Bonjour, new guests from small-town India
Puneet Dhawan of Accor is brimming with ideas on ways to revive the hospitality sector
hacker phishing scam during coronavirus pandemic cyber security concept - thomaguery
A month ago, almost to the date, Dr Reddy’s Laboratories detected a cyber attack and isolated all data centre services. Soon enough, Lupin too reported an “information security incident”. The two incidents, barely a fortnight apart, had industry watchers question if it was merely an eerie coincidence or was there a concerted effort against the Indian pharmaceutical industry?
Indian drug makers have been playing a key role during the Covid-19 pandemic, from supplying hydroxychloroquine (when it was much sought after) to working on Covid-19 vaccine candidates. DRL, for instance, has an alliance on the Russian Sputnik V vaccine.
Not too long ago, cyber attacks were reported on US research facilities that worked on Covid vaccines. Adding to the intrigue, a joint cyber-security advisory from US authorities, including the Federal Bureau of Investigation (FBI), late October, cautioned of “an increased and imminent cyber crime threat to US hospitals and healthcare providers.”
Given the heightened global alert, Indian drugmakers are playing their cards close to the chest when it comes to protecting themselves from online miscreants, who range from random troublemakers to serious criminals in search of data. Initial information suggests that one of the drug-company attacks came from the East European region.
“Even talking about it could attract those in search of a challenge,” a pharma industry representative explains. Companies have been engaging consultants and training employees in “online hygiene”, especially during the pandemic when digital services have increased and many work from home, leaving online networks with unsecured entry points.
Hackers are a step ahead and they need to get it right just once, laments a top executive with a drug major.
The increasing cyber threats seem to be an attack on the Indian pharma industry in the light of the pandemic, says Srinivasan HR, Vice-Chairman and Managing Director with TAKE Solutions. “With each year, cyber attacks are becoming more sophisticated and businesses are becoming more vulnerable. The key here is to stay vigilant and informed, to take precautions and advise employees on the do’s and don’ts when it comes to operating or downloading resources from the internet,” he says.
Citing IBM’s Cost of a Data Breach 2020 report, he says the average cost of a data breach in healthcare is $7.3 million. “Healthcare industry incurs the highest average data breach cost. It is 84 per cent higher than the global average. Even though this figure varies across geographies, the average cost of a data breach in healthcare has been the most expensive for over a decade. This year was a 10 per cent increase over 2019.”
On the US warnings, he says pharma companies should assess existing security policies, infrastructure, and fix vulnerabilities. Continuous investment in keeping data secure and a comprehensive cyber security strategy are critical.
Incidents of hackers trying to breach firewalls of healthcare companies have increased “because of the sensitive and valuable data collected by pharmaceutical companies — patient information, proprietary information about patented drugs, technological advancements, etc. Losing control over such data can have adverse effect and erode patient and consumer trust,” he points out.
It is a “cat-and-mouse game”, so a multi-pronged strategy is needed to avoid and limit the damage that such threat actors can create, says Sreeji Gopinathan, Lupin Chief Information Officer.
“There has to be a constant vigil of internal and external indications of compromise and attack. This assessment should lead to strategies like perimeter monitoring for in/out traffic, lateral movement within internal systems, end-point detection and response management for vulnerabilities, segregation and micro segmentation of networks to protect critical operations and assets, threat intelligence including behaviour analysis … effective back-up protocols, etc,” he explains.
In the event of a breach, there should be “a robust mechanism to contain the spread and recover safely as quickly as possible to minimise business disruption and data loss.”
Clearly documented back-up plans should be activated and an emergency response team should be in place to keep critical operations running. Data recovery from offline back-ups should be along defined priorities in the recovery plan. And, importantly, adequate cyber insurance would help mitigate any financial impact to a great extent, he says.
Across industry, Covid accelerated digital plans, says Sujay Shetty, PwC’s Health Industries Leader. A plan for five years later has been advanced, sensitive data is stored virtually (on Cloud); connectivity has increased (via Internet of Things); automation links shop floors, labs, etc.
Srinivasan observes that hackers usually pick high-value targets for attacks. “The chain is only as strong as its weakest link, so every segment needs to be secured and there cannot be a bias when it comes to security,” he cautions, on the threat that lurks within the digital ecosystem.
Puneet Dhawan of Accor is brimming with ideas on ways to revive the hospitality sector
Citroen’s first vehicle sports a novel design and European interiors. It is also meant to be as comfortable as ...
The pandemic is only the tip of the iceberg that the country’s cash-poor airlines — both regional and national ...
The government is yet to specify the framework of its recently announced old vehicle scrappage policy
Here is a checklist that equips you to discern the market nuances
Sensex, Nifty 50 have witnessed sharp decline
The fund has consistently outperformed S&P BSE 100 TRI over one, three and five years
Returns are superior to immediate annuity plans, but SCSS can secure better rates for new investors sooner if ...
With the public looking beyond mainstream media for reports from the ground, independent digital platforms are ...
While Supreme Court has cleared the way for women seeking longer tenures and senior roles in the Indian Army, ...
Mughal Gardens in the Capital open to visitors — albeit with Covid-19 protocol — for the annual Udyanotsav
Salty, buttery, cheese coated or with maple syrup and bacon — popcorn is lending its adaptable self to gourmet ...
Its name is the starting point of a brand’s journey and can make a big difference in the success sweepstakes
Sober spirits are the in thing
A peek into where ad spends went last year and where they are headed tomorrow
Can Swiggy Instamart disrupt the ecommerce groceries space, currently ruled by the Amazons and Big Baskets? ...
Three years after its inception, compliance with GST procedures remains a headache for exporters, job workers ...
Corporate social responsibility (CSR) initiatives of companies are altering the prospects for wooden toys of ...
Aequs Aerospace to create space for large-scale manufacture of toys at Koppal
And it has every reason to smile. Covid-19 has triggered a consumer shift towards branded products as ...
Please Email the Editor