Breach report shows modest improvements

[InfoSec News <alerts () infosecnews org>]

http://www.healthcareitnews.com/news/new-healthcare-breach-report-sheds-light

By Erin McCann
Associate Editor
Healthcare IT News
February 13, 2013

A new report suggests some improvement with regard to healthcare data breaches 
in 2012, compared with previous years. Still, the study shows there's much work 
to be done.

The report, conducted by IT security assessment provider Redspin, examines some 
538 incidents affecting more than 21.4 million individuals since the interim 
breach notification rule under the HITECH Act went into effect in August 2009.

Although findings show a massive 77 percent decline in the number of patient 
records compromised in breaches, that's accompanied by a 21.5 percent increase 
in the number of large data breaches. According to the report, more than 2.4 
million patients were impacted by some 146 breaches investigated by the 
Department of Health and Human Services in 2012. That's no small number.

"While the breach data shows improvement year-over-year, we caution against 
complacency," said Daniel W. Berger, president and CEO of Redspin, in a 
statement. "Clearly the increase in the number of health providers who 
conducted HIPAA Security Risk Assessments in 2012 had a positive impact. But 
continuous and durable security requires continuing investment and effort – it 
is an ongoing process of vigilance."

[...]

______________________________________________
Visit the InfoSec News Security Bookstore
Best Selling Security Books and More!
http://www.shopinfosecnews.org