2017's Biggest Healthcare Breaches

This past year (2017) has been a rough time for healthcare providers and a boon for hackers. Cyber crooks love nothing more than to steal patient records and flip them for profit on the dark web. It's becoming a major problem, and companies need to take notice.

Thankfully, healthcare organizations don't have to suffer this kind of treatment alone. CyberPolicy offers cyber insurance that mitigates the financial damages associated with a healthcare breach. This includes legal fees, network repairs, cyberattack investigation, record recovery, and even business downtime (depending on your coverage). If you are worried about a data breach hitting your organization, you need to invest in this vital service ASAP.

Below are a few instances of healthcare data breach that rocked the industry. Learn from these examples, and do your best to keep your practice" and your patients" safe from a data breach.

Henry Ford Health. A cybercriminal stole employee email credentials which were then used to potentially steal the data of 18,470 patients. The Detroit health system reported the incident in December and said it is doing everything it can to bolster security. The organization is even offering "to provide protection to our patients, new medical record numbers will be issued upon request," according to an official statement.

Medical Oncology Hematology Consultants. After experiencing a nearly month-long ransomware attack, this Delaware oncology center discovered a potential data breach of 19,203 patients. In response, the organization adopted two-factor log-in authentication, consolidated servers, and re-evaluated its access privileges.

Mid-Michigan Physicians Imaging Center. In August, this Michigan-based medical center notified 106,000 patients of a potential data breach. The provider's network contained scanned documents including scheduling information, physician authorizations, and more. The data leak contained names, social security numbers, dates of birth, medical record numbers, and diagnoses.

Arkansas Oral Facial Surgery Center. This healthcare provider suffered a ransomware attack that potentially leaked the data of 128,000 patients. The breach was quickly detected. Still, the hackers may have infected a small number of patients who visited the healthcare provider three weeks prior to the July attack.

Indiana Medicaid. Patient data was left open via a live hyperlink to Indiana's Healthcare Coverage Program. The security gap was discovered by DXC Technology, a group which offers IT support to Indiana Medicaid. A report said the link contained patient data such as names, ID numbers, patient numbers, procedure codes, and more. Over 1.1 million patients could have been affected.

Molina Healthcare. An astonishing 4.8 million patient records may have been exposed by Molina Healthcare, a Medicare and Affordable Care Act insurer. Cybersecurity guru Brian Krebs was first made aware of the security flaw in April through an anonymous tip. The cause? A security flaw that exposed patient claims data without requiring authentication by simply changing a single number in the URL.

As you can see, these healthcare breaches range from bad to worse. Don't become another statistic. Visit CyberPolicy for cybersecurity tips and a free quote on cyber insurance today. It could be the best decision you make all year!

© 2016-2020 CyberPolicy, Inc. All rights reserved. CyberPolicy®, "Plan. Prevent. Insure."™, and "CyberCheckup"™ are trademarks of CyberPolicy, Inc.
DBA: CyberPolicy Insurance Solutions CA License No. 0L13180
DBA: CoverHound Insurance Solutions CA License No. 0H52375