Excerpt from India Technology News Article, Published on July 31st, 2024
Healthcare organizations are increasingly at risk of data breaches, as revealed by Metomic’s latest report, “Healthcare Data Crisis – Uncovering the Alarming Gaps in Data Security and Compliance.” According to the report, 25% of publicly shared files owned by healthcare organizations contain Personally Identifiable Information (PII). Additionally, 68% of private files shared externally and 77% of private files shared internally contain PII, indicating significant vulnerabilities in current data security practices.
Metomic, a leading data security and Data Loss Prevention (DLP) solution provider, highlights that insecure file-sharing practices are a major risk factor for data breaches in the healthcare sector. The report underscores the urgent need for robust data security and DLP tools, especially given the trend of increasing data breaches in the industry. In 2021, the healthcare industry experienced more data breaches than any previous year, a trend that has continued to rise, with over 133 million records exposed in 2023.
One notable incident in 2023 was a ransomware attack on Change Healthcare, which disrupted payments to hospitals, pharmacies, and healthcare providers for over a week, potentially costing UnitedHealth between $1.35 billion and $1.6 billion. This incident highlights the severe financial and operational impacts of data breaches on healthcare organizations.
Rich Vibert, co-founder and CEO of Metomic, emphasizes the necessity for healthcare organizations to adopt comprehensive data security and DLP platforms. These platforms not only protect sensitive information but also ensure that employees do not inadvertently share data or grant unnecessary access. Metomic’s solutions enable security teams to monitor where sensitive data is stored and shared, and who has access to it, helping prevent data leaks before they escalate into major breaches.
Another alarming finding from Metomic’s research is the presence of Payment Card Industry (PCI) information, such as credit card numbers and banking details, in publicly shared and externally shared files. Even though only 1% of publicly shared files contain PCI data, this still represents a significant risk given the sensitive nature of financial information.
In light of the increasing number of data breaches in the healthcare sector, it is imperative that PCI data be rigorously monitored and protected. Healthcare organizations must prioritize data security and implement effective DLP solutions to safeguard sensitive information and maintain regulatory compliance.
To delve deeper into this topic, please read the full article on India Technology News.
