Insight and opinion from The National’s editorial leadership
September 04, 2024
Half a century ago, selling non-medical technology to hospitals was a tough job. In 1970, only 40 per cent of US hospitals had computer systems. Physicians often expressed a fear that computers were cumbersome and unreliable, doing more harm than good.
Yet the arguments for adoption were obvious enough. Back then, up to a third of the average American hospital bill was attributable to inefficient information handling, and the US public health agency complained as many as half of hospital chemistry tests were inaccurate because of “pencil and paper” errors like messy handwriting and shoddy arithmetic.
The digitalisation of the medical sector since then is one of the greatest advancements in health care of the past century; computer systems are a critical component of modern hospitals around the world.
But with new capabilities come new vulnerabilities. Hospitals, by way of their computer systems, have in recent years become the targets of crime. One common form, the ransomware attack, involves criminal gangs hacking into hospital records to steal private patient data and threatening to release it if they don’t receive payment. An investigation by The National published this week lays bare the activities of one such group based in Russia, known as Qilin.
Qilin has carried out dozens of ransomware attacks around the world in just the past two years. Many of the targets are in the healthcare sector.
Cyber security is an increasingly difficult task, and preventative cyber security is an almost Sisyphean one. Hacks and data breaches are becoming almost par for the course for any organisation with reputation and a computer – from utility companies in Serbia to banks in Bangladesh. If a system is upgraded, it is usually a matter of time before hackers find a workaround. The “internet of things” – the growing prevalence of everyday objects endowed with a WiFi signal – only raises the number of access routes for cyber criminals into our lives.
Data breaches are becoming almost par for the course for any organisation with reputation and a computer
Hospitals are a uniquely attractive target because the victims, sick patients, are especially vulnerable and their data especially intimate. And the consequences can go far beyond data protection; an attack on a pathology services firm in the UK in January led to cancer patients having their surgeries delayed. The ruthlessness of these kinds of attacks led one former FBI counter-terrorism leader to tell The National they should be classified as “a form of terrorism”.
Taking a national-security approach towards healthcare cyber attacks may be warranted. Hospitals and even many medical service providers could reasonably be considered part of a country’s critical infrastructure; when their operations are compromised, the impact can be wide-ranging and deadly. That means governments should be pro-active in protecting them and devote sufficient investment in their cyber security, with comparable priority to any other vital national asset.
But measures should be taken to make the private healthcare sector more resilient, too. Companies must foster a culture of patient care extending to patient data, and an understanding that powerful software is just as important as fancy hardware, even if donors and patients never see it. They must also include cyber-security staff in their payroll, if they haven’t already, and train medical staff in basic IT security awareness.
The UAE is a leading nation in implementing cyber-security controls, particularly with the Cyber Security Council setting up partnerships to enhance resilience across the healthcare sector. Abu Dhabi’s Department of Health implements an "Abu Dhabi Healthcare information and Cyber Security Standard" across all healthcare entities, with clear mandates.
Long gone are the days when healthcare professionals feared computers. It is right to ensure those days never return.
Khalid Essa, Ali Khaseif, Fahad Al Dhanhani, Adel Al Hosani, Bandar Al Ahbabi, Mohammad Barghash, Salem Rashid, Khalifa Al Hammadi, Shaheen Abdulrahman, Hassan Al Mahrami, Walid Abbas, Mahmoud Khamis, Yousef Jaber, Majed Sorour, Majed Hassan, Ali Salmeen, Abdullah Ramadan, Abdullah Al Naqbi, Khalil Al Hammadi, Fabio De Lima, Khalfan Mubarak, Tahnoon Al Zaabi, Ali Saleh, Caio Canedo, Ali Mabkhout, Sebastian Tagliabue, Zayed Al Ameri
Welterweight: Daniel Skibinski (POL) beat Acoidan Duque (ESP). Round 3 TKO
Lightweight: Martun Mezhlumyan (ARM) beat Attila Korkmaz (TUR). Unanimous decision
Bantamweight: Ray Borg (USA) beat Jesse Arnett (CAN). Unanimous decision
Timeline
2012-2015
The company offers payments/bribes to win key contracts in the Middle East
May 2017
The UK SFO officially opens investigation into Petrofac’s use of agents, corruption, and potential bribery to secure contracts
September 2021
Petrofac pleads guilty to seven counts of failing to prevent bribery under the UK Bribery Act
October 2021
Court fines Petrofac £77 million for bribery. Former executive receives a two-year suspended sentence
December 2024
Petrofac enters into comprehensive restructuring to strengthen the financial position of the group
May 2025
The High Court of England and Wales approves the company’s restructuring plan
July 2025
The Court of Appeal issues a judgment challenging parts of the restructuring plan
August 2025
Petrofac issues a business update to execute the restructuring and confirms it will appeal the Court of Appeal decision
October 2025
Petrofac loses a major TenneT offshore wind contract worth €13 billion. Holding company files for administration in the UK. Petrofac delisted from the London Stock Exchange
Be honest and transparent: It is always better to own up than be found out. Tell your partner everything they want to know. Show remorse. Inform them of the extent of the situation so they know what they are dealing with.
Work on yourself: Be honest with yourself and your partner and figure out why you did it. Don’t be ashamed to ask for professional help.
Give it time: Like any breach of trust, it requires time to rebuild. So be consistent, communicate often and be patient with your partner and yourself.
Discuss your financial situation regularly: Ensure your spouse is involved in financial matters and decisions. Your ability to consistently follow through with what you say you are going to do when it comes to money can make all the difference in your partner’s willingness to trust you again.
Work on a plan to resolve the problem together: If there is a lot of debt, for example, create a budget and financial plan together and ensure your partner is fully informed, involved and supported.
Carol Glynn, founder of Conscious Finance Coaching
UAE currency: the story behind the money in your pockets
