Click here to

Session: Contingency Planning: Can You Handle a Ransomware Attack? [Return to Session]

Contingency Planning: Can You Handle a Ransomware Attack?

T Ma1*, R Siochi2*, J Donaghue3*, R Siochi4*, (1) Virginia Commonwealth University, Richmond, VA, (2) West Virginia University, Morgantown, WV, (3) Cleveland Clinc Fairview, Rocky River, OH, (4) West Virginia University, Morgantown, WV


TH-AB-BRB-0 (Thursday, 7/14/2022) 7:30 AM - 9:30 AM [Eastern Time (GMT-4)]

Ballroom B

With the increase of ransomware attacks on health systems, parts of the treatment infrastructure may become unavailable. It is important to have a business continuity plan to treat the patients safely and effectively. This plan should include iterative backups of data, means of contacting patients and how to get the treatment data to the treatment machine.

In this session, we will review the major cybersecurity threats and their impact on clinical operations. While different threats have different effects on our ability to treat, they all must be assessed as part of a business continuity plan to reduce clinical downtime. We will discuss the general concepts involved in designing a business continuity plan. Building on these concepts, examples of such plans will be given for two scenarios: (1) An all-Varian environment with Aria, Eclipse, Truebeam and C-Series linacs, and (2) A mixed environment where the linacs and radiation oncology information systems come from different vendors.

Learning Objectives:
1. Understand the nature of various cybersecurity threats, with a focus on ransomware
2. Learn general principles of Business Continuity
3. Understand why it is important to have iterative backups, and verify their use ahead of time
4. How to handle different situations which can interrupt the workflow in getting patients treated safely and effectively.



Computer Software


IM/TH- Informatics: Informatics in Therapy (general)

Contact Email