Hacking healthcare is trend that is likely to continue for the foreseeable future, so no one should be surprised about patient data breaches. And despite the often valiant efforts of healthcare organizations to protect patient data, IT security vulnerabilities have existed as is evidenced by the healthcare data breaches that came to light in 2016. A report by TrapX Security shows that healthcare cyberattacks in the United States increased 63% from 2015 to 2016 and that such attacks now account for 31% of all major HIPAA data breaches (which is a 300% increase in just three years!). Here are the top ten healthcare cyberattack breaches in the U.S. last year:
- Alliance Health Networks had one of its patient databases accessible to the Internet, resulting in 42,372 patients’ protected health information being exposed for 30 months.
- Urgent Care Clinic of Oxford had its systems breached, impacting 64,000 patients.
- Medical Colleagues of Texas had its systems breached, impacting 68,631 patients.
- Southeast Eye Institute, P.A. dba Eye Associates of Pinellas had its systems breached, impacting 87,314 patients.
- Central Ohio Urology Group suffered a cyberattack impacting 300,000 patients.
- Peachtree Orthopedic Clinic had its systems hacked, resulting in 531,000 patients’ protected health information being compromised.
- Valley Anesthesiology Consultants reported they suffered a cyberattack which possibly impacted 882,590 patient records.
- 21st Century Oncology had its systems breached, impacting 2,213,597 patient records.
- Newkirk Products (a service provider that issues healthcare ID cards for health insurance plans) suffered a cyberattack which possibly impacted 3,446,120 patient records.
- Banner Health had its systems breached, impacting 3,620,000 patients.
The full report from TrapX Security can be accessed here. (Although, after reading through all of the above, you may be a little leery about clicking on this link, right?)