Cybersecurity-as-a-Service provider Critical Insight has unveiled its 2023 H1 Healthcare Data Breach Report, offering insights into the cybersecurity landscape of the healthcare sector.
The analysis is based on reported data breaches from healthcare organizations to the US Department of Health and Human Services (HHS).
The report notes an overall decrease of 15% in total breaches during the first half of 2023 compared to the latter half of 2022 – a positive development given the industry’s previous upward trend in attacks. This suggests a potential downturn in breaches for the entire year, making 2023 the lowest breach count since 2019.
However, the decline in breaches was counterbalanced by a significant 31% increase in the number of individuals affected by data breaches during H1 2023 compared to H2 2022. This surge resulted in 40 million individuals being impacted within six months, equivalent to 74% of the total affected in 2022.
Primary breach causes remain centered around hacking and IT incidents, contributing to 73% of breaches in H1 2023. Unauthorized access and disclosure followed as the second most prevalent type. Breaches due to theft, loss of records and improper disposal remained relatively minimal.
The report also highlights a shift in hacker tactics toward exploiting network server vulnerabilities, responsible for 97% of the compromised individual records. In contrast, breaches stemming from email vulnerabilities constituted only 2%.
Read more on server vulnerabilities: US Government IIS Server Breached via Telerik Software Flaw
Another noteworthy finding is the increased targeting of third-party business associates. Breaches involving business associates surpassed those impacting healthcare providers and health plans. Around 48% of compromised records were linked to business associates, compared to 43% associated with healthcare providers. Notably, 50% of individuals affected by breaches during H1 2023 were connected to a business associate.
Commenting on the report, Critical Insight’s healthcare cybersecurity strategist, John Delano, stressed the significance of proactive defense strategies and incident response planning.
“Our report found that hackers are increasingly targeting the weakest links and vulnerable points in the supply chain, specifically business associates or third-party companies, that offer services to healthcare organizations, emphasizing the importance of effective incident response planning and proactive defense strategies,” Delano explained.
In particular, the report recommends establishing incident response plans, conducting risk assessments, emphasizing cybersecurity among critical partners, securing third-party vendors and associates, and garnering board support for substantial cybersecurity investments.