A cybersecurity breach in any industry is a serious matter. Healthcare professionals are some of the most vulnerable targets. Not so long ago, one of the largest batch of data containing just over 9.2 million health insurance records was offered for sale on dark web – a huge blow for PHI. How sure are you about your records not being compromised?
Data breach and Dark Web sales are a big worry not just because of HIPAA compliance. The most profitable offering on the illegally obtained records market is healthcare provider data which can be used to forge a provider’s medical background. It is extremely alarming, considering the damage which could take place when someone fraudulently poses as a medical professional.
The data that can be obtained on dark web for approximately $500 per listing may include not just patient data, but also provider’s and their employee’s records, including their medical diplomas, doctor and DEA licenses, and official insurance documents.
Why Cybercriminals Love Targeting Healthcare providers?
Exploiting breached data goes beyond patience private information: Access to provider’s data allows criminals – hackers and buyers of data – to abuse data to grant them access to unauthorized resources:
Healthcare Provider’s Identity
A hacker compromises the corporate network of a healthcare provider to find administrative paperwork that would support a forged doctor’s identity. The hacker then sells to a buyer or intermediary (who then sells to the buyer) for a high enough price to ensure a return on investment but low enough to ensure multiple people buy the item.
The buyer poses as the stolen doctor’s identity and submits claims to Medicare or other medical insurance providers for high-end surgeries.
Patient’s Insurance Coverage
A hacker compromises a web server or credential database. The hacker then sells to a buyer for a low price due to the speed with which the login credentials can change after the compromise is discovered. The buyer uses the login information to gain access to actual medical insurance information, possibly to be combined with the forgery listings. The buyer then uses forged medical information to obtain services at the cost of the victim.
Access to Prescription Labels and Drugs
Forgeries are more numerous and are cheaper than provider data (Between $10 and $120 per record). They take the form of forged prescription labels/sales receipts and forged/stolen/scanned healthcare cards.
Managed Security Services for Healthcare Providers
With properly managed network for your medical practice, your providers and your staff can look after and help your patients better. With secure network, you can take better care of your data, your reputation, and your practice.
Reliable IT support is critical for maintaining a healthy, stable computing environment, as well as for keeping up with your IT requirements as your practice grows. Our healthcare industry expertise and experience with HIPAA compliance and various EHR software gives us the leading edge to service your IT needs, from initial computer systems and servers installation to a full range of network services and tech support options.