PHARMACY owners and staff are being urged to take steps to bolster their cyber security processes in the wake of Optus's recent data breach.
Fred IT Group Service Delivery General Manager, Andrew McManus, told Pharmacy Daily that the breach was "a timely reminder for all pharmacies of the importance of protecting your data".
McManus said that cyber criminals were moving towards stealing data as well as encrypting local devices, meaning "basic cyber protections and a good backup are not enough".
"The risk is real and the impact can be devastating to your customers and your business," he said.
"Cyber criminals look for easy access and know many small businesses have underinvested in cyber security.
"Pharmacies are being targeted and we are seeing pharmacies hit by cyber-attacks on a consistent basis."
McManus noted that pharmacies are subject to the Notifiable Data Breach Scheme, which requires mandatory reporting of breaches to the Office of the Australian Information Commissioner, and that failure to comply could result in "significant fines".
He said that pharmacy owners should invest in staff training to ensure they understand the risks of data breaches, and how to identify phishing emails and know what ransomware is.
McManus urged pharmacy teams to implement clear IT processes regarding which PC can be used to check emails or browsing the internet, stressing such activities should not happen on computers used to record dispensing and point-of-sale data, and recommended that protocols for dealing with a breach should be established.
He added that pharmacies need to ensure they have multiple layers of protection including anti-virus software, a firewall, and 24/7 real-time monitoring and response support.
Meanwhile, a total of 36,900 Medicare numbers have been compromised by the Optus data breach - 14,900 of which have not expired.
McManus warned that these Medicare numbers could be used by people looking to fraudulently acquire medications and information.
Pharmacies impacted by the data breach can access support directly from Optus or the Australian Cyber Security Centre.
The above article was sent to subscribers in Pharmacy Daily's issue from 07 Oct 22
To see the full newsletter, see the embedded issue below or CLICK HERE to download Pharmacy Daily from 07 Oct 22