{"id":205789,"date":"2022-11-28T01:30:45","date_gmt":"2022-11-27T20:00:45","guid":{"rendered":"https:\/\/arunachaltimes.in\/?p=205789"},"modified":"2022-11-28T01:30:45","modified_gmt":"2022-11-27T20:00:45","slug":"aiimsinfo-breach-is-risky","status":"publish","type":"post","link":"https:\/\/arunachaltimes.in\/index.php\/2022\/11\/28\/aiimsinfo-breach-is-risky\/","title":{"rendered":"Aiimsinfo breach is risky"},"content":{"rendered":"

\nIndian Health Data Worth $7 b<\/strong><\/h3>\n

By Shivaji Sarkar<\/strong><\/p>\n

Health data is critical. Had one secret been known, the Indian subcontinent may have had different political contours.
\nIn 1947, Mohd Ali Jinnah\u2019s health conditions were in wraps giving no clue to Congress leaders that his days were numbered. Had there been the slightest inkling, the Indian subcontinental history perhaps could have been different. But did the British rulers know about it? Is that the reason that the Radcliffe Commission drew the lines of Partition in five-week haste without visiting those areas?These are difficult questions, but everyone has secretly admired the way the crucial information on Jinnah remained in shrouds. The healthcare information rarely may have had such immense political and economic significance.
\nThe incident is being recalled, as for days the significantAll India Institute of Medical Sciences (AIIMS), Delhi, web portal server isinoperational,since November 23 morning, supposedly because of suspected ransomware. The AIIMS has switched over to manual procedures and sought the assistance of Indian Computer Emergency Response Team or CERT-IN, the nodal emergency agency of the Ministry of Electronics and IT.
\nThe AIIMS data breach may be graver than it appears. It may be recalled that how a global collaborative investigative project revealed that Israeli company NSO Group\u2019s Pegasus spyware targeted over\u00a0300 mobile phone numbers in India, including that of two serving ministers in the NDA government, three opposition leaders, one constitutional authority, several journalists and businesspersons.
\nNo less worrisome were the Cambridge Analytica, which had allegedly stolen the data of 50 million Facebook users in 2014, claimed that the Congress party was the firm\u2019s client in India. Some other apps despite pious intentions were blamed for compromising data.
\nThe latest move for a data protection law needs to have a wider ambit. Almost all apps on the social media, corporate or public seek unnecessarily access to contacts, camera and location. These must be stopped.The Competition Commission of India (CCI) on October 25 imposed a fine of Rs 936.44 crore on Google for\u00a0anti-competitive practices in its Play Store policies.
\nThe Indian healthcare data is stated to be worth $7 billion in the world market. It is just not about profiling a population but information of some key persons itself may be worth more than that. The global healthcare information market size is valued at $359.8 billion in 2021 and is expected to expand at a compound annual growth rate (CAGR) of 13.2 percent till 2030.
\nThe risk is far greater than it can be fathomed particularly in the light of government using the coronavirus pandemic to push its plan to digitise the health records and data of 1.3 billion people, despite concerns about privacy, increased surveillance, technology and human rights. It can be utilised in many ways, including for blackmailing, seeking ransoms or political mapping. The storing of individual information in Aadhar and linking it to several instruments like income tax data, ballot system and banking are fraught with great risks to the nation and individual citizens.
\nAccording to a report published in The Lancet journal, in 2016, global expenditure on health is anticipated to increase to $18.3 trillion by 2040 across the globe. So would data worth multiply.
\nHackers\u2019 access to private patient data not only opens the door for them to steal the information, but also to either intentionally or unintentionally alter the data, which could lead to serious effects on patient health and outcomes.
\nIf this at all happens to AIIMS or any health data, it can lead to severe flaws in the line of treatment. The Ayushman Bharat itself has enormous records along with ESI Hospitals. The move to have a centralised healthcare data needs rethinking.
\nAIIMS attackmay have many dimensions. It presumably has sensitive medical data that can be attacked, copiedand altered.On May 14, 2016, AIIMS, Raipur also similarly suffered an attack by a Pakistani hacker, Amir Muzaffar. The homepage of the institute was damaged, and the hacker left messages of bravado.
\nThat data on the net is not safe, was exposed by Indian\u00a0hackers claiming to have accessed more than 80,000 coronavirus patients\u2019 healthcare records that were insecurely stored on government servers in June 2020. The group, calling itself Kerala Cyber Warriors,\u00a0announced\u00a0that it had gained access to the Delhi State Mission website \u201cin less than 10 minutes\u201d. Its members claim to have accessed sensitive data including patients\u2019 names, addresses, phone numbers,\u00a0Covid19\u00a0test results, and passport details. In the US itself, in 2019, 41.4 million patient records were hacked.
\nAt the initial peak of the Covid19, Indian healthcare industry registered 7 million cases of cyber-attacks. With a 300 percent surge in such attacks in India, it is necessary to place intrinsic security at the heart of digital strategies.The stolen health records may sell up to 10 times or more than stolen credit card numbers on the dark web. The cost to correct a breach in healthcare is almost three times that of other industries \u2014 averaging $408 per stolen health care record versus $148 per stolen non-health record, says IBM and Ponemon Institute report.
\nIn May 2017, patient outcomes were threatened when Britain\u2019s National Health Service was hit as part of the \u201cWannaCry\u201d ransomware attack on computer systems in 150 countries, resulting in ambulances being diverted and surgeries being cancelled. Similar ambulance diversions due to ransomwarehappened in the U.S. In September 2020, a key Indian political person\u2019s account was hacked, as per Twitter.
\nThe US experts say that with proper planning and investment, it\u2019s possible to mitigate this risk. The NIC and AIIMS must do it. The government must protect the information delinking it from Aadhar, PAN and other instruments.
\nHealth care organisations are particularly vulnerable and targeted by cyberattacks because they possess so much information of high monetary and intelligence value to cyber thieves and even the targeted key persons. The targeted data includes patients\u2019 protected health information (PHI), financial information like credit card and bank account numbers, personally identifying information (PII) such as social security numbers, and intellectual property related to medical research and innovation. One reason of the vulnerability is the easy access to the sites for diagnostic and treatment facilities. The gateways for users need separation.The AIIMS or any healthcare breach is perilous,and the nation needs to be extremely cautious on centralised data prospecting. \u2014 INFA<\/p>\n","protected":false},"excerpt":{"rendered":"

