This is an excerpt from a story delivered exclusively to Business Insider Intelligence Digital Health Briefing subscribers.
To receive the full story plus other insights each morning, click here.
Globally, healthcare was racked with more cybersecurity breaches than any other industry in 2018, accounting for 25% of 750 reported incidents, per law firm BakerHostetler’s latest report.
Hackers have put health records in their crosshairs: Health information was the second most at-risk type of data in cybersecurity threats. This trend was particularly evident in the US, where health firms suffered a record 365 data breaches in 2018, up from 2017’s high of 358.
Despite healthcare’s mounting cybersecurity threat, the industry’s security measures haven’t kept pace — painting a gloomy picture for 2019.
Here’s what it means: US health organizations aren’t bearing down on cybersecurity efforts — and they’re facing the costly consequences.
Health systems and hospitals are shirking industry cybersecurity standards. For example, conformance to HIPAA security rules fell from 74% in 2017 to 72% in 2018, according to a 2019 report from cybersecurity consulting firm Cynergistek.
The repercussions are costly: When breaches expose sensitive information, HIPAA privacy rules are violated — and health systems have to pay up. The US government doled out a new high of $26 million in HIPAA penalties in 2018. Moreover, health firms lose nearly 7% of their customers following a data breach — the highest of any industry.
The bigger picture: We expect another uptick in US health breaches in 2019 as counterefforts stagnate.
Cybersecurity is no longer US health firms’ top priority. Privacy and security toppled to health firms’ third-highest priority in 2018 — down from its first in 2017— despite the intensifying risk of attack. …read more
Source:: Business Insider