PCI & HIPAA Data Breaches of 2012: Lessons Learned

Here’s a review of the top 2012 data breaches within both the PCI and HIPAA compliant industries, and a quick analysis of what went wrong so you can easily learn from their lessons without accruing the associated costs and legalities.

3.8 Million Tax Records Stolen in Largest State Agency Attack
Both Social Security and credit card numbers were stolen from the South Carolina Department of Revenue by hackers in August. A phishing email enabled hackers to steal credentials from users and eventually steal 74 GB of encrypted and unencrypted data.

Lessons learned: Encryption is a requirement for all organizations (including federal) that store credit card data and therefore need to meet PCI DSS compliance standards. One step ahead of encryption is administrative security, including training staff on security issues, which can prevent users from clicking on phishing emails and allowing the initial breach to occur. Check with any third-parties to ensure their staff is also properly trained.

Server Hack Leads to HIPAA Violation by Utah Department of Health
In April, 780,000 individuals were affected in a server hack at the authentication level that allowed hackers to access and steal SSNs and personal health records from the Utah Department of Health. One server was not configured according to normal procedure, and this allowed hackers to access the system.

READ

Google Fitness Platform And The Future Of Fitness Apps

Lessons learned: Technical staff in particular need proper HIPAA compliance training to ensure servers are configured correctly, especially servers that may contain ePHI (electronic protected health information) at rest. The state of Utah remediated by hiring an auditing firm to conduct independent security/HIPAA audits across all of their state agencies, suggesting they had not undergone one prior to the event. They also assigned a privacy and security officer to the department of health and improved security controls by adding network monitoring and intrusion detection.

Global Payments Inc. PCI Data Breach Affects 1.5 Million
Nearly 1.5 million consumers were affected by hackers accessing Global Payments Inc.’s payment processing system in January and February.

Lessons Learned: While the details of the system breach have been kept under wraps, the lesson to be learned here is to do your due diligence in confirming all third-party vendors are, in fact, PCI compliant. Global Payments is a widely used electronic transaction processing company that had been listed on Visa’s Global Registry of service Providers. They were removed after the attack. Even if your providers claim to be PCI compliant, it’s your job to check the requirements against their actual documented policies and technical services, if applicable, to keep credit card data secure.

10 Major IT Challenges Healthcare Organizations Are Facing Today

Navigating The Changing Landscape Of The Medical Marijuana Industry

Is eCommerce For Your Health Business The Right Move?

How To Choose The Right Dentist: Try These 6 Simple Steps

Why Meal Planning Is Good for Your Budget & Your Health

How Do I Become A Clinical Documentation Specialist?

How To Get Capital For New Equipment For Your Healthcare Business

Financial Benefits For People Suffering From Dementia

10 Major IT Challenges Healthcare Organizations Are Facing Today

4 Tips For Home Health Care Agencies To Survive The Worker Shortage

Top Tips For A More Eco-Friendly Healthcare Facility

Why Mobile Apps Are Indispensable For Telemedicine

Telemedicine Is An Efficient Tool To Transform The Healthcare Industry

How Startups Are Bringing Healthcare To Rural Areas

7 Important Benefits Of Electronic Health Records (EHRs)

Cataract Procedures: Which One Is Best For You?

7 Important Benefits Of Electronic Health Records (EHRs)

Three Practical Uses For Wearables In EHR

Patient Misidentification: Just How Damaging Is It?

Dealing With A Health Crisis? Avoid Medical Identity Theft With These Tips

Top 5 Ways Mobile Apps Are Impacting Health And Fitness Industries

How To Use SMS To Increase Customer Satisfaction In Healthcare

Top 5 Advantages Of A Heart Rate Monitor – For Workouts And Daily Life

Google Fitness Platform And The Future Of Fitness Apps

Why You Need To Know The Risks Of Self-Diagnosis

Technological Advancements in The Medical Field That You Should Keep An Eye On

mHealth Apps And Digital Doctors: The Future Of The Healthcare Sector?

EHR For Rural Hospitals: Criteria And Access

7 Tips To Make Sure Your Medical Practice Is Found Online

4 Top Reasons Why App Developers Love Apple Health Records API

Should Healthcare Care About Branding?

How can Healthcare Professionals Manage their Reputation Online

10 Major IT Challenges Healthcare Organizations Are Facing Today

Important Things To Know About Advances In Healthcare Robotics

How Healthcare Contact Centers Can Improve Patient Experiences

Telemedicine Is An Efficient Tool To Transform The Healthcare Industry

How Anesthesia Can Be Delivered With Anesthesia Machines

The Roles And Responsibilities Of An Audiologist

5 Healthcare Technologies Transforming Aging In Place

Here’s Why Plastic Surgery Shouldn’t Be Taboo Anymore

Important Things To Know About Advances In Healthcare Robotics

Here’s How Technological Innovation Is Transforming Healthcare

Origin of Popular Surgeries

7 Beneficial Ways Technology Can Impact Your Fitness

Four Signs That Show You Need Rehabilitation

How To Choose The Right Dentist: Try These 6 Simple Steps

Dealing With A Health Crisis? Avoid Medical Identity Theft With These Tips

The Muddled Relationship Between Your Health Initiatives and Credit Score

How to Get Started with Volunteering to Take Care of Animals Abroad

5 Healthier Alternatives To Bad Habits That Will Change Your Life

What To Know About Melanoma Prevention Year-Round

Do Fat Burners Work? Busting Five Weight Loss Supplement Myths

9 Habits You Can Cultivate To Reduce Your Risk Of Dementia

3 Things To Consider When Looking For A Heart Doctor

The Value And Criticism Of Robot-Assisted Heart Surgery

Here’s What To Know About Sleep And Heart Health

Is It Time to See a Cardiologist?

5 Simple Tips for Optimal Oral Health

A Guide To The Dangers Of Over Brushing Our Teeth

Pros and Cons of Dental Implant You Should Know

Benefits And Common Questions About Dental Implants

Take These 4 Important Steps For Healthy And Happy Aging

Living Alone When You’ve Been Diagnosed With Alzheimer’s

A Guide To Healthy Aging And Happier Golden Years

10 Early Dementia Signs You Need To Be Aware Of

Do Fat Burners Work? Busting Five Weight Loss Supplement Myths

The Secret Life Of Fat And Hormones: 5 Things You Didn’t Know

Sleep Apnea and Weight Gain: Understanding the Connection

Why You Should Consider Group Exercise For Weight Loss

The Most Important Things To Know When Choosing A Chiropractor

A Guide to Caring for Bunions

5 Best Exercises to Strengthen Your Lower Back

Here’s Everything You Need to Know About Sciatica

Are You Healthy Enough to be a Surrogate?

5 Tips for a Healthy Pregnancy

3 Nutritious Foods To Eat During Your Second Trimester Of Pregnancy

A High Fiber Diet During Pregnancy May Reduce Celiac Risk In Children

Radiology as an Enterprise Model for Collaboration

Relationship Between Clinical Decision Support Systems (CDSS) & Radiology Must Evolve

Diagnostic Reading #33: Five Must-Read Articles from the Past Week