February 12, 2018

A Look Back: How Health Data Breaches Have Affected the Industry in 2017

There is good news and bad news when we examine the 2017 health data breach landscape. Let’s start with the bad news: like 2016, there was an average of at least one health data breach per day throughout 2017. In total, there were 477 incidents reported to HHS, the media, or other sources. Interestingly, 74% of all incidents were either the result of insiders (176 incidents) or hacking (178 incidents). The good news is that, despite the high number of incidents, there were fewer massive data breaches that affected large numbers of patient records. As a result, the total number of affected records in 2017 was five times less than in 2016.

Continue Reading
January 23, 2018

5.6M Patient Records Breached in 2017, as Healthcare Struggles to Comprehensively and Proactively Detect Health Data Breaches

The Breach Barometer Annual Report analyzes how data breaches have affected healthcare throughout 2017.
Continue Reading
January 31, 2017

2016 Averaged at Least One Health Data Breach Per Day, Affecting More Than 27M Patient Records

The healthcare industry was plagued by breaches involving patient or health data throughout 2016, with hacking and ransomware incidents reminding us how vulnerable protected health information (PHI) remains. We’d love to tell you that by the end of the year things were starting to improve, but unfortunately that wasn’t the case. Even as healthcare leaders became increasingly aware of the importance of health data protection, the number of breach incidents remained relatively steady each month of the year, highlighting the continued threat to patient data.

Continue Reading
October 13, 2016

Olympians Fall Victim as 2016 Continues Breakneck Health Data Breach Pace

September’s largest single incident involved a ransomware that affected 58,000 records. While the overall number of breached records is down, the second half of 2016 is shaping up to be significantly worse than the first half when it comes to patient data security. September’s breach totals include several olympic athletes after the World Anti-Doping Agency (WADA) suffered from a hacking incident apparently at the hands of Russian cyber-espionage group, Tsar Team (APT28), also known as Fancy Bear. While this month’s patient records breached total (246,876) pales in comparison to this past summer’s total (20 million), it’s important to re-emphasize the ever-evolving threats to patient data and the misfortune that can occur when this information lands in the wrong hands.

Continue Reading
September 20, 2016

4.5M Patient Records Breached Due To Third-Party Incidents

A new Breach Barometer Special Report: Third Party Breaches published by Databreaches.net in collaboration with Protenus highlights that more than 30 percent of patient data breaches are a direct result of third-parties. Community physicians, affiliates, and certain vendors often have extensive access to patient data in the electronic health record (EHR). This increase in the number of users who have EHR access creates a huge vulnerability for healthcare systems and a headache for compliance teams. While vendors are often long-time trusted partners, relationships that add a large number of new EHR users or provide vendor employees with access to patient data create significant patient privacy monitoring challenges.

Continue Reading

Receive the latest article to your inbox