Report Examines Top Healthcare Data Security Threats

Report Examines Top Healthcare Data Security Threats

Protected Harbor, a full-service IT solution and consulting firm, just announced the launch of its latest whitepaper on healthcare cybersecurity. The whitepaper, entitled “2021 Healthcare Data Breach Trend Report” offers readers an insight into evolving healthcare data breach patterns, predictive threats for 2022, and a playbook on how to increase IT durability to stop future healthcare data attacks.

“Due to the financial value of patient health information, electronic health records stored in healthcare organizations are a major target for cybercriminals,” said Richard Luna, CEO of Protected Harbor. “Attacks and exploits are evolving every day, becoming more sophisticated and carrying more devastating payloads. Protections must be implemented at every layer of a system.”

The healthcare data breach report, conducted by Protected Harbor, included statistics from 686 security breaches of 500 or more healthcare records; as reported by HHS’ Office for Civil Rights (OCR). 74% of all healthcare data breaches are from hacking and IT incidents, attributed to understaffed healthcare IT departments, legacy technologies not configured properly for new medical technology, and a lack of interoperability standards. This problem is costing companies around $9.23M per data breach, as reported by IBM.

The Threats
As the industry continues to evolve and respond to the data growth from increased usage of medical devices and technologies, more vulnerabilities are discovered. The “2021 Healthcare Data Breach Trend Report,” by Protected Harbor, has identified the following top healthcare data security threat issues heading into 2022:

IoT connected medical devices
mHealth & Telehealth technologies
The Cures Act & remote patient access
Understaffed & underfunded IT departments
Lack of employee security training

The Solutions Improving healthcare cybersecurity and network architecture will harden healthcare infrastructure, increase application durability, decrease overall costs, and increase public trust. The report also identified the following data protection suggestions for Healthcare IT departments:

Fast healthcare Interoperability resource standards
Multi-factor authentication
Mobile device security strategy
Isolated and validated backups
Integration of managed service teams

“Digitalization has drastically increased the amount of data and how the healthcare industry does business. But the original network architectural designs were not meant to handle this size of a workload,” continued Luna. “Teams need to do more regular penetration tests, malware tests, backup validation, disaster recovery drills, improve monitoring, run compliance scans, and keep to a maintenance schedule. It is not easy to keep track of so many moving parts that have been integrated since Covid-19. That is why so many HCIT departments are teaming up with managed service firms.”

The Numbers Additional findings from the 2021 Healthcare Data Breach Trend Report, include network server attacks accounting for 53% of all incidents in 2021, followed by email attacks at 27%. 21% of breaches can be attributed to unauthorized access, such as granting too much-privileged access to third parties. Hacking and IT incidents targeting outpatient and specialty clinics have grown 41% in the past year. 30% of all large data breaches in the U.S. are from hospitals. And California has the most healthcare data breaches, making up 10% of all breaches in 2021; followed by Texas (8%) and New York (6%).

The full 2021 Healthcare Data Breach Trend Report can be found on http://www.stopthebreach.org.

Featured

  • NOLA: The Crescent City

    Twenty years later we finds ourselves in New Orleans. Twenty years ago the aftermath of Hurricane Katrina forced exhibitors and attendees to look elsewhere for tradeshow floor space. Read Now

    • Industry Events
    • GSX
  • Nothing Artificial About this Intelligence

    I have been looking forward to this year’s GSX show in New Orleans, the Cresent City, or if you prefer The Big Easy. It seems like quite a while since we’ve been here. Twenty years ago, ASIS, as it was known then was literally washed out of the city by someone known as Katrina. It is a good thing to come back to NOLA. Read Now

  • From Monitors to Mission Control

    Security Operations Centers (SOC) were once defined by rows of static monitors, each displaying a single feed with operators quietly watching for issues. That model has become obsolete. Incidents evolve too quickly, data comes from multiple locations, and decisions must be made in seconds—not minutes. Read Now

  • New Gas Monkey Garage Venue Uses AI-Enhanced Video Technology

    Gas Monkey Garage, the automotive custom shop and entertainment brand founded by Richard Rawlings of Fast N’ Loud TV fame, has opened a vibrant new restaurant and bar in South Dakota, equipped with advanced, AI-enhanced video tech from IDIS Americas. Read Now

  • Data Driven, Proactive Response

    As cities face rising demands for smarter policing and faster emergency response, Real Time Crime Centers (RTCCs) are emerging as essential hubs for data-driven public safety. In this interview, two experts with deep field experience — Ross Bourgeois of New Orleans and Dean Cunningham of Axis Communications — draw on decades of operational, leadership and technology expertise to share how RTCCs are transforming public safety through innovation, interagency collaboration and a relentless focus on community impact. Read Now

New Products

  • Compact IP Video Intercom

    Viking’s X-205 Series of intercoms provide HD IP video and two-way voice communication - all wrapped up in an attractive compact chassis.

  • PE80 Series

    PE80 Series by SARGENT / ED4000/PED5000 Series by Corbin Russwin

    ASSA ABLOY, a global leader in access solutions, has announced the launch of two next generation exit devices from long-standing leaders in the premium exit device market: the PE80 Series by SARGENT and the PED4000/PED5000 Series by Corbin Russwin. These new exit devices boast industry-first features that are specifically designed to provide enhanced safety, security and convenience, setting new standards for exit solutions. The SARGENT PE80 and Corbin Russwin PED4000/PED5000 Series exit devices are engineered to meet the ever-evolving needs of modern buildings. Featuring the high strength, security and durability that ASSA ABLOY is known for, the new exit devices deliver several innovative, industry-first features in addition to elegant design finishes for every opening.

  • FEP GameChanger

    FEP GameChanger

    Paige Datacom Solutions Introduces Important and Innovative Cabling Products GameChanger Cable, a proven and patented solution that significantly exceeds the reach of traditional category cable will now have a FEP/FEP construction.