Privacy & Security

'DarkOverLord' ransomware accounts for nearly 30 percent of health data breaches in July

Among the breaches revealed last month, the average time to report incidents was a surprising two years.
By Tom Sullivan
August 09, 2016
02:27 PM

Cybercriminals launching ransomware attacks – and one hacker in particular known as TheDarkOverLord – represented nearly 30 percent of the 39 data breaches in July. The average time an attack went unreported, meanwhile, was a whopping two years.

That’s according to the July Breach Barometer from Databreaches.net and security specialist Protenus.  

Protenus CEO Robert Lord said that the amount and variety of attacks hackers perpetrate against healthcare organizations suggest that July’s findings may persist into the foreseeable future. 

[Also: Cybersecurity special report: Ransomware will get worse, hackers targeting whales, medical devices and IoT trigger new vulnerabilities]

Hackers actually accounted for 41 percent of attacks in June, wherein 11 million records were breached, but Lord pointed out that was the most reported to date.

Indeed, after June’s record-setting numbers, breaches and health records exposed in July 2016 settled back down to a more normal 126,930. 

The DarkOverLord garnered the biggest breach with 23,565 records and then put them on the dark web for sale. Protenus also noted that the total number of hacker attacks also included ransomware and malware incidents. 

The July Breach Barometer also uncovered interesting trends relating to government agencies, paper records and business associates.

Almost half of U.S. states had at least one breach incident, in fact. Of all the breaches, 25 percent of involved paper records and an equal percentage involved business associates.

Sign up for the Healthcare IT News Privacy & Security Update newsletter.

Healthcare providers constituted 87 percent of the July breaches and health plans made up 8 percent, while the remainder consisted of vendors and a U.S. military prison, the report said.

Perhaps the biggest surprise was how long it took healthcare organizations to report breaches. The average, Lord said, was two years and one incident even lasted six.

“Even in the industry where we generally assume that breaches go undetected for a long period of time, I found these numbers surprising,” Lord said. “We’ve created an environment where there’s no way to detect when a breach has occurred and it’s difficult to hold organizations accountable and make sure every breach is reported.” 

Twitter: @SullyHIT
Email the writer: tom.sullivan@himssmedia.com

Like Healthcare IT News on Facebook and LinkedIn

Topics: 
Privacy & Security

More regional news

Stethoscope on tablet

HIMSSCast: Prior authorization as gatekeeper

By
Susan Morse
November 01, 2024
UC Davis Medical Center and chief AI officers

CAIOs must understand policy and business strategy, in addition to healthcare and IT

By
Bill Siwicki
November 01, 2024
Dennis Chornenky of UC Davis Health on chief AI officers

Chief AI Officer: Healthcare's hot new role demands a rare combination of skill sets

By
Bill Siwicki
October 31, 2024
Want to get more stories like this one? Get daily news updates from Healthcare IT News.
Your subscription has been saved.
Something went wrong. Please try again.

Top Story

UC Davis Medical Center and chief AI officers
AI & ML Intelligence
CAIOs must understand policy and business strategy, in addition to healthcare and IT

Most Read

CommonWell adds new network members, interoperability advancements
Joint cybersecurity advisory warns of Iran-based attacks
M&A roundup: Siemens to buy Novartis imaging for $223M, and more
How AI is transforming cybersecurity, on defense and offense
Generative AI is this CISO's 'really eager intern'
HIMSSCast: Toward safer and more secure use of AI

Research

White Papers

More Whitepapers

Patient Engagement
Patient Engagement
Financial/Revenue Cycle Management

Webinars

More Webinars

Imaging
Interoperability
Artificial Intelligence

Video

Darren Lacey at Johns Hopkins_Healthcare Cybersecurity Forum 2024
How AI can boost cybersecurity
Dennis Chornenky at UC Davis Health_PART 2_AI in healthcare concept art Photo by Just_Super/E+/Getty Images
Chief AI officer: Multidimensional tech needs multidimensional leadership
Dr Der-Yang Cho at China Medical University Hospital_HIMSS24 APAC
A Taiwanese hospital's commitment to healthcare AI
Dennis Chornenky at UC Davis Health_PART 1_AI in healthcare concept art Photo by Just_Super/E+/Getty Images
UC Davis Health's inaugural AI chief discusses the responsibilities of the role

More Stories

Dr. Don Rucker at 1upHealth_Physician at laptop with medical data Photo by Tippapatt/iStock/Getty Images Plus
Looking under the hood of Medicare Advantage star ratings
Clinician reviews medical notes on a tablet
OpenAI's general purpose speech recognition model is flawed, researchers say
Oracle booth at HIMSS
New Oracle EHR promises AI-enabled reinvention
Yiannos Tolias at DG Sante_HIMSS24 Europe
How the EHDS and AI Act will advance European healthcare AI developments
Wes Whitaker of Premise Health on data analytics
Premise Health scores big with data ingestion and analytics technologies
Laptop on a mans lap sitting on an oak wood floor
HC3 alerts providers of Scattered Spider threat
Dugan Winkie at Cedar_Stethoscope over coins and calculator Photo by Max Zolotukhin/iStock/Getty Images Plus
Patient engagement gets a boost with AI-enabled call center
Oracle booth
Oracle Health to apply for QHIN status