Case study:
Emergency Services

Building critical inhouse cyber security awareness capabilities to proactively defend highly-sensitive healthcare data from targeted attacks.

Case Study 04

CASE 04
EMERGENCY SERVICES

Business Challenge
  • A major WA healthcare services provider recognised its staff and data as prime targets for cyber criminals due to their direct access to sensitive customer health records and operational medical systems.
  • Phishing was identified as a common yet real concern, particularly as security risk wasn’t a widely-understood concept across the organisation.
  • There was a general misconception among the workforce on the value of the organisation’s health record data and low awareness levels of the increasingly sophisticated methods used by malicious threat actors.
Solution
Leveraging PROTECT+ Security Awareness:
  • Consultants developed a tailored interactive security awareness demonstration to succinctly explain the potential and likely threats faced by the organisation and its employees.
  • The training program involved a two-part live hacking simulation, first demonstrating how hackers use social media to craft spear-phishing attacks, followed by a sophisticated malware delivery attack using usernames and passwords obtained from a victim’s computer.
  • A presentation then detailed the common and known threat actors, their motivations, and the techniques and tactics employed in malicious attacks.
Business Challenge
  • A major WA healthcare services provider recognised its staff and data as prime targets for cyber criminals due to their direct access to sensitive customer health records and operational medical systems.
  • Phishing was identified as a common yet real concern, particularly as security risk wasn’t a widely-understood concept across the organisation.
  • There was a general misconception among the workforce on the value of the organisation’s health record data and low awareness levels of the increasingly sophisticated methods used by malicious threat actors.
Solution
Leveraging PROTECT+ Security Awareness:
  • Consultants developed a tailored interactive security awareness demonstration to succinctly explain the potential and likely threats faced by the organisation and its employees.
  • The training program involved a two-part live hacking simulation, first demonstrating how hackers use social media to craft spear-phishing attacks, followed by a sophisticated malware delivery attack using usernames and passwords obtained from a victim’s computer.
  • A presentation then detailed the common and known threat actors, their motivations, and the techniques and tactics employed in malicious attacks.

EMERGENCY
SERVICES
KEY OUTCOMES

Unanimous appreciation of threats posed by posting information on social media.

Attendees reported improved security awareness and commitment to consider opening attachments or links from unknown senders.

Employees were interested in further education sessions on other kinds of cyber threats.

Key Fact 1

Healthcare remains one of the most targeted sectors by cyber criminals.

Key Fact 2

The cost of healthcare cybercrime is double that of other high-profile target industries.

Key Fact 3

Long-term harm associated with healthcare record breaches is greater than any other kind of data.

"So many facts about people trying to hack constantly….a sage reminder how we need to be vigilant. I need to review my LinkedIn connections and be more critical in terms of who I accept invitations from. Thanks again"
Learning and Development Advisor
St John Ambluance

Become a
PROTECT+ Partner

Call Now

Click or Tap

Email Now

Click or Tap

Speak with a
PROTECT+ Expert

Call Now

Click or Tap

Email Now

Click or Tap