Healthcare DIVE October 27, 2022
The cyberattack comes three years after the health system’s potentially vulnerable megamerger, security experts say.
As CommonSpirit Health, formed by the merger of Dignity Health and Catholic Health Initiatives in 2019, continues to deal with the fallout from a ransomware attack three weeks ago, security experts say such tie-ups and acquistions make healthcare systems more vulnerable to security breaches.
M&A in healthcare “creates a huge risk” and a “huge opportunity for ransomware,” said Israel Barak, chief information security officer at Cybereason, a firm that helps companies defend against attacks.
Healthcare deals create a higher risk event for a cybersecurity attack because systems typically have a weaker supply chain, Barak added.
Systems like CommonSpirit rely on a vast network of providers....