By using this site, you agree to the Privacy Policy and Terms of Use.
Accept
Health Works CollectiveHealth Works Collective
  • Health
    • Mental Health
    Health
    Healthcare organizations are operating on slimmer profit margins than ever. One report in August showed that they are even lower than the beginning of the…
    Show More
    Top News
    stress management for healthcare workers
    3 Tips For Healthcare Professionals: How To Stay Beautiful, Healthy, and Happy
    November 2, 2021
    importance of relaxing on the weekend for your health
    Importance of Relaxing During the Weekend for Optimal Health
    March 25, 2022
    LASIK Eye Surgery
    What Is LASIK Eye Surgery?
    May 16, 2022
    Latest News
    5 Benefits Of HIPAA-Compliant Answering Services
    March 28, 2023
    3 Ways To Deal With Health Issues In Cities With High Pollution
    March 22, 2023
    What Tools Should Your Caregiver Have?
    March 22, 2023
    How to Combat Home Sickness After Moving Abroad
    March 19, 2023
  • Policy and Law
    • Global Healthcare
    • Medical Ethics
    Policy and Law
    Get the latest updates about Insurance policies and Laws in the Healthcare industry for different geographical locations.
    Show More
    Top News
    debunking-myths-myth2_1.png
    Debunking Digital Patient Recruitment Myths for Clinical Trials: Myth #2
    April 7, 2016
    Obesity Devices Gain From Drug Woes
    August 23, 2017
    A Good Place to Find Information on Clinical Trials
    September 9, 2017
    Latest News
    What Are Bioidentical Hormones Made With?
    March 23, 2023
    Cover Medical Costs of Child Dog Bites with Legal Specialists
    March 23, 2023
    3 Ways to Improve the U.S. Healthcare System By 2030
    March 14, 2023
    6 Steps To Ensure Speed And Efficiency Of Clinical Studies
    March 14, 2023
  • Medical Innovations
  • News
  • Wellness
  • Tech
Search
© 2023 HealthWorks Collective. All Rights Reserved.
Reading: Lessons from the Anthem Breach
Share
Sign In
Notification Show More
Latest News
relation between Trauma and Chronic Pain
Understanding the Relationship Between Trauma and Chronic Pain
News Wellness
hipaa-compliant answering services
5 Benefits Of HIPAA-Compliant Answering Services
Policy & Law
Diabetes Diet myths
8 Diabetes Diet Myths That Have You Confused
Diabetes
choose the right rehab center
The Road to Recovery: Finding the Best Rehab Center
Addiction Recovery
blockchain in healthcare for the NHS
How Blockchain Can Help the National Health Service
Technology
Aa
Health Works CollectiveHealth Works Collective
Aa
Search
Have an existing account? Sign In
Follow US
  • About
  • Contact
  • Privacy
© 2023 HealthWorks Collective. All Rights Reserved.
Health Works Collective > eHealth > Medical Records > Lessons from the Anthem Breach
BusinesseHealthMedical RecordsPolicy & LawTechnology

Lessons from the Anthem Breach

David Harlow
Last updated: 2015/02/12 at 9:00 AM
David Harlow
Share
0 Min Read
SHARE

King_Henry_V_at_the_Battle_of_Agincourt,_1<p><a class=King_Henry_V_at_the_Battle_of_Agincourt,_1415

Anthem experienced a major data breach last week, and reportedly some records (Social Security Numbers and other identifying information, but not health data) of up to 80 million members and employees were obtained by hackers.

There is much to be said (and much has already been said) about the need for privacy and security and protections in the case of Anthem, just as “helpful hints” have been provided after the fact to victims of all significant data breaches. My reaction, when reading about the unencrypted SSNs that were accessed in this attack, was: Why in the world are we using social security numbers as ID numbers? It doesn’t have to be this way.

The social security number is the only universal unique identifier we have at our disposal in this country. It’s easy to ask for, and to use, but … it’s not supposed to be used for anything other than administration of Social Security benefits. Until not all that long ago, states used SSNs as driver’s license numbers. No longer (at least around these parts). Most of us get asked for the last 4 (or 5 or 6) digits of our SSNs constantly for all kinds of reasons. How many of us refuse every time?

