News

Survey: Most Health Care Organizations Had a Recent Security Breach

Author and Disclosure Information

 

References

More than two-thirds of health care organizations responding to a survey have experienced a significant and recent security event, according to the Health Information and Management Systems Society (HIMSS).

The single largest source of significant security incidents were negligent insiders, defined as well-meaning individuals who unwittingly caused a breach. However, 64% of respondents reported that their organization had been the victim of an attack from an external actor – usually an online scam artist. The results are part of the 2015 HIMSS Cybersecurity Survey, which polled 297 health care leaders and information security officers.

©Sebastian Duda/Thinkstock

Most of the security incidents resulted in limited disruption of IT systems with limited impact on clinical care, according to the report. The majority of respondents said security incidents were detected within 24 hours of occurrence, “approximately 20% of these security incidents ultimately resulted in loss of patient, financial, or operational data.”

While security breaches may seem like an IT issue, Jennifer Horowitz, senior director of research at HIMSS, said physicians need to be aware of what they can do to help keep their systems secure.

“This is a rapidly changing environment and I think that physicians also need ... to do their part: adhering to the security policies and protocols as their organization,” Ms. Horowitz said in an interivew, highlighting particularly that physicians need to be aware of potential phishing scams sent via email that could comprompise data security.

Recommended Reading

Cyber Thieves Exploiting Health Care Security Gaps
Clinician Reviews
AMWA: Practicing Positive Thinking, Gratitude Can Raise Clinician Satisfaction
Clinician Reviews
VIDEO: Collaboration Between Providers Key for Derm Patients
Clinician Reviews
Litigation Challenges Physicians’ Authority to Regulate Nonphysicians
Clinician Reviews
Online Entry-Level Education: The Jury Is Still Out!
Clinician Reviews
Why Diabetic Patients Need a “Sick Day” Plan
Clinician Reviews
Voices for Change: AANP Celebrates 25 Years
Clinician Reviews
Small Practices, Say Hello to the VBM
Clinician Reviews
VIDEO: The Most Pressing Health Law Risks for Clinicians
Clinician Reviews
Medicare at 50: Providers Struggle With Antifraud Regulations
Clinician Reviews