Skip Navigation

A longtime leader in healthcare improvement, we’re developing new ways to revolutionize the industry.

We deliver transformative solutions that power real results. See how we can help.

Optimizing Supply Chain
Integrating Pharmacy
Maximizing Value-Based Care
Awards and Recognition

Transforming healthcare is more than our objective, it’s in our DNA. We’re dedicated to ensuring better health is just the beginning.


Guided by our values, our employees work every day to make meaningful differences in healthcare. At the core of what we do is our most valuable resource - our people. Learn more about us.

Board of Directors
Speakers Bureau

Premier is more than a GPO. Combining robust analytics with consulting and advocacy, we’re changing the healthcare landscape for the better.

Collective purchasing power lowers costs across your organization.

Intelligence plus unparalleled analytics equals data-driven solutions.

It’s only impossible until it’s not. Premier and our team of experts are transforming care delivery.

Work with Premier members to lower costs, improve quality and safety and succeed in value-based care.

A voice for better healthcare policy is a voice for you.

Working closely with our members, we’re developing products and services to solve your most complex challenges.

Lower costs, greater efficiencies and a healthier bottom line.

Proven practices that result in better outcomes.

Intersecting specialty drugs with better management and data-driven best practices.

Controlling your future with integrated care delivery practices.

More savings and ROI is a win-win.

Data diving to deliver insights you can act on.

Supporting healthcare transformation through the generation of real-world evidence.

Working closely with our members, we're developing products and services to solve your most complex challenges.

Discover what leading healthcare providers are achieving through Premier membership.

Stay informed with our white papers, webinars and e-books.

Browse our blog for a taste of what’s new and what’s next in healthcare.

Premier’s perspectives have been solicited by nationally renowned publications. Read on.

Read Premier’s latest announcements.

Catch our policy statements and perspectives on the latest in DC.

Compelling stories from the front lines of America’s health systems.

The proactive, predictive and behind-the-scenes insights you need to stay ahead in healthcare delivered monthly to your inbox.

How to Defend Against Cyber Scams During COVID-19

Hackers are taking advantage of the coronavirus uncertainty to spread malware and execute ransomware attacks. They wasted no time hitting the U.S. Health and Human Services Department earlier this week. While these attacks are directed at consumers, the government and businesses alike, healthcare providers need to be extra vigilant, given sensitive data and information our systems house.

Ransomware attacks are highly impactful and require little sophistication to execute. Because of the devastating effect a cyber scam can have on a healthcare provider – jeopardizing the security of provider and patient data and operating systems – these scams continue to be one of the most effective ways for cyber criminals to make quick money.

These actions mirror the uptick we’re seeing in gray market activity and offers to hawk counterfeit supplies around COVID-19. Like with the gray market, with vigilance and communication about how to avoid these schemes, providers can protect themselves.

Here are three ways providers can defend against cyber scams and ransomware.

1. Education and awareness

Education and awareness of ransomware attacks that leverage COVID-19 is the top priority. Both the Federal Trade Commission and the Cyber Security and Infrastructure Security Agency have issued alerts detailing how cyber criminals are using tactics, primary phishing, related to COVID-19 to spread ransomware.

Providers should educate employees to exercise caution with any communications they receive, particularly emails regarding COVID-19, so they are extra vigilant about coronavirus-related schemes. The more people who are aware of these schemes and risks, the more secure the organization will be.

Top pieces of information to communicate include:

  • These schemes typically start as a phishing email claiming to be from the World Health Organization, the Centers for Disease Control and Prevention, or other government agencies requesting the recipient to open or download a document related to COVID-19 that turns out to contain a virus. See real examples of these phishing emails here.
  • Recipients should be cautious of all COVID-19 emails that appear to come from government agencies. Criminals will often attempt to elicit emotional reactions in the phishing email by trying to create a false sense of urgency and fear. Check for spelling errors and other suspicious language in COVID-19 emails, and be extra vigilant with emails that request the recipient to download attachments, open documents, register for webinars or click on unfamiliar links.
  • Mobile applications related to COVID-19 have also been found to have malware and viruses. Staff should be careful when downloading mobile apps related to COVID-19 (example: maps of COVID-19 outbreaks) and only download apps from official, trusted stores.
2. Planning for cyber security risks within COVID-19 business continuity and disaster recovery plans

While it’s easy for IT to be overshadowed by patient surges and supply sourcing, as hospitals stand up incident command structures, it’s smart to account for cyber security risks as well. This may include having IT personnel join the incident command team or provide daily updates to leaders about the integrity of their technology systems and any purported issues.

For further protection, some providers are also looking at non-traditional ways to share the risk of ransomware through expanded cyber security insurance.

3. Strong security hygiene

Like handwashing and flossing, it’s a good idea to build in strong security practices into everyday efforts so that systems are fortified before, after and during a crisis. This includes a good back-up strategy, such as ensuring critical systems and data are backed-up to a secure location that is disconnected from the enterprise network; email security; multi-factor authentication; and malware protection. IT professionals should regularly train for potential cyber risks and develop crisis plans so they have clear action plans, such as pre-drafted messages to send leaders and the workforce, if cyber security is compromised.

As providers concentrate on efforts to care for an influx of patients and manage operations, cybercriminals continue to lurk on the boundaries of their businesses. Exercising caution with any communications regarding COVID-19 is an essential element to enhance providers’ ability to maintain operations and patient care during this time.

Learn More

During COVID-19, Premier continues to act as a trusted connection point for healthcare providers, suppliers and the government. We are working 24/7 to address challenges as they occur and help our alliance of more than 4,000 hospitals and health systems and 175,000 non-acute providers access the supplies they need to serve their communities. We are also partnering with the Administration and private sector to create both short-term and long-term solutions, and sharing our insights to help inform the public understanding.

Access our COVID-19 resources and tools.

Login Register Change Registration