By using this site, you agree to the Privacy Policy and Terms of Use.
Accept
Health Works CollectiveHealth Works CollectiveHealth Works Collective
  • Health
    • Mental Health
    Health
    Healthcare organizations are operating on slimmer profit margins than ever. One report in August showed that they are even lower than the beginning of the…
    Show More
    Top News
    healthcare cybersecurity
    4 Helpful Tips on How to Protect Your Medical Practice Against Cyber Attacks
    October 24, 2021
    Health Check Diagnosis Medical Condition Analysis Concept
    6 Health Woes With Online Remedies
    January 19, 2022
    Eight Things Men Should Know About the Male Menopause
    Eight Things Men Should Know About the Male Menopause
    April 24, 2022
    Latest News
    Beyond Nutrition: Everyday Foods That Support Whole-Body Health
    June 15, 2025
    The Wide-Ranging Benefits of Magnesium Supplements
    June 11, 2025
    The Best Home Remedies for Migraines
    June 5, 2025
    The Hidden Impact Of Stress On Your Body’s Alignment And Balance
    May 22, 2025
  • Policy and Law
    • Global Healthcare
    • Medical Ethics
    Policy and Law
    Get the latest updates about Insurance policies and Laws in the Healthcare industry for different geographical locations.
    Show More
    Top News
    Does Insurance Cover the Cost of Therapy?
    June 14, 2022
    mental health loss loved one
    Covering Your Own Medical Issues After Losing a Loved One
    July 21, 2024
    healthcare SaaS
    Venture Capital Trends for Healthcare SaaS Platforms
    May 24, 2024
    Latest News
    Cigarette Makers Sue the FDA Over New Labeling Rules
    July 8, 2025
    End-Use Verification: Simple but Potentially Powerful
    July 8, 2025
    How Much do Financial Incentives Matter to Physicians?
    July 8, 2025
    NanoViricides Reports Positive Anti-viral Effect of HIV Drug
    July 8, 2025
  • Medical Innovations
  • News
  • Wellness
  • Tech
Search
© 2023 HealthWorks Collective. All Rights Reserved.
Reading: Criminal Attacks on Healthcare Organizations Increase 100%
Share
Notification Show More
Font ResizerAa
Health Works CollectiveHealth Works Collective
Font ResizerAa
Search
Follow US
  • About
  • Contact
  • Privacy
© 2023 HealthWorks Collective. All Rights Reserved.
Health Works Collective > eHealth > Medical Records > Criminal Attacks on Healthcare Organizations Increase 100%
BusinesseHealthMedical RecordsPolicy & LawTechnology

Criminal Attacks on Healthcare Organizations Increase 100%

thielst
thielst
Share
7 Min Read
cybersecurity in healthcare
SHARE

cybersecurity in healthcareI’ve posted on data security and breaches for the last few years and know that many healthcare providers have struggled to make sense of the warnings.

cybersecurity in healthcareI’ve posted on data security and breaches for the last few years and know that many healthcare providers have struggled to make sense of the warnings.  The latest warnings come from a report that hightlights new security threats to patient health information:

  • unproven security in the health insurance marketplaces, created as a result of the Affordable Care Act
  • criminal attacks
  • employee negligence
  • unsecured mobile devices (smartphones, laptops, and tablets)
  • third parties—causing organizations to scramble

The report, Fourth Annual Benchmark Study on Patient Privacy and Data Security, also provides insight into how healthcare organizations and handling data breaches and dealing with compliance.

Cyber Thieves are Following the Money

More Read

Free Apps for the Mental Health Blogger
How Far Has Health Information Exchange Progressed (Or Has It)?
5 Things You Need to Know About ACA in 2015
Top 4 Reasons to Consider Getting a Medical Degree in 2021
Cost of Non-Compliance with HIPAA and HITECH

Patient records are vulnerable to both insider and outsider threats because of the value of the information to criminals. These records contain personally identifiable information (PII) and protected health information (PHI). When combined, this information represents highly sensitive “regulated data,” which is tightly controlled by federal laws, including HIPAA and GLBA, as well as numerous state breach notification laws.

Employee negligence, such as a lost laptop, continues to be at the root of most data breaches in this study. However, there is also an uptick in criminal attacks on hospitals, which have increased a staggering 100% since the first study four years ago. The combination of insider-outsider threats presents a multi-level challenge, and healthcare organizations are lacking the resources to address this reality.

 Key Findings of the Research

  • Data breaches have declined slightly, though remain high.

