Looking to 2015, Phishing & Malware Expected to Rise

The healthcare industry has the perfect storm for digital attackers.  High valued assets (PHI & PII) and low barrier to entry (less than mature information security).  Professionals from around the industry are expecting a rise in attacks on healthcare data, specifically phishing and malware attacks in 2015.

“Lynn Sessions, a partner with the law firm BakerHostetler, cited an uptick in cyber-attacks targeting health care. Sessions, who specializes in health care data security and breach response, said much of her firm’s activity once focused on unencrypted devices that were lost or stolen, unencrypted backup tapes and email delivered to the wrong recipient. Those incidents were typical of the years immediately following the passage of the HITECH Act, which in 2009 established a breach notification duty for HIPAA-covered entities. But since the beginning of 2014, the rise of hacking and malware attacks has become “very noticeable,” Sessions said.

That trend seems likely to carry over into 2015.

Scott Koller, a lawyer at BakerHostetler who focuses on data security, data breach response and compliance issues, said he believes two types of attacks will see increased prevalence next year:

  • Phishing; and
  • Ransomware.”

Another point of emphasis for organizations is a shift from data prevention to incident response.

Health care providers next year may also invest in incident response management, as well as prevention.

Mahmood Sher-Jan, vice president and general manager of the RADAR Product Unit at ID Experts, said most people accept that security incidents are a certainty, which places the emphasis on risk reduction and response. ID Experts provides software and services for managing incident response.

Chief information security officers and health care IT security personnel “recognize now that their success is going to be measured on how they manage incident response and minimize the impact on reputation and churn,” Sher-Jan said.”

You can read the full article here:  Health Care Industry To See Phishing, Malware Attacks Intensify in 2015

About Data Breach Watch Administrator

No comments yet.

Leave a Reply