Posts tagged ‘biotech/digital health/healthcare IT’

Sep 10

58% Of All Healthcare Breaches Are Initiated By Insiders

58% of healthcare systems breach attempts involve inside actors, which makes this the leading industry for insider threats today.
Ransomware leads all malicious code categories, responsible for 70% of breach attempt incidents.
Stealing laptops from medical professionals’ cars to obtain privileged access credentials to gain access and install malware on healthcare networks, exfiltrate valuable data or sabotage systems and applications are all common breach strategies.

These and many other fascinating insights are from Verizon’s 2018 Protected Health Information Data Breach Report (PHIDBR). A copy of the study is available for download here (PDF, 20 pp., no opt-in). The study is based on 1,368 incidents across 27 countries. Healthcare medical records were the focus of breaches, and the data victims were patients and their medical histories, treatment plans, and identities. The data comprising the report is a subset of Verizon’s Annual Data Breach Investigations Report (DBIR) and spans 2016 and 2017.

Why Healthcare Needs Zero Trust Security To Grow

One of the most compelling insights from the Verizon PHIDBR study is how quickly healthcare is becoming a digitally driven business with strong growth potential. What’s holding its growth back, however, is how porous healthcare digital security is. 66% of internal and external actors are abusing privileged access credentials to access databases and exfiltrate proprietary information, and 58% of breach attempts involve internal actors.

Solving the security challenges healthcare providers face is going to fuel faster growth. Digitally-enabled healthcare providers and fast-growing digital businesses in other industries are standardizing on Zero Trust Security (ZTS), which aims to protect every internal and external endpoint and attack surface. ZTS is based on four pillars, which include verifying the identity of every user, validating every device, limiting access and privilege, and learning and adapting using machine learning to analyze user behavior and gain greater insights from analytics.

Identities Need to Be Every Healthcare Providers’ New Security Perimeter

ZTS starts by defining a digital business’ security perimeter as every employees’ and patients’ identity, regardless of their location. Every login attempt, resource request, device operating system, and many other variables are analyzed using machine learning algorithms in real time to produce a risk score, which is used to empower Next-Gen Access (NGA).

The higher the risk score, the more authentication is required before providing access. Multi-Factor Authentication (MFA) is required first, and if a login attempt doesn’t pass, additional screening is requested up to shutting off an account’s access.

NGA is proving to be an effective strategy for thwarting stolen and sold healthcare provider’s privileged access credentials from gaining access to networks and systems, combining Identity-as-a-Service (IDaaS), Enterprise Mobility Management (EMM) and Privileged Access Management (PAM). Centrify is one of the leaders in this field, with expertise in the healthcare industry.

NGA can also assure healthcare providers’ privileged access credentials don’t make the best seller list on the Dark Web. Another recent study from Accenture titled, “Losing the Cyber Culture War in Healthcare: Accenture 2018 Healthcare Workforce Survey on Cybersecurity” found that 18% of healthcare employees are willing to sell confidential data to unauthorized parties for as little as $500 to $1,000. 24% of employees know of someone who has sold privileged credentials to outsiders, according to the survey. By verifying every login attempt from any location, NGA can thwart the many privilege access credentials for sale on the Dark Web.

The following are the key takeaways from Verizon’s 2018 Protected Health Information Data Breach Report (PHIDBR):

58% of healthcare security breach attempts involve inside actors, which makes it the leading industry for insider threats today. External actors are attempting 42% of healthcare breaches. Inside actors rely on their privileged access credentials or steal them from fellow employees to launch breaches the majority of the time. By utilizing NGA, healthcare providers can get this epidemic of internal security breaches under control by forcing verification for every access request, anywhere, on a 24/7 basis.

Most healthcare breaches are motivated by financial gain, with healthcare workers most often using patient data to commit tax return and credit fraud. Verizon found 876 total breach incidents initiated by healthcare insiders in 2017, leading all categories. External actors initiated 523 breach incidents, while partners initiated 109 breach incidents. 496 of all breach attempts are motivated by financial gain across internal, external and partner actors. Internal actors are known for attempting breaches for fun and curiosity-driven by interest in celebrities’ health histories that are accessible from the systems they use daily. When internal actors are collaborating with external actors and partners for financial gain and accessing confidential health records of patients, it’s time for healthcare providers to take a more aggressive stance on securing patient records with a Zero Trust approach.

Abusing privileged access credentials (66%) and abusing credentials and physical access points (17%) to gain unauthorized access comprise 82.9% of all misuse-based breach attempts and incidents. Verizon’s study accentuates that misuse of credentials and the breaching of physical access points with little or no security is intentional, deliberate and driven by financial gain the majority of the time. Internal, external and partner actors acting alone or in collaboration with each other know the easiest attack surface to exploit are accessed credentials, with database access being the goal half of the time. When there’s little to no protection on web application and payment card access points to a network, breaches happen. Shutting down privilege abuse starts with a solid ZTS strategy based on NGA where every login attempt is verified before access is granted and anomalies trigger MFA and further user validation. Please click on the graphic to expand it for easier reading.

