Homepage Excite Cyber newsroom
Register as BUSINESS Register as PR AGENCY Register as JOURNALIST

Excite Cyber provides essential tips to medical specialists to bolster their cybersecurity defences following leaking of patient data on the dark web

Announcement posted by Excite Cyber 30 Jun 2025

Louise recommends the following eight essential steps for all medical specialists, GPs and smaller practices: 

  

1.     Audit personally identifiable information  

It's important to know where your patients' personally identifiable sensitive information is stored and how well it's protected. Doing a risk check such as a penetration test, can help find any weak spots in your system before problems happen. Security checks provide insights on where you might be vulnerable and identify steps you can take to better protect your data.  

  

2.     Use strong, unique passphrases 
Combine upper and lowercase letters, numbers, and symbols. Avoid reusing passwords across systems. 

  

3.     Enable Multi-Factor Authentication (MFA) 
Add a second layer of protection, such as an app or SMS code, to all logins, especially email and patient management systems. 

  

4.     Back up critical data regularly 
Store backups in a secure, offsite or cloud location, and test recovery procedures. 

  

5.     Train all staff in cybersecurity awareness 
Regularly educate staff on phishing, suspicious links, and social engineering tactics. 

  

6.     Update software and systems 
Ensure operating systems, antivirus software, and medical practice platforms are kept current with the latest security patches. 

  

Limit access to sensitive data 
Only give access to patient data to staff who need it and use role-based permissions. 

  

8.     Undertake regular security reviews  

Regular security reviews are key to keep your information safe, build trust with your patients, and make sure your business runs smoothly. 

  

Louise also stresses that hospitals should work proactively with all third-party specialists to uplift their security posture. "It's also important to remember that while you can outsource the storage and operations of the IT systems used to support your practice, you can't outsource responsibility for protecting the data," she says. 

 

 

 

 


Kathryn Goater 
Co-founder, Co-CEO & PR Director
Media-Wize

kathryn@media-wize.com
+61 414 726 958
Website: media-wize.com