No More Worries!

image Our orders are delivered strictly on time without delay

Paper Formatting

  • Double or single-spaced
  • 1-inch margin
  • 12 Font Arial or Times New Roman
  • 300 words per page

No Lateness!

image Our orders are delivered strictly on time without delay

Our Guarantees

image

  • Free Unlimited revisions
  • Guaranteed Privacy
  • Money Return guarantee
  • Plagiarism Free Writing

Cyberattack on Universal Health Services, Inc., 2020

Ransomware is a type of malware from crypto virology that threatens to publish the victim’s data or perpetually block access to it unless a ransom is paid. While some simple ransomware may lock the system so that it is not difficult for a knowledgeable person to reverse, more advanced malware uses a technique called crypto viral extortion. It encrypts the victim’s files, making them inaccessible, and demands a ransom payment to decrypt. Ransomware attacks are typically carried out using a Trojan disguised as a legitimate file that the user is tricked into downloading or opening when it arrives as an email attachment. International law enforcement authorities during the height of the pandemic warned that hospitals and health-care facilities in multiple countries were being targeted in ransomware attacks.

Often a ransomware attack is the first phase of a multistage extortion attempt from cyber criminals. Criminals routinely demand millions of dollars to unlock the encrypted systems, and then follow that up by threatening to publish stolen data on the internet if they are not paid a second time.

On September 28, 2020, until October 7, 2020, Universal Health Services, which runs more than 400 healthcare facilities in the United States and the United Kingdom, has more than 90,000 employees and cares for about 3.5 million patients each year, had its IT network hit by a ransomware attack which left a number of its hospitals in the United States without access to computer and phone systems, including facilities in California, Florida, Texas, Arizona and Washington, D.C.

The ransomware attack managed to disable multiple antivirus programs in place on the targeted systems. Once the antivirus software was disabled, the malware caused the computers to log out and shut down, and if administrators attempted to reboot these systems, they simply shut down again. With their systems shut down, clinicians were unable to access vital information, including data found in their Electronic Health Record (EHR) or picture archiving and communication system (PACS) system.

In a MEMO format please discuss the following about the Universal Health Services (UHS) Ransomware attack of September, 2020:
Questions:

  1. What went well with the response?

  2. What were the significant challenges with the response?

  3. In which ways could the response have been improved?

  4. As the Chief Operating Officer (COO) at one of the (UHS) healthcare facilities in the United States or Territories (Universal Health Services, Locations; pick one), how would you augment your healthcare facility’s preparation and response to protect and mitigate against future cyberattacks?

  5. Fayol’s Five Functions of Management: (a) Planning, (b) organizing, (c) coordinating, (d) commanding, and (e) controlling. Discuss ways in which you would use all five functions of Fayol’s Five Functions of Management, would influence the development of your plan.
    Copy textView less

find the cost of your paper

Sample Answer

 

 

To: Chief Operating Officer, Universal Health Services (UHS) healthcare facility in the United States or Territories

From: [Your Name]

Date: August 4, 2023

Subject: Universal Health Services Ransomware Attack of September, 2020

What went well with the response?

Despite the severity of the ransomware attack, there were a few things that went well with the UHS response:

  • UHS had a disaster recovery plan in place. The plan was activated quickly and efficiently, which helped to minimize the disruption to patient care.
  • UHS communicated regularly with its employees and patients. The company provided updates on the situation and offered support to those who were affected.
  • UHS worked closely with law enforcement and cybersecurity experts. This helped to investigate the attack and contain the damage.

What were the significant challenges with the response?

Full Answer Section

 

 

There were also a few significant challenges with the UHS response:

  • The ransomware attack was very sophisticated. The attackers were able to disable multiple antivirus programs and encrypt a large number of files.
  • The attack had a significant impact on patient care. Some hospitals were unable to access electronic health records and other critical systems.
  • The attack was costly. UHS paid a ransom of $11.7 million to the attackers.

In which ways could the response have been improved?

There are a few ways that the UHS response could have been improved:

  • UHS could have invested more in cybersecurity. The company could have implemented additional security measures, such as multi-factor authentication and stronger encryption.
  • UHS could have had a more robust backup and recovery plan. The plan could have included regular backups of critical data and more testing of the disaster recovery process.
  • UHS could have communicated more openly with the public. The company could have provided more information about the attack and its impact on patients.

How to augment your healthcare facility’s preparation and response to protect and mitigate against future cyberattacks:

As the COO of a UHS healthcare facility in the United States or Territories, there are a number of things you can do to augment your facility’s preparation and response to future cyberattacks:

  • Conduct a cybersecurity risk assessment. This will help you to identify your facility’s most vulnerable systems and data.
  • Implement a cybersecurity risk management program. This program should include a variety of measures, such as security awareness training for employees, technical security controls, and incident response procedures.
  • Invest in security solutions that are specifically designed for the healthcare industry. These solutions can help to protect your facility from the latest cyber threats.
  • Test your incident response plan regularly. This will help you to ensure that your plan is effective and that your employees know what to do in the event of a cyberattack.
  • Have a plan for communicating with employees, patients, and the public in the event of a cyberattack. This plan should include a process for providing updates on the situation and offering support to those who are affected.

In addition to the above, you can also consider the following:

  • Implement a zero-trust security model. This model assumes that no user or device can be trusted by default and verifies all access requests before granting access.
  • Use micro-segmentation to isolate critical systems and data. This will make it more difficult for attackers to move laterally through your network if they do breach your security.
  • Use artificial intelligence and machine learning to detect and respond to cyberattacks. These technologies can help you to identify and respond to attacks more quickly and effectively.

By taking these steps, you can help to protect your healthcare facility from cyberattacks and mitigate the impact of any attacks that do occur.

 

This question has been answered.

Get Answer

[ordersys_quote]

Satisfaction Guaranteed

image

  • Research Paper Writing
  • Essay Writing
  • Dissertation Writing
  • Thesis Writing

Why Choose Us

image

  • Money Return guarantee
  • Guaranteed Privacy
  • Written by Professionals
  • Paper Written from Scratch
  • Timely Deliveries
  • Free Amendments