Report Examines Top Healthcare Data Security Threats

Report Examines Top Healthcare Data Security Threats

Protected Harbor, a full-service IT solution and consulting firm, just announced the launch of its latest whitepaper on healthcare cybersecurity. The whitepaper, entitled “2021 Healthcare Data Breach Trend Report” offers readers an insight into evolving healthcare data breach patterns, predictive threats for 2022, and a playbook on how to increase IT durability to stop future healthcare data attacks.

“Due to the financial value of patient health information, electronic health records stored in healthcare organizations are a major target for cybercriminals,” said Richard Luna, CEO of Protected Harbor. “Attacks and exploits are evolving every day, becoming more sophisticated and carrying more devastating payloads. Protections must be implemented at every layer of a system.”

The healthcare data breach report, conducted by Protected Harbor, included statistics from 686 security breaches of 500 or more healthcare records; as reported by HHS’ Office for Civil Rights (OCR). 74% of all healthcare data breaches are from hacking and IT incidents, attributed to understaffed healthcare IT departments, legacy technologies not configured properly for new medical technology, and a lack of interoperability standards. This problem is costing companies around $9.23M per data breach, as reported by IBM.

The Threats
As the industry continues to evolve and respond to the data growth from increased usage of medical devices and technologies, more vulnerabilities are discovered. The “2021 Healthcare Data Breach Trend Report,” by Protected Harbor, has identified the following top healthcare data security threat issues heading into 2022:

IoT connected medical devices
mHealth & Telehealth technologies
The Cures Act & remote patient access
Understaffed & underfunded IT departments
Lack of employee security training

The Solutions Improving healthcare cybersecurity and network architecture will harden healthcare infrastructure, increase application durability, decrease overall costs, and increase public trust. The report also identified the following data protection suggestions for Healthcare IT departments:

Fast healthcare Interoperability resource standards
Multi-factor authentication
Mobile device security strategy
Isolated and validated backups
Integration of managed service teams

“Digitalization has drastically increased the amount of data and how the healthcare industry does business. But the original network architectural designs were not meant to handle this size of a workload,” continued Luna. “Teams need to do more regular penetration tests, malware tests, backup validation, disaster recovery drills, improve monitoring, run compliance scans, and keep to a maintenance schedule. It is not easy to keep track of so many moving parts that have been integrated since Covid-19. That is why so many HCIT departments are teaming up with managed service firms.”

The Numbers Additional findings from the 2021 Healthcare Data Breach Trend Report, include network server attacks accounting for 53% of all incidents in 2021, followed by email attacks at 27%. 21% of breaches can be attributed to unauthorized access, such as granting too much-privileged access to third parties. Hacking and IT incidents targeting outpatient and specialty clinics have grown 41% in the past year. 30% of all large data breaches in the U.S. are from hospitals. And California has the most healthcare data breaches, making up 10% of all breaches in 2021; followed by Texas (8%) and New York (6%).

The full 2021 Healthcare Data Breach Trend Report can be found on http://www.stopthebreach.org.

Featured

  • Survey: Less Than Half of IT Leaders are Confident in their IoT Security Plans

    Viakoo recently released findings from its 2024 IoT Security Crisis: By the Numbers. The survey uncovers insights from IT and security executives, exposes a dramatic surge in enterprise IoT security risks, and highlights a critical missing piece in the IoT security technology stack. The clarion call is clear: IT leaders urgently need to secure their IoT infrastructure one application at a time in an automated and expeditious fashion. Read Now

  • ASIS International and SIA Release “Complexities in the Global Security Market: 2024 Through 2026”

    ASIS International and the Security Industry Association (SIA) – the leading security associations for the security industry – have released ”Complexities in the Global Security Market: 2024 Through 2026”, a new research report that provides insights into the equipment, technologies, and employment of the global security industry, including regional market breakouts. SIA and ASIS partnered with global analytics and advisory firm Omdia to complete the research. Read Now

  • President Biden Issues Executive Order to Bolster U.S Port Cybersecurity

    On Wednesday, President Biden issued an Executive Order to bolster the security of the nation’s ports, alongside a series of additional actions that will strengthen maritime cybersecurity and more Read Now

  • Report: 15 Percent of All Emails Sent in 2023 Were Malicious

    VIPRE Security Group recently released its report titled “Email Security in 2024: An Expert Look at Email-Based Threats”. The 2024 predictions for email security in this report are based on an analysis of over 7 billion emails processed by VIPRE worldwide during 2023. This equates to almost one email for everyone on the planet. Of those, roughly 1 billion (or 15%) were malicious. Read Now

Featured Cybersecurity

Whitepapers

New Products

  • QCS7230 System-on-Chip (SoC)

    QCS7230 System-on-Chip (SoC)

    The latest Qualcomm® Vision Intelligence Platform offers next-generation smart camera IoT solutions to improve safety and security across enterprises, cities and spaces. The Vision Intelligence Platform was expanded in March 2022 with the introduction of the QCS7230 System-on-Chip (SoC), which delivers superior artificial intelligence (AI) inferencing at the edge. 3

  • Unified VMS

    AxxonSoft introduces version 2.0 of the Axxon One VMS. The new release features integrations with various physical security systems, making Axxon One a unified VMS. Other enhancements include new AI video analytics and intelligent search functions, hardened cybersecurity, usability and performance improvements, and expanded cloud capabilities 3

  • A8V MIND

    A8V MIND

    Hexagon’s Geosystems presents a portable version of its Accur8vision detection system. A rugged all-in-one solution, the A8V MIND (Mobile Intrusion Detection) is designed to provide flexible protection of critical outdoor infrastructure and objects. Hexagon’s Accur8vision is a volumetric detection system that employs LiDAR technology to safeguard entire areas. Whenever it detects movement in a specified zone, it automatically differentiates a threat from a nonthreat, and immediately notifies security staff if necessary. Person detection is carried out within a radius of 80 meters from this device. Connected remotely via a portable computer device, it enables remote surveillance and does not depend on security staff patrolling the area. 3