Cybersecurity Monitoring/Mapping of USA Healthcare (All Hospitals) - Magnified Vulnerability due to Shared IT Infrastructure, Market Concentration, & Geographical Distribution

William Yurcik; Andreas Schick; Stephen North; Michael T. Gastner; Fabio Roberto De Miranda; Rodolfo da Silva Avelino; Andre Filipe de Moraes Batista; Gregory Pluta; Ian Brooks

doi:10.1145/3689942.3694754

Cybersecurity Monitoring/Mapping of USA Healthcare (All Hospitals) - Magnified Vulnerability due to Shared IT Infrastructure, Market Concentration, & Geographical Distribution

William Yurcik, Andreas Schick, Stephen North, Michael T. Gastner, Fabio Roberto De Miranda, Rodolfo da Silva Avelino, Andre Filipe de Moraes Batista, Gregory Pluta, Ian Brooks

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Abstract

In October 2024, there are two defining characteristics of a healthcare provider: (1) geographic location and services available at their physical structure and (2) Internet connectivity and services available via their virtual presence. For previous centuries we focused on the first defining characteristic and now we need to shift to understand and address issues that may arise from the new second defining characteristic. In this paper we address issues related to Internet connectivity and virtual presence of USA healthcare providers, especially hospitals, when ransomware cyberattacks resulting in service outages occur. We show the cybersecurity posture of a large critical national infrastructure (USA healthcare) can be measured, mapped, and quantitatively baselined. Empirical results reveal systemic issues in USA healthcare presenting "magnified vulnerabilities"in that a single exploit can have an outsized impact on an entire nationwide infrastructure. As the initial step toward addressing this issue, we document for the first time the magnified cybersecurity vulnerability of USA healthcare to shared IT infrastructure, market concentration, and the geographical distribution of hospitals.

Original language	English (US)
Title of host publication	HealthSec 2024 - Proceedings of the 2024 Workshop on Cybersecurity in Healthcare, Co-Located with
Subtitle of host publication	CCS 2024
Publisher	Association for Computing Machinery
Pages	45-52
Number of pages	8
ISBN (Electronic)	9798400712388
DOIs	https://doi.org/10.1145/3689942.3694754
State	Published - Nov 21 2024
Event	2024 Workshop on Cybersecurity in Healthcare, HealthSec 2024 - Salt Lake City, United States Duration: Oct 14 2024 → Oct 18 2024

Publication series

Name	HealthSec 2024 - Proceedings of the 2024 Workshop on Cybersecurity in Healthcare, Co-Located with: CCS 2024

Conference

Conference	2024 Workshop on Cybersecurity in Healthcare, HealthSec 2024
Country/Territory	United States
City	Salt Lake City
Period	10/14/24 → 10/18/24

Keywords

cybersecurity ratings
hospital cybersecurity
ransomware

ASJC Scopus subject areas

Safety, Risk, Reliability and Quality
Computer Networks and Communications
General Medicine

Online availability

10.1145/3689942.3694754

Library availability

Discover UIUC Full Text

Cite this

Yurcik, W., Schick, A., North, S., Gastner, M. T., De Miranda, F. R., Avelino, R. D. S., Batista, A. F. D. M., Pluta, G., & Brooks, I. (2024). Cybersecurity Monitoring/Mapping of USA Healthcare (All Hospitals) - Magnified Vulnerability due to Shared IT Infrastructure, Market Concentration, & Geographical Distribution. In HealthSec 2024 - Proceedings of the 2024 Workshop on Cybersecurity in Healthcare, Co-Located with: CCS 2024 (pp. 45-52). (HealthSec 2024 - Proceedings of the 2024 Workshop on Cybersecurity in Healthcare, Co-Located with: CCS 2024). Association for Computing Machinery. https://doi.org/10.1145/3689942.3694754

Cybersecurity Monitoring/Mapping of USA Healthcare (All Hospitals) - Magnified Vulnerability due to Shared IT Infrastructure, Market Concentration, & Geographical Distribution. / Yurcik, William; Schick, Andreas; North, Stephen et al.
HealthSec 2024 - Proceedings of the 2024 Workshop on Cybersecurity in Healthcare, Co-Located with: CCS 2024. Association for Computing Machinery, 2024. p. 45-52 (HealthSec 2024 - Proceedings of the 2024 Workshop on Cybersecurity in Healthcare, Co-Located with: CCS 2024).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Yurcik, W, Schick, A, North, S, Gastner, MT, De Miranda, FR, Avelino, RDS, Batista, AFDM, Pluta, G & Brooks, I 2024, Cybersecurity Monitoring/Mapping of USA Healthcare (All Hospitals) - Magnified Vulnerability due to Shared IT Infrastructure, Market Concentration, & Geographical Distribution. in HealthSec 2024 - Proceedings of the 2024 Workshop on Cybersecurity in Healthcare, Co-Located with: CCS 2024. HealthSec 2024 - Proceedings of the 2024 Workshop on Cybersecurity in Healthcare, Co-Located with: CCS 2024, Association for Computing Machinery, pp. 45-52, 2024 Workshop on Cybersecurity in Healthcare, HealthSec 2024, Salt Lake City, United States, 10/14/24. https://doi.org/10.1145/3689942.3694754