More Read

US healthcare system

3 Ways to Improve the U.S. Healthcare System By 2030

6 Steps To Ensure Speed And Efficiency Of Clinical Studies
5 Most Valuable Healthcare Programs in 2023
7 Ways Technology is Improving Nursing and Patient Care
The Everest Foundation’s Mission to Support Inclusive Healthcare

Way back in 1998, as folks were trying to figure out how to implement HIPAA, the question arose: Gee, why don’t we establish a unique patient identifier system so that we can be assured that each electronic health record is properly tied to the right individual? (Check out this vintage HHS white paper on the Unique Health Identifier, published as prologue to a rulemaking process that never went anywhere.)  Eventually, that approach was taken for providers (UPIN, then NPI), but not for patients. In fact, every year since then, Congress has included a special line in the HHS budget that says Thou Shalt Not establish a unique patient identifier system.

This approach has spawned a sub-industry that scrubs data sets to ensure that an individual patient doesn’t have duplicate records, each including only a part of the whole, by triangulating from all the data points used to perpetrate identity theft: SSN, DOB, name, address, etc. All those data points are needed in order to make sure that we’re talking about the right Mr. Jones. If the only identifier attached to the health data were the patient ID number, then health records would suddenly become much less valuable to identity thieves — and it would be easier to determine which record belongs to whom.

Using patient ID numbers (which could be encrypted and thus protected — because, after all, who wants to get a new patient ID number? Getting a new credit card number after some system or other gets hacked is bad enough, and remember, you can’t get a new SSN just because your health records have been hacked) would be one element of a data minimization approach designed to lessen the likelihood of damage resulting from a breach. Couple that with the auditing capabilities that allowed Anthem to notice its breach in short order (vs. some breaches which were exploited over the course of years before anybody noticed), and we’d be looking at some real improvements to health data security.

David Harlow
The Harlow Group LLC
Health Care Law and Consulting 

TAGGED: security

Sign Up For Daily Newsletter

Be keep up! Get the latest breaking news delivered straight to your inbox.
By signing up, you agree to our Terms of Use and acknowledge the data practices in our Privacy Policy. You may unsubscribe at any time.
David Harlow February 12, 2015
Share this Article
Facebook Twitter Copy Link Print
Share
Previous Article When Buying an EHR, Don’t Get Sucker-Punched by Delusional Thinking
Next Article meaningful use stage 2 The Meaning of Meaningful Use

Stay Connected

1.5k Followers Like
4.5k Followers Follow
2.8k Followers Pin
136k Subscribers Subscribe

Latest News

relation between Trauma and Chronic Pain
Understanding the Relationship Between Trauma and Chronic Pain
News Wellness March 28, 2023
hipaa-compliant answering services
5 Benefits Of HIPAA-Compliant Answering Services
Policy & Law March 28, 2023
Diabetes Diet myths
8 Diabetes Diet Myths That Have You Confused
Diabetes March 28, 2023
choose the right rehab center
The Road to Recovery: Finding the Best Rehab Center
Addiction Recovery March 27, 2023

You Might also Like

hipaa-compliant answering services
Policy & Law

5 Benefits Of HIPAA-Compliant Answering Services

March 28, 2023
blockchain in healthcare for the NHS
Technology

How Blockchain Can Help the National Health Service

March 27, 2023
Bioidentical Hormones
Medical Education

What Are Bioidentical Hormones Made With?

March 23, 2023
child dog bite lawyer
News

Cover Medical Costs of Child Dog Bites with Legal Specialists

March 23, 2023
//

We influence million of users and is the most authentic source of information on healthcare business and technology news.

Quick Links

  • About
  • Contact
  • Privacy
Subscribe

Subscribe to our newsletter to get our newest articles instantly!

Follow US

© 2008-2023 HealthWorks Collective. All Rights Reserved.

Removed from reading list

Undo
Welcome Back!

Sign in to your account

Lost your password?