HEAL Security Healthcare Cybersecurity Roundup: September 13, 2023

Don’t miss this week’s healthcare cybersecurity roundup from HEAL Security Dispatch.

In this edition:

Recent court decision broadens data breach liability

A recent appeals court ruling allows plaintiffs to pursue damages for data breaches, even without proof of improper use of the compromised data, according to news site Business Insurance.

The 2nd U.S. Circuit Court of Appeals in New York established that the risk of future harm can be considered a concrete injury eligible for damages. This follows a trend of similar rulings that have broadened the scope of "concrete injury."

Courts are increasingly favorable to data breach plaintiffs, making effective cyber risk management essential through encryption and access controls.

?

Healthcare Internet of Things market to grow by $161.6B

The Internet of Things (IoT) market in the healthcare sector is poised for significant growth, with a projected increase of $161.6 billion from 2022 to 2027, TechNavio reports.

However, a central concern is cybersecurity threats, which can compromise sensitive healthcare data. Traditional anti-malware solutions may be inadequate, and cloud-based cybersecurity options raise security concerns.

Despite these challenges, IoT-driven medical devices are expected to flourish, enabling personalized care, remote patient monitoring, and research data collection.

?

IBM notifies Janssen CarePath customers of data breach

IBM, a service provider to Johnson & Johnson Health Care Systems, reported a data breach on the Janssen CarePath platform that exposed personal data such as names, contact information, birthdates, health insurance details, and medication information.

IBM has offered one year of credit monitoring to affected individuals and recommended vigilance.

This incident underscores the critical importance of data security in the healthcare sector and highlights the need for regular security assessments. Similar breaches have affected organizations like Apria, LabCorp, Quest Diagnostics, and Anthem.

?

Healthcare cyber attacks surge 50% during COVID-19 crisis

The Department of Health and Human Services reported a nearly 50% surge in cyber attacks on hospitals and healthcare providers, possibly due to the COVID-19 crisis, according to news site Healthcare Finance.

Between February and May this year, 132 breaches were documented. Hackers target medical devices lacking built-in security, exploiting the rise in remote care during the pandemic. Temporary healthcare facilities are also susceptible.

Financial gain is the primary motive, with hackers selling patient data or demanding multimillion-dollar ransoms.

?

To receive daily updates on global healthcare cybersecurity, subscribe to our information and insights service at healsecurity.com/subscribe.

Also visit the HEAL Security YouTube Channel: https://lnkd.in/gqaqKZae