Navigation Links
Protected Health Information (PHI): High Value to Hackers: Medical Facilities at Risk
Date:2/14/2013

Rochester, MI (PRWEB) February 14, 2013

Penetration testing performed by High Bit Security on a Midwestern medical facility dramatically illustrates the ease with which hackers can obtain Protected Health Information. (PHI)

“When High Bit Security tested the medical facility, we obtained access to patient medical records, including name, address, next of kin, social security numbers, medical history, driver’s license numbers, all Medicare, Medicaid, and insurance information, plus the physician’s signatures and narcotics ID,” said High Bit Security COO, Adam Goslin. “Obviously we would not disclose the name of the facility, but the administrator advised us that they had 20,000 patient records in their system at the time the test was performed.”

The Financial Impact of Breached Protected Health Information, a study published by the American National Standards Institute (ANSI) States on page 21: “A thief downloading and stealing data can get $50 on the street for a medical identification number compared to just $1 for a Social Security number. For those receiving the medical ID number and using it to defraud a health care organization, the average payout is more than $20,000,” according to Pam Dixon, executive director of the World Privacy Forum. "Compare that to just $2,000 for the average payout for regular ID theft.” *1*

“That translates to one million dollars in overall revenue to the hacker, and potentially $40 million dollars in costs to the system - in fraudulent claims and fake prescriptions, sometimes taking months to catch. It’s easy to see why even a small doctor office presents a juicy target. It is well known in the hacking community the value of certain types of information, traded in a classic underground economy,” continued Goslin.

Small wonder that the government is stepping in and demanding that medical facilities secure their information. “The Department of Health and Human Services now levies fines under HIPAA for facilities that are breached, and forgiveness for non-compliance is a thing of the past,” said High Bit Security CBDO, Barbara Goushaw. “In spite of this, many doctors and clinics are hoping to stay under the radar of both criminals and the government. It’s time to recognize that cyber-theft plays a role in the high cost of health care, and one that is steadily increasing."

The complete case study can be reviewed at the High Bit Security website. The study details the testing results of the engagement, while keeping the client anonymous. “Thankfully, this medical facility took their responsibility seriously; in spite of the fact they thought they were secure. Their EMR provider (a large, national provider) was providing their day to day IT support, and told them not to worry about it. Since the medical facility wanted to be sure, they hired High Bit Security to do both an external and internal penetration test,“ said Goslin. “The chief physician was very disturbed at the magnitude of the issues identified once they received their final report; however was very glad their security stance was assessed so they were aware of the security vulnerabilities, and the fact that the detailed High Bit Security reporting allowed for swift remediation.”

About High Bit Security:
High Bit Security is a national security services provider, providing penetration testing solutions to clients who need to protect sensitive data in industries such as Healthcare, Credit Card, Financial, or companies that otherwise store Intellectual Property or Personally Identifiable Information. High Bit Security also provides security consulting services to our clients to assist them with their compliance objectives across PCI-DSS, PA-DSS, HIPAA, SSAE-16 or simply wish to perform a security best practices audit of their organization. Contact High Bit Security today for a free consultation to take steps toward protecting your sensitive information. http://www.HighBitSecurity.com 800-757-3144

*1* The Financial Impact of Breached Protected Health Information,” American National Standards Institute, 2012

*2* World Privacy Forum

Read the full story at http://www.prweb.com/releases/2013/2/prweb10412883.htm.


'/>"/>
Source: PRWeb
Copyright©2012 Vocus, Inc.
All rights reserved

Related medicine news :

1. Protected Power Naps Could Help Keep Medical Interns Alert: Study
2. Sexting May Go Hand-in-Hand With Unprotected Sex Among Teens
3. Californias Tobacco Control Program generates huge health care savings, UCSF study shows
4. Happily married couples consider themselves healthier, expert says
5. UTHealth: Alcohol consumption may be in response to smoking cessation
6. When Trees Die Off, Human Health May Also Suffer
7. Gaps in mental health infrastructure for youth identified in many US communities
8. Youths with autism spectrum disorder need help transitioning to adult health care
9. Low-arsenic rice discovered in Bangladesh could have major health benefits
10. eVariant Welcomes Advocate Health Care
11. Chinas Overuse of Antibiotics in Livestock May Threaten Human Health
Post Your Comments:
*Name:
*Comment:
*Email:
(Date:6/26/2016)... ... ... Quality metrics are proliferating in cancer care, and are derived from many ... the beholder, according to experts who offered insights and commentary in the current issue ... the full issue, click here . , For the American Society of Clinical ...
(Date:6/26/2016)... Michigan (PRWEB) , ... June 26, 2016 , ... ... to fertility once they have been diagnosed with endometriosis. These women need a ... they also require a comprehensive approach that can help for preservation of fertility ...
(Date:6/25/2016)... ... June 25, 2016 , ... First Choice Emergency Room , ... Sesan Ogunleye, as the Medical Director of its new Mesquite-Samuell Farm facility. , ... our new Mesquite location,” said Dr. James M. Muzzarelli, Executive Medical Director of First ...
(Date:6/24/2016)... CA (PRWEB) , ... June 24, 2016 , ... A ... procedures that most people are unfamiliar with. The article goes on to state that ... but also many of these less common operations such as calf and cheek reduction. ...
(Date:6/24/2016)... Fla. (PRWEB) , ... June 24, 2016 , ... Global ... Trend magazine’s 2016 Legal Elite. The attorneys chosen by their peers for this recognition ... Florida. , Seven Greenberg Traurig Shareholders received special honors as members of this year’s ...
Breaking Medicine News(10 mins):
(Date:6/26/2016)... 2016 One of Australia,s successful ... of a new biotechnology company, Noxopharm Limited [ABN 50 608 966 ... and to list on the ASX. Noxopharm is a ... enter a Phase 1 clinical study later this year. ... of the biggest problems facing cancer patients - the ability of ...
(Date:6/26/2016)... June 27, 2016 Jazz Pharmaceuticals plc (Nasdaq: ... under the Hart-Scott-Rodino Antitrust Improvements Act of 1976, as ... Celator Pharmaceuticals, Inc. ("Celator"; Nasdaq: CPXX ) ... Daylight Time). As previously announced on May ... definitive merger agreement under which Jazz Pharmaceuticals has commenced ...
(Date:6/26/2016)... , June 27, 2016  VMS Rehab Systems, Inc. ... will take whatever measures required to build a strong ... which is currently listed on the OTC Markets-pink current ... Chairman and CEO, "We are seeing an anomaly in ... understand, not only by the Company, but shareholders and ...
Breaking Medicine Technology: