WITH the fallout from the MediSecure data breach still unfolding, pharmacies remain prime targets for cyberattacks, warned Fred IT, the leading IT and cybersecurity solutions provider for the pharmacy industry.
Fred IT's General Manager for Service Delivery, Andrew McManus, told Pharmacy Daily that the company has noted an increase in potential incidents over the past two weeks.
"Fred IT, via its MedView Protect, typically stops a priority one event, such as a cyber-criminal gaining access to pharmacy data, every three to four weeks," McManus said.
"However, recently, we've seen an uptick, with eight priority one events in the space of two weeks."
McManus explained that Australian pharmacies are primarily falling victim to phishing attacks, usually through emails, and by clicking on malicious links on dubious websites.
These actions often result in ransomware, keyloggers, or stolen credentials on computers.
Additionally, unsecured remote access tools, such as simple passwords or the lack of multi-factor authentication, leave pharmacies vulnerable.
"Hackers have tools that scan the internet for insecure remote access," McManus warned.
"Pharmacists need to be aware that credentials can be stolen from third-party providers, especially if the same credentials are used across multiple accounts."
McManus advised several essential steps for pharmacies to enhance their cybersecurity: use complex passwords and multi-factor authentication; never reuse or share passwords; keep software patched and up to date; avoid clicking on links unless certain they are legitimate, even on familiar websites; and refrain from using Remote Desktop Protocol due to its high vulnerability.
Additionally, McManus recommended that the PC housing pharmacy data should be a stand-alone machine, not used for dispensing, sales, emails, or internet activities.
Staff should receive cybersecurity training, with an internal team member designated to monitor and enforce these measures.
"If you are unaware of an attack, you cannot respond to it," McManus emphasised.
"You wouldn't allow a thief free reign in your home or pharmacy, so don't allow them free reign with your data." JG
The above article was sent to subscribers in Pharmacy Daily's issue from 23 Jul 24
To see the full newsletter, see the embedded issue below or CLICK HERE to download Pharmacy Daily from 23 Jul 24