Yurcik W, Schick A, North S, Gastner MT, De Miranda FR, Avelino RDS et al. Cybersecurity Monitoring/Mapping of USA Healthcare (All Hospitals) - Magnified Vulnerability due to Shared IT Infrastructure, Market Concentration, & Geographical Distribution. In HealthSec 2024 - Proceedings of the 2024 Workshop on Cybersecurity in Healthcare, Co-Located with: CCS 2024. Association for Computing Machinery. 2024. p. 45-52. (HealthSec 2024 - Proceedings of the 2024 Workshop on Cybersecurity in Healthcare, Co-Located with: CCS 2024). Epub 2024 Nov 21. doi: 10.1145/3689942.3694754

Yurcik, William ; Schick, Andreas ; North, Stephen et al. / Cybersecurity Monitoring/Mapping of USA Healthcare (All Hospitals) - Magnified Vulnerability due to Shared IT Infrastructure, Market Concentration, & Geographical Distribution. HealthSec 2024 - Proceedings of the 2024 Workshop on Cybersecurity in Healthcare, Co-Located with: CCS 2024. Association for Computing Machinery, 2024. pp. 45-52 (HealthSec 2024 - Proceedings of the 2024 Workshop on Cybersecurity in Healthcare, Co-Located with: CCS 2024).

@inproceedings{f0b5699523c44462ba9c90b77048eb2a,

title = "Cybersecurity Monitoring/Mapping of USA Healthcare (All Hospitals) - Magnified Vulnerability due to Shared IT Infrastructure, Market Concentration, & Geographical Distribution",

abstract = "In October 2024, there are two defining characteristics of a healthcare provider: (1) geographic location and services available at their physical structure and (2) Internet connectivity and services available via their virtual presence. For previous centuries we focused on the first defining characteristic and now we need to shift to understand and address issues that may arise from the new second defining characteristic. In this paper we address issues related to Internet connectivity and virtual presence of USA healthcare providers, especially hospitals, when ransomware cyberattacks resulting in service outages occur. We show the cybersecurity posture of a large critical national infrastructure (USA healthcare) can be measured, mapped, and quantitatively baselined. Empirical results reveal systemic issues in USA healthcare presenting {"}magnified vulnerabilities{"}in that a single exploit can have an outsized impact on an entire nationwide infrastructure. As the initial step toward addressing this issue, we document for the first time the magnified cybersecurity vulnerability of USA healthcare to shared IT infrastructure, market concentration, and the geographical distribution of hospitals.",

keywords = "cybersecurity ratings, hospital cybersecurity, ransomware",

author = "William Yurcik and Andreas Schick and Stephen North and Gastner, {Michael T.} and {De Miranda}, {Fabio Roberto} and Avelino, {Rodolfo da Silva} and Batista, {Andre Filipe de Moraes} and Gregory Pluta and Ian Brooks",

note = "This research was enabled through a cooperative agreement between the University of Illinois at Urbana-Champaign and BitSight. BitSight provided no financial support to this research. Cybersecurity ratings for hospitals presented in this research were processed by BitSight engineers led by Rhonda O Kane and supported by Tadd Hopkins, Tim Jackson, Tom Linehan, and Will Ricardi. Geocoding was provided by GeoCoder.ca who provided public service access to their geography mapping scripts. Geocode provided no financial support to this research. Coauthor MTG is supported by the Ministry of Education, Singapore, under its Academic Research Fund Tier 2 (EP2) programme (Award No. MOE-T2EP20221-0007).; 2024 Workshop on Cybersecurity in Healthcare, HealthSec 2024 ; Conference date: 14-10-2024 Through 18-10-2024",

year = "2024",

month = nov,

day = "21",

doi = "10.1145/3689942.3694754",

language = "English (US)",

series = "HealthSec 2024 - Proceedings of the 2024 Workshop on Cybersecurity in Healthcare, Co-Located with: CCS 2024",

publisher = "Association for Computing Machinery",

pages = "45--52",

booktitle = "HealthSec 2024 - Proceedings of the 2024 Workshop on Cybersecurity in Healthcare, Co-Located with",

address = "United States",

}

TY - GEN

T1 - Cybersecurity Monitoring/Mapping of USA Healthcare (All Hospitals) - Magnified Vulnerability due to Shared IT Infrastructure, Market Concentration, & Geographical Distribution

AU - Yurcik, William

AU - Schick, Andreas

AU - North, Stephen

AU - Gastner, Michael T.

