A Tale of 2 Health Data Breaches: Persistent Challenges

Protecting Legacy Systems, Email Proves Difficult for Many … Keeping legacy information systems secure from ransomware attacks, as in the RDH breach, and other intrusions is an ongoing challenge, says Tom Walsh, president of consulting firm tw-Security. “Retired legacy systems normally have limited access and are no longer considered a critical application,” Walsh says. “Therefore, […]

Read More

Ransomware Attacks Hit 2 More Healthcare Organizations

Security Advisers Offer Risk Mitigation Tips … Healthcare organizations should take a number of critical steps to prevent falling victim to ransomware, says Tom Walsh, president of consulting firm tw-Security. “The most important step in prevention of ransomware is workforce awareness,” he says. “Because phishing emails are common and getting more sophisticated, employees could be easily […]

Read More

The Insider Threat – Lessons From 3 Incidents

How to Detect, Prevent Inappropriate Access by Authorized Users … For hospitals and clinics, trying to identify unauthorized access to patient information “is like looking for a needle in a haystack,” says Tom Walsh, president of the consultancy tw-Security. “That’s why an advanced audit tool – application/program – is needed. It acts like a large […]

Read More

Health Data Breach Update: What Are the Causes?

Phishing Still a Major Culprit, But Other Challenges Emerge … “Hackers have stepped up their efforts during the pandemic – tricking people – especially telecommuters who may be new to the ‘work at home’ concept – to click on a link, open an attachment, download an app, etc.,” says Tom Walsh, president of consulting firm tw-Security. … “We […]

Read More

GAO: HHS Has Failed to Act on Security Recommendations

Watchdog Report Spotlights Steps Agency Has Not Yet Taken … “The security risk analysis is often not done or not done correctly, as evidenced by the corrective action plans after HHS Office for Civil Rights investigates a large data breach,” notes Susan Lucci, senior privacy and security consultant at consultancy tw-Security. That inaction could be related […]

Read More

Genetic Testing Lab Hack Affects 233,000

Second Largest Health Data Breach So Far This Year … “Labs are handling more tests than in normal times, increasing the amount of patient data stored, processed or transmitted,” says Keith Fricke, principal consultant at tw-Security. “Criminals may see this as another source of information to steal for financial gain. Additionally, IT departments continue to […]

Read More

When Will COVID-19-Related Scams Show Up on Breach Tally?

Ransomware Attacks Recently Added to Health Data Breach Tally Predated the Virus Surge … “I think it will be a long time before COVID-19-related incidents appear on the HHS website,” predicts Tom Walsh, president of consulting firm tw-Security. “Hospitals are trying to cope with the influx of patients, setting up tent hospitals and COVID-19 testing […]

Read More

Health Data Breach Tally Spikes in Recent Weeks

Will Hacking Incidents, Other Breaches Continue to Rise During COVID-19 Pandemic? … “I believe hacking will continue to dominate reported breaches,” says Tom Walsh, president of consulting firm tw-Security. “From a criminal perspective, hacking has a high ‘return on investment.’ There are many easy-to-use hacking tools available. Hackers used to need a high skill set […]

Read More