An article in Healthcare Finance News recounted a recently uncovered employee’s theft of patient information at a New York hospital over a period of two years. The breach of patient addresses, dates of birth and social security numbers was detected using technology that monitors improper access to electronic patient records. The employee had received “significant privacy and security training” but allegedly chose to violate policy and pilfer the information, and sadly, this hospital is not the first and probably won’t be the last to experience this type of electronic assault.
The author stated that HHS reported an increase in cybersecurity breaches in hospital and provider networks as hackers likely took advantage of COVID-related distractions. In addition, there was a 50% increase in breaches between February and May when compared to the same time last year.
Any provider type or size can be targeted by an unscrupulous individual on the payroll or from outside the organization, and should take immediate steps to increase security monitoring of all systems storing patient information.