70.2% of all hacking attempts are based on stolen privileged access credentials (49.3%) combined with brute force to obtain credentials from POS terminals and controllers (20.9%). Hackers devise ingenious ways of stealing privileged access credentials, even resorting to hacking a POS terminal or controllers to get them. Healthcare insiders also steal credentials to gain access to mainframes, servers, databases and internal systems. Verizon’s findings below are supported by Accenture’s research showing that 18% of healthcare employees are willing to sell privileged access credentials and confidential data to unauthorized parties for as little as $500 to $1,000. Please click on the graphic to expand it for easier reading.

Hospitals are most often targeted for breaches using privileged access credentials followed by ambulatory health care services, the latter of which is seen as the most penetrable business via hacking and brute force credential acquisition. Verizon compared breach incidents by North American Industry Classification System (NAICS) and found privileged credential misuse is flourishing in hospitals where inside and outside actors seek to access databases and web applications. Internal, external and partner actors are concentrating on hospitals due to the massive scale of sensitive data they can attain with stolen privileged access credentials and quickly sell them or profit from them through fraudulent means. Verizon also says a favorite hacking strategy is to use USB drives to exfiltrate proprietary information and sell it to health professionals intent on launching competing clinics and practices. Please click on the graphic to expand it for easier reading.

Conclusion

With the same intensity they invest in returning patients to health, healthcare providers need to strengthen their digital security, and Zero Trust Security is the best place to start. ZTS begins with Next-Gen Access by not trusting a single device, login attempt, or privileged access credential for every attack surface protected. Every device’s login attempt, resource request, and access credentials are verified through NGA, thwarting the rampant misuse and hacking based on comprised privileged access credentials. The bottom line is, it’s time for healthcare providers to get in better security shape by adopting a Zero Trust approach.

Nov 14

2 Comments

5 Insights & Predictions On Disruptive Tech From KPMG’s 2015 Global Innovation Survey

15% of U.S. tech leaders see biotech/digital health/healthcare IT as the most disruptive consumer-driven technology in the next three years.
13% of U.S. tech leaders predict data and analytics will be the most disruptive enterprise technology in three years.
Global tech leaders predict cloud computing (11%), mobile platforms and apps (9%), Internet of Things (IoT)/machine-to-machine (M2M) (9%) and data and analytics (9%) will be the most disruptive technologies over the next three years.

These and many other insights are from the fourth annual 2015 Global Technology Innovation Survey released via webcast by KPMG last month. KPMG surveyed 832 technology industry business leaders globally, with the majority of being C-level executives (87%). Respondents were selected from a broad spectrum of businesses including tech industry startups, mid- and large-scale enterprises, angel investors and venture capital firms. For an in-depth explanation of the survey methodology, please see slides 6 and 7 of the webinar presentation. The goals of the survey include spotting disruptive technologies, identifying tech innovation barriers and opportunities, and tracking emerging tech innovation hubs.

The five insights and predictions from the report include the following:

Global tech leaders predict cloud computing (11%), mobile platforms and apps (9%), Internet of Things (IoT)/M2M (9%) and data and analytics (9%) will be the most disruptive technologies over the next three years. U.S. tech leaders predict biotech/digital health/healthcare IT (15%), data and analytics (14%) and cloud computing (14%) will be the three most disruptive technologies over the next three years. Chinese tech leaders predict artificial intelligence/cognitive computing (15%) will be the most disruptive technology impacting the global business-to-consumer (B2C) marketplace.

The three most disruptive technologies predicted to drive business transformation in enterprises over the next three years in the U.S. include cloud computing (13%), data and analytics (13%), and cyber security (10%). Japanese tech leaders predict artificial intelligence/cognitive computing will have the greatest effect (23%), and 14% of Chinese tech leaders predict the Internet of Things/M2M (14%) will have the greatest impact on business transformation in their country. The following table compares global tech leader’s predictions of which technologies will disrupt enterprises the most and drive business transformation over the next three years.

Improving business efficiencies/higher productivity, and faster innovation cycles (both 20%) are top benefits tech leaders globally are pursuing with IoT strategies. The point was made on the webinar that in Asia, consumers are driving greater adoption of IoT-based devices to a richer contextual customer experience. Greatest challenges globally to adopting IoT is technology complexity (22%), lack of experience in the new technology or business model (16%), and both displacement of the existing tech roadmap and security (both 13%).

Analytics are most often adopted to gain faster innovation cycles (25%), improved business efficiencies and higher productivity (17%) and more effective R&D (13%). The greatest challenges are technology complexity (20%) and lack of experience in the new technology or business model (19%),

Tech leaders predict the greatest potential revenue growth for IoT in the next three years is in consumer and retail markets (22%). IoT/M2M is also expected to see significant revenue growth in technology industries (13%), aerospace and defense (10%), and education (9%). The following graphic compares tech leader’s predictions of the industries with the greatest potential revenue growth (or monetization potential) in the next three years.