Usman Choudhary, General Manager, VIPRE Security Group

乌斯曼·乔杜里，总经理，VIPRE安全集团

Healthcare organizations remain prime targets for cybercriminals, with email-based attacks evolving in complexity and scale. As cybercriminals become more sophisticated, leveraging artificial intelligence and advanced deception tactics, health systems, insurers, and their vendors must beat back these threats to safeguard patient data, ensure data security compliance, and maintain operational integrity..

医疗保健组织仍然是网络犯罪分子的主要目标，基于电子邮件的攻击在复杂性和规模上不断演变。随着网络犯罪分子变得更加狡猾，利用人工智能和先进的欺骗手段，卫生系统、保险公司及其供应商必须击退这些威胁，以保护患者数据、确保数据安全合规性并维护运营完整性。

Perhaps the most alarming trend we face now, in healthcare and other vital sectors, is the persistence of business email compromise (BEC) as a dominant attack vector. Cybercriminals have refined their impersonation techniques, with 88% of these attacks relying on executive and CEO spoofing to trick employees into transferring funds or revealing sensitive data.

或许我们现在在医疗保健和其他重要领域面临的最令人担忧的趋势是，商业电子邮件入侵（BEC）作为一种主要攻击手段的持续存在。网络犯罪分子已经改进了他们的伪装技术，其中88%的攻击依赖于高管和首席执行官伪装来欺骗员工转移资金或泄露敏感数据。

Since healthcare organizations frequently deal with confidential patient information, financial transactions, and regulatory compliance, these attacks pose a significant risk to the industry. .

由于医疗保健组织经常处理患者的机密信息、金融交易和法规遵从性，这些攻击对行业构成了重大风险。

Fraudulent emails, appearing as legitimate requests from high-ranking executives, exploit the trust of healthcare staff, leading to substantial financial losses and data breaches.

欺诈性电子邮件伪装成来自高层管理人员的合法请求，利用了医疗保健工作人员的信任，导致了巨大的财务损失和数据泄露。

Additionally, the use of artificial intelligence in phishing attacks has surged. Cybercriminals are now deploying AI-generated phishing schemes that leverage synthetic media, including images, voice recordings, and video deep fakes, to manipulate employees into revealing login credentials or granting unauthorized access. .

此外，人工智能在钓鱼攻击中的使用激增。网络犯罪分子现在正在部署利用合成媒体（包括图像、录音和视频深度伪造）的AI生成的钓鱼方案，以操纵员工泄露登录凭据或授予未经授权的访问权限。

The ability of AI to convincingly replicate the voices and appearances of trusted figures makes these scams harder to detect, increasing the likelihood of successful breaches. As AI technology advances, healthcare organizations must adopt sophisticated email security solutions to counter these emerging threats..

人工智能令人信服地复制可信任人物的声音和外貌的能力，使得这些骗局更难以被察觉，从而增加了成功入侵的可能性。随着人工智能技术的进步，医疗保健组织必须采用复杂精细的电子邮件安全解决方案，以应对这些新兴威胁。

Infostealers advancing threats against health systems

信息窃贼加剧对健康系统的威胁

The rise of infostealers further exacerbates the threat landscape. Malicious software such as Stealc and AgentTesla is increasingly used to infiltrate healthcare networks and extract patient records, financial data, and other sensitive information. These stealthy malware programs operate undetected, harvesting data from infected systems and transmitting it back to attackers. .

信息窃取程序的兴起进一步加剧了威胁形势。Stealc 和 AgentTesla 等恶意软件越来越多地被用于渗透医疗网络，提取患者记录、财务数据和其他敏感信息。这些隐秘的恶意软件程序在感染的系统中未被检测到的情况下运行，从受感染系统中收集数据并将其传回攻击者。

With the growing reliance on digital patient records and cloud-based healthcare solutions, the stakes for securing information have never been higher.

随着对数字患者记录和基于云的医疗保健解决方案的依赖日益增加，保护信息安全的赌注从未如此之高。

Another emerging concern is the increasing prevalence of QR code-based phishing attacks. A recent spike in QR code-related phishing attempts signals that cybercriminals are adapting their strategies to bypass traditional security filters. Healthcare employees, who often scan QR codes to access patient information, vendor portals, or regulatory documentation, may unknowingly fall victim to these deceptive tactics.

