Ransomware Attacks Rise, Accidental Breaches Most Common Cause of Data Loss
Unintended disclosure – such as misdirected faxes and emails – continue to drive the majority of healthcare breaches, Beazley said.
Hackers never quit. Their ceaseless assault on healthcare has continued during 2017, racking up hit after hit against provider organizations.
Ransomware attacks continued their rise in the first half of 2017, up 50 percent over the first half of 2016, according to the Beazley Breach Insights report from Beazley, a cyber and data breach response insurance firm that compares data on its base of clients from multiple industries, including healthcare.
Hacking and malware attacks, which include ransomware attacks, continue to be the leading cause of breaches, accounting for 32 percent of the 1,330 incidents that Beazley Breach Response Services helped clients handle in the first half of the year, the firm reported.
In healthcare specifically, unintended disclosure – such as misdirected faxes and emails or the improper release of discharge papers – continued to drive the majority of healthcare losses, leading to 42 percent of industry breaches during the first half of 2017, the report found. This was equal to the proportion of these breaches in the industry in the first half of 2016.
Hacks and malware accounted for only 18 percent of healthcare data breaches in the first half of 2017, compared with 17 percent during the first half of 2016, the report found.
Accidental breaches caused by employees making errors or data breached while under the control of third parties continue to be a significant problem for all industries – they accounted for 30 percent of breaches overall, just a bit behind the level of hacking and malware attacks.
“This continuing high level of accidental data breaches suggests that organizations are still failing to put in place the robust measures needed to safeguard client data and confidentiality,” Beazley said. “Since 2014, the number of accidental breaches reported to Beazley’s team has shown no sign of diminishing. As more stringent regulatory environments become the norm, this failure to act puts organizations at greater risk of regulatory sanctions and financial penalties.”
Unintended breaches show no signs of abating, said Katherine Keefe, global head of Beazley Breach Response Services. “They are a persistent threat and expose organizations to greater risks of regulatory sanctions and financial penalties,” Keefe said.
But they can be much more easily controlled and mitigated than external threats, she added. Organizations should not ignore this significant risk and instead put more robust systems and procedures in place, she said.
- 1. Patents Hold Clues About Apple, Amazon, Google and Microsoft’s Healthcare Plans
- 2. Is Your Practice Prepared for Hurricane Season? A Practice Checklist
- 3. Are Doctors Prepared to Fight a Cyberattack?
- 4. Reigniting the Physicians Arms Race, Insurers are Buying Practices
- 5. Payers Moving to Value-Based Care Faster Than Expected
Affordable Care Act (ACA)
chronic care management
Doctors Administrative Solutions
electronic health records
Health Information Exchange (HIE)
Merit-based incentive program
quality payment program