Indian Health Data Worth $7 b By Shivaji Sarkar Health data is critical. Had one secret been known, the Indian subcontinent may have had different political contours. In 1947, Mohd Ali Jinnah\u2019s health conditions were in wraps giving no clue to Congress leaders that his days were numbered. Had there been the slightest inkling, the […]<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[16],"tags":[],"class_list":{"0":"post-205789","1":"post","2":"type-post","3":"status-publish","4":"format-standard","6":"category-features"},"_links":{"self":[{"href":"https:\/\/arunachaltimes.in\/index.php\/wp-json\/wp\/v2\/posts\/205789","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/arunachaltimes.in\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/arunachaltimes.in\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/arunachaltimes.in\/index.php\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/arunachaltimes.in\/index.php\/wp-json\/wp\/v2\/comments?post=205789"}],"version-history":[{"count":0,"href":"https:\/\/arunachaltimes.in\/index.php\/wp-json\/wp\/v2\/posts\/205789\/revisions"}],"wp:attachment":[{"href":"https:\/\/arunachaltimes.in\/index.php\/wp-json\/wp\/v2\/media?parent=205789"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/arunachaltimes.in\/index.php\/wp-json\/wp\/v2\/categories?post=205789"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/arunachaltimes.in\/index.php\/wp-json\/wp\/v2\/tags?post=205789"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}