12 Jan 2017
The healthcare sector was dealt a rough cybersecurity hand in 2016. Department of Health and Human Services’, which tracks all reported breaches in the healthcare field, recorded 310 incidents for the year (affecting a minimum of 500 people in each case). All together, these breaches added up to affect a staggering 16.1 million people. The chart below, pulled from the Department of Health and Human Services, lists the 10 biggest healthcare breaches of 2016.
We previously profiled Banner Health and the impact it had on the healthcare industry; this turned out to be the biggest breach of the year.
You’ll notice that the overwhelming majority of these attacks are of the hacking/IT Incident category, or in other words, cyber-attacks. Gov Info Security reports that, “Since federal regulators began keeping track of major health data breaches in September 2009, they’ve listed 1,785 breaches affecting nearly 171 million individuals on the official tally. Of those, only 258 breaches are listed as hacking/IT incidents, but those affected a whopping 129 million individuals.”
|Business||State||Individuals Affected||Submission Date||Type of Breach|
|Banner Health||AZ||3,620,000||8/3/16||Hacking/IT Incident|
|Newkirk Products, Inc.||NY||3,466,120||8/9/16||Hacking/IT Incident|
|21st Century Oncology||FL||2,213,597||3/4/16||Hacking/IT Incident|
|Valley Anesthesiology Consultants, Inc. d/b/a Valley Anesthesiology and Pain Consultants||AZ||882,590||8/12/16||Hacking/IT Incident|
|County of Los Angeles Departments of Health and Mental Health||CA||749,017||12/16/16||Hacking/IT Incident|
|Bon Secours Health System Incorporated||MD||651,971||8/12/16||Unauthorized Access/Disclosure|
|Peachtree Orthopedic Clinic||GA||531,000||11/18/16||Hacking/IT Incident|
|California Correctional Health Care Services||CA||400,000||5/15/16||Theft|
|Community Health Plan of Washington||WA||381,504||12/21/16||Hacking/IT Incident|