Cyber Security

Why Cyber Security matters

The health sector has become a prime target for cyberattacks, with a significant increase in threat activity and compromised systems.

Everyone working in healthcare organisations, whether large or small, public or private, must remain vigilant to potential cybersecurity threats and know how to respond effectively.

Cybercriminals look for vulnerabilities in an organisation’s people, processes, or technology. When exploited, these weaknesses can lead to a cyberattack, which may result in:

• Loss or theft of sensitive information or intellectual property

• Inaccessibility of critical business systems

• Major disruptions to service delivery and day-to-day operations

• Risks to patients, clients, and colleagues

• Reputational damage

• Loss of trust from customers and stakeholders

• Financial penalties if negligence is determined

Cybersecurity is not solely the responsibility of the IT department. Every individual plays a role in protecting both personal and organisational information.

Steps your organisation can take to protect against Cyber Attacks

There are several key actions your healthcare organisation can take to prevent and reduce the impact of cyber threats:

• Keep software up to date – Regularly install updates and patches. Do not allow unapproved or unverified software to be installed on your networks. For more information: Update your devices | Cyber.gov.au

• Use strong passphrases – Create complex, unique passphrases for each account and system. For more information: Set secure passphrases | Cyber.gov.au

• Enable multi-factor authentication (MFA) – Add an extra layer of security to your systems and accounts. For more information: Turn on multi-factor authentication | Cyber.gov.au

• Back up data regularly – Maintain secure, offline backups of critical information to minimise data loss. For more information: Set up and perform regular backups | Cyber.gov.au

• Avoid phishing scams – Never respond to suspicious emails, texts, or phone calls. If confidential information such as usernames or passwords is accidentally shared, change the password immediately. For more information: Phishing | Cyber.gov.au

• Stay informed – Subscribe to the Australian Digital Health Agency’s Digital Health Cyber Security Alerts (at: Digital Health Cyber Security Alerts) to receive timely updates and advice.

If you fall victim to ransomware, contact the Australian Cyber Security Centre’s 24/7 hotline on 1300 CYBER1 (1300 292 371) immediately.

For more information:

Cyber security by the Australian Digital Health Agency - Cyber security for healthcare providers

Information Security by the Australian Digital Health Agency - Security Behaviours: Encouraging everyone to be aware of information security

Cyber security eLearning courses by the Australian Digital Health Agency - training.digitalhealth.gov.au | DigitalHealth