Organizations with unused, exposed websites and unencrypted storage drivers have been a huge target for hackers in recent years, now in 2017 this trend of stealing valuable information is still running rampant on the dark web. Many of these breaches occurred within the healthcare industry, which had a huge network with very rich patient data. The mistakes made by these organizations can help the many businesses who have not yet been affected take a proactive step to ensure that they will not fall victim to these cyber crimes.
Let us take a look at some of the numbers…
14 Million Customers: Verizon Data Breach
After a user mistake which caused the database to go public online, close to 14 million customers of the company were exposed.
4.8 million patients: Molina Healthcare
Discovered that their patient portal had a huge security flaw which could allow any Molina patient to access other patients medical claims by just changing a single number in the URL.
1.1 Million enrolled in Indiana Medicaid & CHIP
Indiana’s Health Coverage Program released that patient data was left wide open through a live hyperlink to an IHCP report. Their IT service provider discovered the link on May 10th and reported that link contained patient data including name, Medicaid ID number, address of doctors treating patients, patient numbers, procedure costs, and the amount Medicaid paid to doctors or providers.
1 Million Personal Data Files: Washington State University
Washington State University discovered a hard drive containing personal data of about 1 million people was stolen from a locked safe that it was contained in. The hard drive contained Social Security numbers, names and some personal health data.
500,000 Patients: Michigan based
The medical supplier was hit with ransomware that shut employees out of the system where personal health information was stored.
Each of these breaches showcase how many people could be at risk of their personal information being completely exposed just because of one or two simple mistakes. In the case if Indiana Medicaid, if it wasn’t for their IT services provider, they may have not found the issue in a reasonable time and had major issues down the line with their business information. The main lesson for business owners to take away is that you MUST stay proactive and make sure you have backups and precautions set in place for your network to continue running smoothly, and securely.
ECMSI – Service in 19 min or less!!!