IT Security Missteps for Healthcare Industry in 2019

Published in Member Communities on July 16, 2019

When we know better, we do better. It comes to no surprise that every year there will be security breaches. Our hope is that each year we are able to play a part in limiting the number of breaches that occur. These are just a handful of the data breaches that have happened in the healthcare industry so far this year. We can learn from these incidents and take time to realize the consequences of lagging behind in cyber defense.

Touchstone Medical Imaging

Touchstone Medical Imaging faced a hefty breach costing them $3 million. It occurred when the company left one of its FTP servers open. An FTP server is a type of computer where file exchanges happen. Unfortunately, this ended up being accessible over the internet, letting unauthorized individuals have access to protected health information.

It took the company five months to take actions to secure the information, thereby exposing more patients for even longer. Additionally, they failed to notify the patients of the breach and the media in accordance with federal law.

UW Medicine

One million patients’ PHI was exposed through Seattle’s UW Medicine server. Protections on their server were accidentally removed, causing sensitive information to be accessed by internet search engines. Anyone was able to access this information. It was first discovered by a patient who searched their own name online and saw their personal information displayed in the open. The information exposed was directly related to their patient care, not any social security or financial information. They acted quickly and swiftly upon finding out about the breach, but alerting patients alone cost them $1 million.

Navicent Health

This breach was the direct result of a cyber attack through Navicent’s email system. All PHI was compromised including the financial and social security information. It impacted 278,016 patients.

American Medical Collection Agency

The AMCA had a system hack that impacted twenty million patients. The hack went unnoticed for 8 months. This is obviously a gross amount of negligence on the part of the AMCA and will cost them millions of dollars. The investigation is still ongoing as to why it took them so long to identify the breach and what they plan to do about the attack.

Healthcare industries cannot take cybersecurity too seriously. The information that hackers want is incredibly valuable and it's imperative that the industry takes protecting it seriously. Talk to us about cyber insurance for breach protection.


comments powered by Disqus

From Our Experts

AOPA from the Perspective of a First-Time Attendee thumbnail AOPA from the Perspective of a First-Time Attendee The AOPA National Assembly was held September 9-11, 2021 and even though COVID-19 is still a concern, show organizers were able to host a successful and safe event for the O&P profession. OPGA was excited to be back in person at the event. Embracing the Rise of Patient Centricity thumbnail Embracing the Rise of Patient Centricity Breaking news: Your patients are changing. You may notice their behaviors are becoming much more consumer-like. And with this, they are looking for healthcare experiences that match suit with their consumer experiences. Nupura Kolwalkar, Chief Product Officer from Brightree, discusses how to better provide patient-centric care. Final Analysis: COVID-19 Government Stimulus Packages thumbnail Final Analysis: COVID-19 Government Stimulus Packages Healthcare providers were presented with several economic stimulus programs to relieve some of the burdens brought on by the COVID-19 public health emergency (PHE). Mark Higley and Craig Douglas provide a synopsis of the programs as of September 2021. Seat Elevation Congressional Sign-On Letter Sent to CMS thumbnail Seat Elevation Congressional Sign-On Letter Sent to CMS Early in October, we asked for your assistance to call your representatives and ask them to sign on to the CRT Congressional letter to CMS. The letter was sent to CMS with 77 signatures on October 6, 2021. Minding the Customer Experience: In-Person, Online, and With Shipping thumbnail Minding the Customer Experience: In-Person, Online, and With Shipping Rob Baumhover discusses how to build repeat customers through customer service and customer experience. HME Woman of the Year Nominations Now Open thumbnail HME Woman of the Year Nominations Now Open Nominations for the 2021 HME Woman of the Year Award are being accepted through Oct. 22. HME Woman of the Year Nominations Now Open thumbnail HME Woman of the Year Nominations Now Open Nominations for the 2021 HME Woman of the Year Award are being accepted through Oct. 22. VGM & Associates Releases Sales and Marketing-Focused Playbook thumbnail VGM & Associates Releases Sales and Marketing-Focused Playbook VGM & Associates has released the fourth installment of their 2021 quarterly playbook series, “VGM Playbook: Optimizing Sales and Marketing in the DMEPOS Space.”