the annual Kaspersky Cyber Security Weekend held in Yangon, Myanmar, in September 2019, Kaspersky’s researchers unveiled concerns pertaining to cyberthreats in the pharmaceutical and healthcare industry.

From 44 percent of machines infected in 2017 and a 1 percent increase in 2018, this year’s number of detected attempts shows that nearly every 5-in-10 devices inside a pharmaceutical facility are now being targeted globally.

Amongst the countries which logged the greatest number of attacks are Pakistan (54%), Egypt (53%), Mexico (47%), Indonesia (46%), and Spain (45%). Four more countries from the Asia Pacific region cap off the top 15 nations with the highest percent of devices infected. These include India, Bangladesh, Hong Kong, and Malaysia with more or less 4-in-10 machines with detected malicious attempts.

“While it is a known fact that money-hungry cybercriminals can easily earn by attacking banks, we also observe that these hackers as well as cyberespionage groups are slowly paying a lot of attention towards the industry of advanced medicine,” says Yury Namestnikov, Head of Global Research and Analysis Team (GReAT) for Russia at Kaspersky. “They are slowly realising that pharmaceutical companies house a treasure trove of highly valuable data such as the latest drugs and vaccines, the newest researches, as well as medical secrets. The rise of internet-connected operational technology (OT) inside these pharmaceuticals also contributes to the widening attack surface inside this sector.”

Among the Advanced Persistent Threat (APT) groups which have been waging sophisticated spying over pharmaceuticals globally include Cloud Atlas and APT10 also known as MenuPass.

“Based on our monitoring of several APT actors’ movements in the Asia Pacific and globally, we figured that these groups infect servers and exfiltrate data from pharmaceutical companies. Their attack techniques and behaviour also prove that these attackers’ apparent goal is to get their hands-on intellectual properties related to the latest medical formulas and research results as well as the business plans of their victims,” adds Namestnikov.

In his own research, Denis Makrushin, Security Architect at Ingram Micro, revealed the risks that come along with the steady migration of hospitals from paper-based data storage to electronic medical record (EMR) systems. Makrushin further notes that healthcare organisations, scrambling to digitise their data storage, see open source EMR web-portals as an easy and quick option, despite their known security challenges.

“We are seeing lesser printed or hand-written medical books inside hospitals and clinics worldwide with the advent of open source. Given their limited internal IT workforce, healthcare institutions opt to use convenient services such as OpenEMR, OpenMRS or similar web applications. This technology’s rapid adoption triggers the rise of the threats against this widely-used services,” says Makrushin,

OpenEMR and OpenMRS are open platforms for medical practice management. Any organisation can use this product for business without any restrictions. The source code of this product is also available for any developer. In addition, this software has certifications from trusted organisations (for example OpenEMR is ONC Complete Ambulatory HER certified).

To securely use this platform, Makrushin suggests healthcare facilities to conduct secure software development lifecycle, control the attack surface by periodically updating your software and remove unwanted applications. Finally, raise security awareness for everyone involved though conducting regular cybersecurity awareness training for all staff and patients.

Click here for the complete issue.

news Natural Extracts Innovated, Transformed and Diversely Laid Out to Embrace the Blue Ocean Market of Big Health
news The Proteona Oncology Challenge using ESCAPETM Single Cell Proteogenomic Analysis
news New computational fluid dynamics solution for modeling aerosol mixtures in biomedical and environmental research
news Medial Fair Thailand opened on 11th September 2019 with a focus on future-proofing Thailand's healthcare industry to meet the challenges and opportunities of the next decade
Asia Pacific Biotech News

APBN Editorial Calendar 2019
Taiwan Medical tourism
Marijuana as medicine — Legal marijuana will open up scientific research
Driven by curiosity
Career developments for researchers
What's cracking — Antibodies in ostrich eggs
Clinical trials — What's in a name?
Traditional Chinese medicine in modern healthcare — Integrating both worlds
Digitalization vs Digitization — Exploring Emerging Trends in Healthcare
Healthy Ageing — How Science is chipping in
Disruptive Urban Farming — Microbes, Plasmids, and Recycling
Evaluating cost effectiveness of genomic profiling
Editorial calendar is subjected to changes.
About Us
Available issues
Editorial Board
Letters to Editor
Instructions to Authors
Advertise with Us
World Scientific Publishing Co. Pte. Ltd.
5 Toh Tuck Link, Singapore 596224
Tel: 65-6466-5775
Fax: 65-6467-7667
» For Editorial Enquiries:
   biotech_edit@wspc.com or Ms Deborah Seah
» For Subscriptions, Advertisements &
   Media Partnerships Enquiries:
Copyright© 2019 World Scientific Publishing Co Pte Ltd  •  Privacy Policy