Risks, Limitations and the Need for Additional Measures Against Ransomware in the Health Information Technology Infrastructure

Even before the Covid 19 pandemic, one of the lucrative targets for attackers behind ransomware attacks was Encroaching on the continuity of services in the field of health information technology. In this study, for the first time, while introducing, relying on statistics and modeling, it is shown that the prevention and counteraction of these attacks in the IT infrastructure of the healthcare sector are doubly essential compared to other areas and have a negative reciprocal effect so that this area requires different measures and actions.

First, based on reviewing the statistics obtained from the rescue services in the country's field of countering ransomware attacks, the resulting economic parameters are mapped on the existing models in the issue area. Then, by applying the data obtained from the rescue services against ransomware attacks in the native environment of health information technology, in the created model, an estimate of the interaction of risks is presented.

Economic-statistical analysis of quantitative results from modeling, methodological statistical-economic estimation, and data analysis indicate that the risks of ransomware in healthcare infrastructure can have fundamental differences and interactions with those in other areas of information technology application.

With the arguments and results presented in this study, it is possible to prove the need for different measures and tactics in the field of health information technology and indicate the need for investment and new prioritization for precautions and protective measures in this field.