Sep 13, 2024
ADA comments on proposed Medicare payment policies for dental services in 2025
The ADA also responded to CMS’ request for feedback on dental care for patients with diabetes
Sep 13, 2024
The ADA also responded to CMS’ request for feedback on dental care for patients with diabetes
Sep 13, 2024
ADA says federal law should not override all of a states’ authority to regulate dental insurers
Sep 11, 2024
ADA continues to advocate for delay
Sep 11, 2024
Virtual hearing to take place Oct. 10
Sep 11, 2024
Pediatric dentist is agency’s first chief dental officer
Sep 10, 2024
Session will highlight top programs, including SmileCon courses
Sep 10, 2024
Next meeting to take place in early 2025
Sep 10, 2024
House of Delegates will vote Oct. 22
Sep 10, 2024
ADA continues to advocate for delay
Sep 4, 2024
Pennsylvania, Illinois pass virtual credit card, prior authorization bills
Sep 3, 2024
Brett Kessler, D.D.S., to become 161st president of ADA
Sep 3, 2024
Article is latest addition in Oral Science Trends series
Aug 30, 2024
Effort aims to improve heart health screenings, referrals in dental offices
Aug 29, 2024
There’s still time to register for Oct. 17-19 meeting
Aug 29, 2024
New HHS rules modify protections for LGBTQ+, disabled patients
Aug 28, 2024
Stem cell cover illustration also earns recognition
Aug 27, 2024
ADA reaffirms support for community water fluoridation
Aug 27, 2024
The standard specifies requirements and test methods
Aug 26, 2024
Ban will likely not go into effect Sept. 4
Aug 21, 2024
Coalition says proposal would ‘undermine’ NIDCR’s mission
Over the past two years of practice disruption due to the pandemic, dentists have become attuned to navigating new challenges and balancing complex risks. However, there are some issues that blindside even the most seasoned practice owners. Imagine coming in ready to start the day, booting up your computer to check the schedule and then … nothing. There’s just a blank screen, or worse yet, a message stating that your system has been locked and a demand for a payment to gain access. When a ransomware attack hits, your practice comes to a screeching halt. A compromised system can mean no access to schedules, billing or patient records.
Cybercriminals have been leveraging practice disruptions to launch ransomware attacks in skyrocketing numbers. Dentists must proactively protect their practice systems, be prepared for the eventuality of receiving a demand and follow sound steps to recover from an attack.
In just one case handled by The Dentists Insurance Company, the total costs to conduct a forensic IT investigation, get systems back online and cover lost business neared $100,000. When the dentist could not access his files, it soon became clear that the system had been hacked and the practice was a victim of ransomware. As patient data was stored in the cloud, the dentist didn’t believe that there had been a data breach but was still paralyzed from doing business because his systems and files were locked.
By the time a forensic IT firm was engaged to regain access to the system, get it back up and running again and unlock the data, the dentist had already paid a $25,000 ransom demand. The insurance claim reflected more than $70,000 in costs due to the amount of time the practice operations were down plus the expertise needed to investigate and reconcile the records and data.
In cases like this, recovering data and reimbursement for the associated financial loss is crucial to practice sustainability. But the investigation into how the system was accessed can be priceless in helping to support and train the practice team in mitigating future crises. In today’s high-risk climate, everyone on the team should understand the potential implications of clicking on an attachment from an untrusted source or opening a malicious email.
Prevention
The dedicated analysts who answer The Dentists Insurance Company’s Risk Management Advice Line field calls from association members across the 15 states TDIC serves, helping them to navigate practice challenges — everything from patient care to documentation to employment to property. These experts have also developed tools that TDIC policyholders can access at any time by logging into their accounts online through the company’s newly enhanced website.
Resources to support cyber incident prevention include:
These tools, in addition to guidance from your IT professional, can help you train your staff on recognizing and mitigating cyber risks.
Protection
A proactive approach also means having the right type and amount of insurance coverage in place. To keep pace with today’s evolving risks, owners — regardless of practice size — need insurance that goes beyond data breach. Look for a policy that is built to help you respond to and recover from a broad range of cyber incidents.
TDIC Business Owner’s policyholders can apply to add Cyber Suite Liability coverage at any time. If you don’t yet have cyber insurance or are unsure about your coverage, request a free policy review to compare your options and determine the solution that best fits your practice needs. Don’t wait until a ransomware attack to realize what your policy does or doesn’t cover.
Response
With ransomware attacks on the rise, even well-prepared and well-protected practices will still be targeted. If you do experience an incident, it can be difficult to maintain the presence of mind to respond in a way that mitigates further risk.
While every incident is different, these six steps are sound guidance to support you:
Following a response plan and sharing accurate information with your insurer are both crucial to your recovery and initiating the claim process. Know that you’re not alone when faced with a cyberattack or ransomware demand. TDIC recognizes the stress and disruption that is created when these cyber events occur and has created resources to assist with implementing a proactive approach for your practice. Stay informed of cybercrime trends and reach out to the experts at your professional insurance company for guidance on setting up prevention plans to lessen the risks of future incidents.