Privacy & Security Tips
August, 2025
Cyberattacks Are on the Rise: Are You Prepared?
Healthcare professionals rely on an increasing array of new digital health tools, and every year, cybersecurity threats become more frequent and sophisticated. In 2025, no clinic is too small to be a target.
Smaller clinics can be attractive targets because attackers know they may have a more limited IT infrastructure, including fewer cybersecurity safeguards. Last year, one third of privacy incidents reported to the Information and Privacy Commissioner came from the healthcare sector. These incidents came in many forms, from ransomware attacks to email phishing campaigns. More recently, the U.S. Cybersecurity and Infrastructure Security Agency and the FBI issued a joint alert highlighting malware group Interlock's targeting of critical infrastructure, which appears focussed in on the healthcare sector. Several high-profile U.S. specialty medical clinics have already subject to such attacks, with Interlock often asking for a ransom or extracting data to sell on the dark web.
The legal and regulatory obligations of physicians in an increasingly complex digital health environment will be a critical topic at this year's OntarioMD Digital Health Conference. On Thursday September 18, I will host "Emerging Medico-legal and Privacy Issues: Ask a Lawyer, Regulator and Futurist". We will tackle your questions, including those related to artificial intelligence. Cybersecurity will be featured on Friday, September 19 at "Cybersecurity Check-Up 2025 Edition: Strategies to Keep Your Practice Secure". A physician leader, regulator and vendor will provide practical, actionable advice on how to defend your practice. You'll learn how to spot red flags like phishing scams, recognize everyday habits and policies which can present risks, and identify vulnerabilities in clinic workflows. This year's panel will feature Dr. Sharon Domb of Sunnybrook Health Sciences, John Solomos, CEO of BlueBird IT Solutions, and Andrew Drummond from the Office of the Information and Privacy Commissioner of Ontario. Please join me in both these valuable sessions and bring your questions. Conference registration is now open - I look forward to speaking with you!
Read additional guidance from the College of Physicians and Surgeons of Ontario on the use of AI scribes in clinical practice.