Health Care Data in Norway

According to reports, medical information is worth between 10 and 40 times more than your credit card number on the black market because unlike credit cards,

your medical data(surgeries, ailments, terminal illness) cannot be changed. 

Healthcare-related data is of great interest for malicious actors and nation-states due to its sensitivity and ability to influence public opinion.

The stolenhealth care data can further be used for carrying out a variety of crimes mostly leveraging details specific to terminal illness or diseases and medical identity theft.

On 8 January 2018, one of the biggest cyberattacks of its kind was carried out againstthe largest health authority in Norway,

 Helse Sør-Øst RHF [Health South East RHA],which serves over half of the Norwegian population

GDPR implements data protection principles that incorporate appropriate organizational measures to protect personal data. 

For example, using pseudonymization or full anonymization where appropriate.

One of the common methods of phishing is by replacing the letter 'o' with '0'. However, a lot of people still fall victim to this scam. If you notice similar things, you should report them to the authority right away.

Aker hospital was paralyzed by a virus attack in 2011 where they had to isolate the entire computer system from the outer world for quite some hours.

Though no patient data were compromised, the doctors and patient couldn’t access their test results and x-rays until the virus was completely removed from the system.

Spear phishing is the act of sending highly personalized emails pretending to be the trusted sender. 

One simple example of spear phishing can be that the “from” part of an email is often spoofed to make it look like it’s from a known entity or from a domain that looks

similar to yours or your trusted partners. For example, the letter “o” might be replaced with the number “0,” or the letter “w” might be changed to “ш” from the Russian alphabet