The US witnesses significant number of healthcare breaches in 2017
Up to two billion files containing the personal data of US citizens were leaked in 2017. An eyewatering 551 breaches affected organisations with over 1.9 billion files leaked, according to research Citrix ShareFile collected from the Privacy Rights Clearinghouse and the 2017 Cost of Data Breach Study by the Ponemon Institute, in partnership with IBM Security.
The most common type of breach in 2017 was hacking, causing 819 million files to be released, with unintended disclosure and physical loss found to be the second and third most common. These shocking figures do not include the many companies that have either not disclosed the number of files affected or did not have access to that information.
The most targeted and vulnerable industry was healthcare, which recorded 328 leaks (nearly 60% of all leaks in 2017) at an estimated cost of almost US$1.2 billion and put the personal information of both patients and health care companies in jeopardy.
Citrix ShareFile spoke to experts who explained that healthcare was targeted due to personal data such as social security numbers and payment information being more high value information for cyber criminals.
Suffering the largest breach in the healthcare industry was the Commonwealth Health Organization, where 697,800 records were reported compromised. Of the 328 leaks, 46% came through hacking or malware, 33% were a result of unintended disclosure, 18% came from physical loss and a combined 4% came from insider leaks and portable devices.
- San Francisco Bay are set to develop a new hospital as a result of a $500mn donation
- Health employment is set to rise by 11.5mn by 2026, report finds
- Could MetroHealth’s ‘hospital in a park’ pave the way for a greener future?
How were other sectors affected?
While healthcare recorded the most breaches, many other industries were also greatly affected by cybercrime, including the following top three:
- Technology: 48 breaches amounting to 1,752,323,557 files at an estimated cost of $1,187,360,000.
- Retail: 40 breaches representing 4,721,736 records at an estimated cost of $144,800.000
- Finance: 40 breaches and 146,020,981 records at an estimated cost of $144,800,000.
Experts that Citrix ShareFile worked with commented that 2017 had an unprecedented and far more severe impact than previous years. Charlie Porter, an agent at Farmers Insurance, explained that the last year has been “the worst in history for large-scale data breaches,” adding that the “effects of the incidents could take years or decades to deal with.”
Although the cybersecurity industry is now one of the top in the world, the public’s personal data is still at risk. Pieter VanIperen from Code Defenders commented on the tough challenge facing companies in 2017 and beyond, explaining that “a hacker has to be right once; a cybersecurity team has to be right every single time.”
Summarising the state of cybersecurity, Paul Moreno, a cybersecurity expert and Bugcrowd advisor, said, “this will forever be a game of Spy vs. Spy,” as for every vulnerability or attack vector closed, another one opens.
Allyson Kuegel, customer security assurance analyst at Citrix, said of the findings, “these figures show that despite organisations and individuals being more vigilant, businesses are facing more challenges than ever before as individuals exploit any possible vulnerability they can.
“In the technological era, people are more willing than ever to supply data, whether it is on personal social media accounts or through transactions they make. It is not just online where companies face potential problems, but also in ensuring their own organisations invest in the latest software and have effective internal protocols.
“The battle against cybercrime and data breaches will continue for a long time as hackers look to keep one step ahead of the latest security services.”
Skin Analytics wins NHSX award for AI skin cancer tool
An artificial intelligence-driven tool that identifies skin cancers has received an award from NHSX, the NHS England and Department of Health and Social Care's initiative to bring technology into the UK's national health system.
NHSX has granted the Artificial Intelligence in Health and Care Award to DERM, an AI solution that can identify 11 types of skin lesion.
Developed by Skin Analytics, DERM analyses images of skin lesions using algorithms. Within primary care, Skin Analytics will be used as an additional tool to help doctors with their decision making.
In secondary care, it enables AI telehealth hubs to support dermatologists with triage, directing patients to the right next step. This will help speed up diagnosis, and patients with benign skin lesions can be identified earlier, redirecting them away from dermatology departments that are at full capacity due to the COVID-19 backlog.
Cancer Research has called the impact of the pandemic on cancer services "devastating", with a 42% drop in the number of people starting cancer treatment after screening.
DERM is already in use at University Hospitals Birmingham and Mid and South Essex Health & Care Partnership, where it has led to a significant reduction in unnecessary referrals to hospital.
Now NHSX have granted it the Phase 4 AI in Health and Care Award, making DERM available to clinicians across the country. Overall this award makes £140 million available over four years to accelerate the use of artificial intelligence technologies which meet the aims of the NHS Long Term Plan.
Dr Lucy Thomas, Consultant Dermatologist at Chelsea & Westminster Hospital, said: “Skin Analytics’ receipt of this award is great news for the NHS and dermatology departments. It will allow us to gather real-world data to demonstrate the benefits of AI on patient pathways and workforce challenges.
"Like many services, dermatology has severe backlogs due to the COVID-19 pandemic. This award couldn't have come at a better time to aid recovery and give us more time with the patients most in need of our help.”