Stories
Slash Boxes
Comments

SoylentNews is people

posted by Fnord666 on Wednesday September 25 2019, @12:39AM   Printer-friendly
from the protect-what's-valuable dept.

Arthur T Knackerbracket has found the following story:

When hospitals are hacked, the public hears about the number of victims -- but not what information the cybercriminals stole. New research from Michigan State University and Johns Hopkins University is the first to uncover the specific data leaked through hospital breaches, sounding alarm bells for nearly 170 million people.

"The major story we heard from victims was how compromised, sensitive information caused financial or reputation loss," said John (Xuefeng) Jiang, lead author and MSU professor of accounting and information systems. "A criminal might file a fraudulent tax return or apply for a credit card using the social security number and birth dates leaked from a hospital data breach."

Until now, researchers have not been able to classify the kind or amount of public health information leaked through breaches; thus, never getting an accurate picture of breadth or consequences.

The findings, published in Annals of Internal Medicine, encompass 1,461 breaches that happened between Oct. 2009 and July 2019.

[...] With a newfound understanding of what explicit data was leaked -- and how many over the last decade were affected -- the researchers offer hospitals and health providers suggestions on how to better protect patients' sensitive information.

The researchers suggest that the Department of Health and other regulators formally collect the types of information compromised in a data breach to help the public assess the potential damages. Hospitals and other healthcare providers, Jiang said, could effectively reduce data breach risks by focusing on securing information if they have limited resources. For example, implementing separate systems to store and communicate sensitive demographic and financial information.

John (Xuefeng) Jiang, Ge Bai. Types of Information Compromised in Breaches of Protected Health Information. Annals of Internal Medicine, 2019; DOI: 10.7326/M19-1759


Original Submission

 
This discussion has been archived. No new comments can be posted.
Display Options Threshold/Breakthrough Mark All as Read Mark All as Unread
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.
  • (Score: 2) by bzipitidoo on Wednesday September 25 2019, @12:09PM

    by bzipitidoo (4388) on Wednesday September 25 2019, @12:09PM (#898458) Journal

    "sensitive ... financial information" narrows it down a lot, doesn't it? The article is talking about hospitals in the US, the nation with the most insanely expensive medical care in the world. Harder to gouge patients to the max without good financial information on them. And of course they must keep very extensive and detailed itemized lists of all charges and payments made. That's essential for a fee for service system. I wonder how many hospitals check their patients' credit scores.

    Starting Score:    1  point
    Karma-Bonus Modifier   +1  

    Total Score:   2