Responding to a cybersecurity incident


Containing the damage after a cyberattack

Using email in general practice
A cybersecurity incident is a malicious IT event that can involve an attempt to steal data, money or intellectual property; destroy data; or prevent computers or networks from operating.

Such an event can be devastating for a general practice. In addition to the very serious risk of compromising patient data and other sensitive information, it can lead to financial loss, reputational damage, possible legal liability, identity theft, and potential for loss of access to critical business systems.

Healthcare businesses are particularly vulnerable to cybersecurity incidents as they hold valuable data and can be seen as an easy target for cybercriminals.

The RACGP has created this fact sheet on responding to a cybersecurity incident to help GPs and practice staff in the aftermath of a cyberattack. It might also assist GPs and practice staff to prevent or prepare for an attack. This resource provides step-by-step information on what to do to limit the damage, resume clinical practice, and prevent future incidents.

Provided under licence

This resource is provided under licence by the RACGP. Full terms are available on the licence terms page.
In summary, you must not edit or adapt it or use it for any   commercial purposes.
You must also acknowledge the RACGP as the owner.


Related documents

Responding to a cybersecurity incident (PDF 610 KB)