AU - De Miranda, Fabio Roberto

AU - Avelino, Rodolfo da Silva

AU - Batista, Andre Filipe de Moraes

AU - Pluta, Gregory

AU - Brooks, Ian

N1 - This research was enabled through a cooperative agreement between the University of Illinois at Urbana-Champaign and BitSight. BitSight provided no financial support to this research. Cybersecurity ratings for hospitals presented in this research were processed by BitSight engineers led by Rhonda O Kane and supported by Tadd Hopkins, Tim Jackson, Tom Linehan, and Will Ricardi. Geocoding was provided by GeoCoder.ca who provided public service access to their geography mapping scripts. Geocode provided no financial support to this research. Coauthor MTG is supported by the Ministry of Education, Singapore, under its Academic Research Fund Tier 2 (EP2) programme (Award No. MOE-T2EP20221-0007).

PY - 2024/11/21

Y1 - 2024/11/21

N2 - In October 2024, there are two defining characteristics of a healthcare provider: (1) geographic location and services available at their physical structure and (2) Internet connectivity and services available via their virtual presence. For previous centuries we focused on the first defining characteristic and now we need to shift to understand and address issues that may arise from the new second defining characteristic. In this paper we address issues related to Internet connectivity and virtual presence of USA healthcare providers, especially hospitals, when ransomware cyberattacks resulting in service outages occur. We show the cybersecurity posture of a large critical national infrastructure (USA healthcare) can be measured, mapped, and quantitatively baselined. Empirical results reveal systemic issues in USA healthcare presenting "magnified vulnerabilities"in that a single exploit can have an outsized impact on an entire nationwide infrastructure. As the initial step toward addressing this issue, we document for the first time the magnified cybersecurity vulnerability of USA healthcare to shared IT infrastructure, market concentration, and the geographical distribution of hospitals.

AB - In October 2024, there are two defining characteristics of a healthcare provider: (1) geographic location and services available at their physical structure and (2) Internet connectivity and services available via their virtual presence. For previous centuries we focused on the first defining characteristic and now we need to shift to understand and address issues that may arise from the new second defining characteristic. In this paper we address issues related to Internet connectivity and virtual presence of USA healthcare providers, especially hospitals, when ransomware cyberattacks resulting in service outages occur. We show the cybersecurity posture of a large critical national infrastructure (USA healthcare) can be measured, mapped, and quantitatively baselined. Empirical results reveal systemic issues in USA healthcare presenting "magnified vulnerabilities"in that a single exploit can have an outsized impact on an entire nationwide infrastructure. As the initial step toward addressing this issue, we document for the first time the magnified cybersecurity vulnerability of USA healthcare to shared IT infrastructure, market concentration, and the geographical distribution of hospitals.

KW - cybersecurity ratings

KW - hospital cybersecurity

KW - ransomware

UR - http://www.scopus.com/inward/record.url?scp=85215125103&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=85215125103&partnerID=8YFLogxK

U2 - 10.1145/3689942.3694754

DO - 10.1145/3689942.3694754

M3 - Conference contribution

AN - SCOPUS:85215125103

T3 - HealthSec 2024 - Proceedings of the 2024 Workshop on Cybersecurity in Healthcare, Co-Located with: CCS 2024

SP - 45

EP - 52

BT - HealthSec 2024 - Proceedings of the 2024 Workshop on Cybersecurity in Healthcare, Co-Located with

PB - Association for Computing Machinery

T2 - 2024 Workshop on Cybersecurity in Healthcare, HealthSec 2024

Y2 - 14 October 2024 through 18 October 2024

ER -

Cybersecurity Monitoring/Mapping of USA Healthcare (All Hospitals) - Magnified Vulnerability due to Shared IT Infrastructure, Market Concentration, & Geographical Distribution

Abstract

Publication series

Conference

Keywords

ASJC Scopus subject areas

Online availability

Library availability

Related links

Fingerprint

Cite this