Posted in Breaches

Healthcare IT pros overconfident about breach detection capabilities, survey shows

Chris Nerney
Chris Nerney, Contributing Writer |
Healthcare IT pros overconfident about breach detection capabilities, survey shows

Healthcare IT professionals are “overconfident in their ability to quickly collect the data needed to identify and remediate a cyberattack,” concludes a new study commissioned by a cybersecurity vendor.
The study conducted by Dimensional Research on behalf of enterprise security vendor Tripwire evaluated the confidence of IT professionals in several industries regarding the effectiveness of seven key security controls that must be in place to quickly detect a cyberattack in progress.
While 49 percent of survey respondents said they knew exactly how long it would take their vulnerability scanning systems to generate an alert if unauthorized devices were detected on their networks, 90 percent believe they would be alerted within hours.
However, Tripwire noted, Verizon’s 2016 Data Breach Investigations Report shows that while 63 percent of successful healthcare system compromises occurred in just minutes, 56 percent of data breaches took healthcare IT months to detect.
“There’s no argument that these basic controls work and contribute directly to an organization’s cyber security, yet the research shows they are not in place at enough healthcare organizations,” Tim Erlin, senior director of IT security and risk strategy at Tripwire, said in a press release. “This is occurring at a time when the healthcare industry is facing unique cyber threats, from physical theft to sophisticated ransomware campaigns.”
The failure of healthcare organizations to enact basic security controls also raises concerns about protecting data and records in an increasingly interoperable healthcare world. For example, a hospital with lax security controls could be a successful target of malware. If the hospital unknowingly shares a patient’s malware-infected digital records with another hospital system without proper security, that second hospital could be infected.
Tripwire’s security report comes shortly after another analysis gave the healthcare sector a failing grade for risk assessment.