Microsoft and Google have announced initiatives to offer free or discounted cybersecurity services to rural hospitals across the United States, aiming to reduce their vulnerability to cyberattacks that have disrupted patient care and threatened lives, according to a joint statement from the White House and the tech companies on Monday.
In a statement to CNN, Microsoft revealed plans to provide eligible rural hospitals with free security updates, as well as security assessments and staff training. Google will offer free cybersecurity advice and launch a pilot program to tailor its cybersecurity services to the specific needs of rural hospitals.
The nation's approximately 1,800 rural community hospitals are particularly susceptible to ransomware attacks due to their limited IT security resources and lack of cybersecurity-trained staff. These hospitals often serve as the only healthcare facility within a wide radius, so a ransomware attack that halts their operations can endanger patients' lives.
This initiative follows private discussions between tech firms and the White House National Security Council, which has been increasingly concerned about cyber threats to hospitals. By leveraging the widespread use of Microsoft and Google's software in hospitals across the country, the effort aims to strengthen the healthcare sector's defenses.
Anne Neuberger, the top cyber official at the White House National Security Council, highlighted the urgency of addressing this threat: "We’re in new territory as we see this wave of attacks against hospitals."
The Biden administration is also working on establishing minimum cybersecurity requirements for US hospitals. Although the details are not yet finalized, the American Hospital Association has expressed opposition, arguing that the proposal could penalize victims of cyberattacks.
Rising Ransomware Attacks
Ransomware attacks on the US healthcare sector surged by 128% in 2023 compared to 2022, as reported by the Office of the Director of National Intelligence. Recent incidents underscore the sector's vulnerabilities. In February, a ransomware attack on a major health insurance billing firm disrupted billions of dollars in healthcare payments, pushing some clinics to the brink of bankruptcy. UnitedHealth Group paid a $22 million ransom to recover patient data, affecting one third of Americans.
In May, a ransomware attack on one of America's largest hospital chains forced nurses to manually enter prescription information, jeopardizing patient safety.
The FBI and international allies have targeted ransomware gangs, seizing their computers and decrypting victim files. However, ransomware remains lucrative, partly because many perpetrators operate with impunity from Russia. Hospitals, desperate to restore services, often pay ransoms, perpetuating the cycle of attacks.
"We see a more permissive environment in Russia for hacktivists and criminals, which is concerning," Neuberger said. "More companies paying ransoms only fuels further attacks."
Cyberattacks continue to disrupt other essential services. The City of Cleveland is investigating a cyber incident that led to the closure of City Hall on Monday and Tuesday as a precaution. While internal systems and software are shut down, emergency services, including 911, police, fire department, ambulances, and the Department of Public Utilities, remain operational but with limited IT capabilities.
"Over the weekend, the city identified some abnormalities," said Commissioner Kimberly Roy-Wilson of the Division of Information Technology Services. "We have initiated our containment protocols and are now investigating the nature and scope of these abnormalities."
Mayor Justin Bibb did not disclose the agencies involved in the investigation.