Health Care Industry Most Vulnerable to Data Breaches
With more and more patient information being stored electronically, health care organizations have become targets just as the need for more stringent and sophisticated data security becomes apparent.Incidents relating to phishing, hacking and malware were the cause of 31 percent of data security incidents during 2015, revealing a shift from 2014 when human error was the leading cause, according to a new report. Produced by the privacy and data protection team at BakerHostetler, the report analyzes data from more than 300 incidents on which the firm advised in 2015. The report looks at causes of incidents, industries most affected, and what happens after a security incident is detected--from containment, to notification, to regulatory investigations and even lawsuits. "The most concerning finding was to see that hacking/phishing/malware was the leading cause of incidents last year, especially the increase we saw in health care incidents," Lynn Sessions, partner with BakerHostetler’s privacy and data protection, told eWEEK. "We could feel the tide begin to turn in 2014, which continued into 2015. However, with the number of incidents we handle, it was surprising to see that was the leading cause."
The health care industry (23 percent) was affected more than any other. Rounding out the top three are financial services (18 percent) and education (16 percent).