Data breaches now cost healthcare organizations $5.6 billion annually, slightly lower than past years. Ninety percent of respondents had at least one data breach over the past two years, while 38 percent have had more than five data breaches in the same time period. While the total number of data breaches in healthcare has declined slightly—indicating that healthcare organizations are making some progress—the threats to patient data remain high. Many organizations remain overwhelmed and struggle with incident management and compliance with the myriad of regulations.

  •  Affordable Care Act increases risks to millions of patients and their information.

Nearly 70 percent of respondents believe the Affordable Care Act has increased or significantly increased the risk to millions of patients, because of inadequate security. The concerns include insecure exchanges between healthcare providers and government (75 percent), insecure databases (65 percent), and insecure websites for patient registration (63 percent). One-third of organizations surveyed say they do not plan to become a member of a Health Information Exchange (HIE); 72 percent are not confident or only somewhat confident in the security and privacy of patient data shared on HIEs. 

  • Negligent employees and unsecured devices in the workplace remain a big security threat.

Seventy-five percent of organizations cite employee negligence as their biggest security worry, as they increase exposure to sensitive data by the growing use of their personal unsecured devices (smartphones, laptops and tablets). Bring Your Own Device (BYOD) is not a new phenomenon but is a new risk, as personal devices have become harder to manage, control, and secure. In fact, 88 percent of organizations permit employees and medical staff to use their own mobile devices to connect to their organization’s networks or enterprise systems such as email, with access to patient information. Similar to last year’s study, more than half of organizations are not confident that the personally owned mobile devices are secure. Yet, 38 percent of organizations don’t take steps to ensure these devices are secure or prevent them from accessing sensitive information. 

  • Healthcare organizations don’t trust their third parties (Business Associates) with sensitive patient information.

“Business Associates” are third-party companies that work with healthcare organizations. They have access to patient information and are still struggling to comply with the HIPAA Final Rule, a federal law intended to safeguard sensitive information. Seventy-three percent of organizations are not confident or only slightly confident that their third parties are able to detect a security incident, perform an incident risk assessment and notify them in the event of a data breach. Only 30 percent of organizations are confident that their business associates are appropriately safeguarding patient information as required by the federal HIPAA Final Rule. According to those surveyed, the Business Associates that present the greatest risks to patient information are IT service providers, claims processors, and benefits management. 

Patching Holes is Overwhelming for Organizations

While there has bee progress towards complying with federal privacy and security guidelines and better safeguarding patient information, the threats and risks are shifting and this requires healthcare organizations to be in a constant state of catch up.  Think of it as a bucket filled with water, with holes in it. The water keeps spurting out, and every time you patch one hole, a new hole forms. The process of patching old and new holes is overwhelming, and this new data validates that issue.

Still have questions?

If you are interested in more information, consider participating in a free webinar, ACA Impacts on Patient Data Security—with Dr. Larry Ponemon, Ponemon Institute, and Rick Kam, CIPP/US, ID Experts— on Tuesday, April 8, 2014, at 11:00 a.m./2:00 p.m. ET. To register, visit http://bit.ly/1ih2fqi. 

(cybersecurity and healthcare organizations / shutterstock)

TAGGED:cybersecuritypatient data
Share This Article
Facebook Copy Link Print
Share

Stay Connected

1.5kFollowersLike
4.5kFollowersFollow
2.8kFollowersPin
136kSubscribersSubscribe

Latest News

Health Care Buzz Today
Business
July 8, 2025
As We Mature (age), Things Change…
Orthopaedics
July 8, 2025
FDA Approves Roche (Genentech) Skin Cancer Drug–Zelboraf
Business
July 8, 2025
Smart Money on Pfizer?
Business
July 8, 2025

You Might also Like

Statistics on Medicare Re-Hospitalizations and Readmissions Penalties

July 9, 2013
nfl concussion summit
NewsPolicy & Law

NFL Players Hosted Concussion Summit Week Before Super Bowl

February 17, 2014

This Week In Diagnostics

July 8, 2025
career in medical field
CareerMedical Education

Can Online Degrees Launch Your Career in Top Medical Fields?

June 18, 2024
Subscribe
Subscribe to our newsletter to get our newest articles instantly!
Follow US
© 2008-2025 HealthWorks Collective. All Rights Reserved.
  • About
  • Contact
  • Privacy
Welcome Back!

Sign in to your account

Username or Email Address
Password

Lost your password?