ANZ
Privacy & Security

Healthcare leads in data breaches, security issues, report finds

By Nathan Eddy
May 18, 2019
12:00 AM

The healthcare sector is still widely vulnerable to cybersecurity issues, even though the overall rate of data breaches in Australia has fallen, according to a report from the Office of the Australian Information Commissioner (OAIC).

While the average volume of 72 breaches per month was down significantly from 242 in the first full quarter of reporting, the report revealed that the healthcare sector – which reported 58 breaches—was well ahead of finance (27), legal (23), education (19) and retail (11).

Overall, the OAIC report found the leading cause of data breaches during the 12-month period was phishing, causing 153 breaches, but more than a third of all notifiable data breaches were directly due to human error.

The largest source of data breaches in the health sector was human error (52 per cent), with examples including sending personal information to the wrong recipient by email (20 per cent of human error data breaches) or mail (23 per cent).

Among the other leading sources of human error included the unintended release or publication of personal information (20 per cent) and the loss of paperwork or data storage device (23 per cent).

Malicious and criminal attacks were the second largest source of data breaches from the health sector this quarter. Cyber incidents were the most common type of attack, accounting for 58 percent, while the actions of a rogue employee or insider threat was the second most common type of attack (23 percent).

“It is very concerning to see health service providers continuing to be targeted and successfully breached by attackers,” Sophos ANZ managing director John Donovan said in a statement. “It goes without saying that this industry is dealing with incredibly sensitive and personal data and, as such, has a huge responsibility to the people of Australia to protect their data effectively.

Donovon commented that the report should serves as a wakeup call to the healthcare industry to implement more robust security practices in order to protect the “extremely sensitive” data with which they are entrusted.

Data breaches involving personal information may be prevented through effective training and enhanced systems, analysis of the first 12 months of mandatory notifications revealed.

“By understanding the causes of notifiable data breaches, business and other regulated entities can take reasonable steps to prevent them,” Australian Information Commissioner and Privacy Commissioner Angelene Falk said in a statement. “Our report shows a clear trend towards the human factor in data breaches, so training and supporting your people and improving processes and technology are critical to keeping customers’ personal information safe.”

Topics: 
Privacy & Security

More regional news

A nurse and a senior patient using a digital tablet

Dashboards, automation on top of palliative care nurses' wishlist

By
Adam Ang
December 10, 2024
A pharmacist holding a digital tablet doing an inventory

Digital pharmacy ordering enabled in Victoria and more briefs

By
Adam Ang
December 08, 2024
A nurse checking a patient record on a digital tablet

Te Whatu Ora proposes to axe a third of data, digital roles

By
Adam Ang
December 01, 2024
Want to get more stories like this one? Get daily news updates from Healthcare IT News.
Your subscription has been saved.
Something went wrong. Please try again.

Top Story

A nurse and a senior patient using a digital tablet
Dashboards, automation on top of palliative care nurses' wishlist

Most Read

Majority of cyberattacks are through third-party vendors
Cyberattack roundup: Ransomware hits Georgia hospital and Colorado pathology services
Google sets mandatory MFA deadline for all cloud accounts
What Trump's election means for healthcare
HIMSS launches veterans health IT workforce program
Protect your IoMT devices against evolving cyberattacks

Research

White Papers

More Whitepapers

Patient Engagement
Patient Engagement
Financial/Revenue Cycle Management

Webinars

More Webinars

Imaging
Interoperability
Artificial Intelligence

Video

Zachary Durst at WittKiefferFuturistic human medical interface Photo by Nattapon Kongbunmee/iStock/Getty Images Plus
AI officers becoming more prevalent in healthcare
Muhammad Babar at the Pakistan Ministry of Health_Las Vegas skyline Photo by halbergman/E+/Getty Images
How Pakistan is tackling some key digital health challenges
Aashima Gupta at Google_Doctor typing on computer Photo by Everyday better to do everything you love/iStock/Getty Images Plus
Physicians can get back to patient care with genAI
Chike Okeke at Concord Technologies_Healthcare Cybersecurity Forum 2024
Safeguarding PHI through cloud security controls

More Stories

Aashima Gupta at Google_Doctor typing on computer Photo by Everyday better to do everything you love/iStock/Getty Images Plus
Physicians can get back to patient care with genAI
A person placing a medical test tube inside a plastic bag
Korea starts recruiting for 1 billion bio data project
Healthcare workers in meeting
Healthcare execs more optimistic heading into the new year, survey finds
Business people shaking hands at a meeting
Predictions for mergers and acquisitions in 2025
Chike Okeke at Concord Technologies_Healthcare Cybersecurity Forum 2024
Safeguarding PHI through cloud security controls
Russ Graney of Aidin on AI
2025: The 'great tech reckoning' and the 'real' AI revolution
healthcare worker with headset using a computer
Streamline call center operations with automation
Stethoscope resting on tablet
HIMSSCast: Nurses want AI to enhance patient interactions