另一个日益引起关注的问题是基于二维码的网络钓鱼攻击的日益普遍。最近，与二维码相关的网络钓鱼尝试急剧增加，这表明网络犯罪分子正在调整策略以绕过传统的安全过滤器。医疗保健行业的员工经常扫描二维码来访问患者信息、供应商门户或监管文件，可能会在不知不觉中成为这些欺骗手段的受害者。

Attackers embed malicious URLs within QR codes, redirecting unsuspecting users to fraudulent websites designed to capture login credentials and deploy malware..

攻击者在二维码中嵌入恶意网址，将毫无戒心的用户重定向到旨在窃取登录凭据并部署恶意软件的欺诈网站。

Healthcare’s vast network of providers, insurers, and third-party vendors makes it a lucrative target for email-based fraud and ransomware infections. The industry’s interconnected nature increases the potential for widespread breaches, compounding the impact of a single compromised email account.

医疗保健行业庞大的供应商、保险公司和第三方供应商网络使其成为基于电子邮件的欺诈和勒索软件感染的有利目标。该行业的互联性增加了大规模违规的可能性，单个被攻破的电子邮件账户就可能引发影响的倍增。

Cybercriminals exploit this complexity, targeting weak points within the supply chain to gain entry into broader healthcare networks. To combat these evolving threats, healthcare organizations must prioritize a multi-layered approach to email security. Implementing advanced email security solutions capable of detecting AI-generated threats, deepfake content, and sophisticated phishing attempts is crucial. .

网络犯罪分子利用这种复杂性，瞄准供应链中的薄弱环节，以进入更广泛的医疗网络。为了应对这些不断演变的威胁，医疗机构必须优先采用多层次的电子邮件安全方法。部署能够检测人工智能生成的威胁、深度伪造内容和复杂网络钓鱼尝试的高级电子邮件安全解决方案至关重要。

Additionally, continuous employee cybersecurity training is essential in building a culture of awareness and vigilance. Staff must be educated on recognizing fraudulent emails, verifying the authenticity of executive requests, and exercising caution when scanning QR codes or clicking on links from unknown sources..

此外，持续的员工网络安全培训对于建立一种意识和警惕的文化至关重要。必须教育员工识别欺诈性电子邮件、验证高管请求的真实性，并在扫描二维码或点击来自未知来源的链接时保持谨慎。

As email security threats become more automated and difficult to detect, proactive defense strategies will be the key to protecting healthcare organizations in 2025. By leveraging advanced threat detection technologies and fostering a strong cybersecurity culture, healthcare leaders can mitigate risks and ensure the safety of patient data and critical business operations. .

随着电子邮件安全威胁变得越来越自动化且难以检测，主动防御策略将成为2025年保护医疗组织的关键。通过利用先进的威胁检测技术和培养强大的网络安全文化，医疗领军人物可以降低风险，确保患者数据和关键业务运营的安全。

The evolving email threat landscape underscores the urgency for health systems to stay ahead of cybercriminals and implement robust security measures to navigate the challenges of the digital age.

不断演变的电子邮件威胁形势凸显了卫生系统保持领先于网络犯罪分子并实施强有力的安全措施以应对数字时代挑战的紧迫性。

About Usman Choudhary

关于乌斯曼·乔杜里

As the general manager for

作为总经理

VIPRE Security Group

VIPRE安全集团

, Usman Choudhary is responsible for executing the company’s product vision and strategy for advanced threat defense solutions. With contributions to several patented innovations in the early stages of the security space, he was instrumental in influencing the evolution of mission-critical cyber defense programs for the U.S.

，乌斯曼·乔杜里负责执行公司的高级威胁防御解决方案的产品愿景和战略。他在安全领域的早期阶段对多项专利创新做出了贡献，对美国关键任务的网络防御计划的演变起到了重要作用。

Navy (PROMETHEUS) and other government agencies, as well as security programs at Microsoft and other large enterprises..

海军（普罗米修斯）和其他政府机构，以及微软和其他大型企业的安全项目。