Should we improve Internet security before putting more secure stuff on the Internet?
Since last summer, four major medical-themed hackings have been discovered somewhere in America, in addition to the seemingly endless stream of new retail and bureaucratic hackings reported every week or so – and finally, the healthcare industry is growing into the realization that if it’s going to store confidential data on hackable networks, maybe it ought to make those networks less hackable, too.
Scary stuff
It’s bad enough that last week, Larry Ponemon of the Ponemon Institute and Rick Kam of ID Experts wrote an op-ed going so far as to suggest that these “escalating cyberattacks threaten U.S. healthcare systems. … Imagine a hostile nation-state with your psychiatric records. Or an organized crime ring with your child’s medical file. Or a disgruntled employee with your medical insurance information.”
Indeed, if you’re an American, there’s a 1 in 3 chance your health records have already been hacked – and remember that Anthem, Premera and CareFirst almost certainly are not the only health-insurance providers to have been hacked, merely the only ones to have discovered and admitted this so far.
From a thieving hacker’s perspective, stolen medical records are much more valuable than financial records. Jim Trainor, from the FBI’s cyber security division, said this about the black-market value of various types of stolen data bought and sold by identity thieves: “Credit cards can be say five dollars or more, where [protected health information] records can go from 20 say up to — we’ve even seen $60 or $70.”
And from a victim’s perspective, medical identity theft is probably the worst kind of all. In February, when the Medical Identity Fraud Alliance (MIFA) released its Fifth Annual Study on Medical Identity Theft, the study reached some sobering conclusions:In 2014, there were more than 2 million victims of medical identity theft in the United States, almost half a million more than in 2013.
What’s worse is that, compared to other forms of identity theft, victims of medical identity theft are more likely to suffer personal financial consequences as a result.
Click here to read the full article.
June 1, 2015 by Jennifer Abel, ConsumerAffairs