Between 2009-2022, there have been more than 5,150 healthcare data breaches of 500 or more recorded, impacting more than 382 million medical records.
Since 2020, healthcare data breach costs have increased 53.3%. For the 13th year in a row, the healthcare industry reported the most expensive data breaches, at an average cost of USD 10.93 million.
According to a study by Healthcare IT News, 73.6% of surveyed hospital staff had obtained the password of another medical staff member.
HOW ENZOIC HELPS
Healthcare security breaches continue to rise each year and are continuously a major target because medical devices are increasingly connected, data needs to be shared and accessible to staff, legacy systems are prevalent in IT infrastructure, and healthcare records contain sensitive valuable personal and payment information.
This inevitably opens the door for bad actors to exfiltrate ePHI and install ransomware. HIPAA’s Privacy Rule requires standards for adequate protection and sets forth civil penalties for organizations who fail to prevent unauthorized access to data.
Enzoic’s solutions are driven by continually updated, proprietary threat intelligence. This helps healthcare organizations tackle authentication issues by adhering to best practices outlined by HITRUST and NIST to screen and block the use of compromised passwords and credentials.
Prevent harm related to third-party data breaches, allowing you to focus on delivering quality patient care.
Conserve valuable IT resources while protecting hospitals, health systems, and medical devices by continuously monitoring data for exposure in real-time without putting patient information in jeopardy.
Automatically and confidently follow HITRUST® control reference 01.d, which requires healthcare organizations to maintain an updated list of compromised passwords.
“The US Cybersecurity and Infrastructure Security Agency (CISA) and UK’s National Cyber Security Centre (NCSC) have seen large-scale ‘password spraying’ campaigns against healthcare bodies and medical research organizations.”
Password sharing is a HIPAA violation: A HIPAA password sharing policy should prohibit hospitals, doctors, nurses, and employees from sharing passwords that provide access to electronic Protected Health Information (ePHI).
Each day, healthcare organizations get threat actors banging at their digital doors on a hunt for sensitive information. Get protection.
According to the 2021 HIMSS report, budget limitations, phishing attacks, and ransomware continue to threaten the healthcare industry.
Password security is a significant issue in hospitals and healthcare organizations. Download this eBook to learn how institutions and providers tackle these concerns.