Tom Andre, Vice President of Information Systems at the Cooperative of American Physicians, Inc. (CAP), talks about cyberattacks and common IT security mistakes in an interview with the Information Security Media Group.
According to Andre, smaller hospitals and clinics must avoid the common mistake of thinking they won’t fall victim to cyberattacks.
“You might look at yourself as a smaller organization and say, ‘North Korea is not going to go after me. Government-sponsored entities aren’t going to hack me like they tried to get into Sony. The fact is that there are social engineering attacks like ransomware that are targeted at everyone and anyone; it’s a scattergun attack.”
Hear the full 12 minute segment on this week’s DataBreachToday’s podcast.
Some Highlights:
- Don’t assume you’re not a target. There have been recent social engineering attacks like ransomware that are targeted at everyone and anyone.
- One line of defense is not sufficient. You need multiple layers anti-spam, training, anti-virus, etc.
- Don’t underestimate the value of medical records to thieves. A stolen medical record is worth up to 50X a stolen credit card number on the black market.
- Encrypt all your data. Both while in-transit and at-rest. Over half of the healthcare breaches involves non-encrypted data.
- Don’t just give up! Your efforts can significantly impact the likelihood of a successful attack on your organization.
Hear the full podcast on DataBreachToday.
If you have questions about this article, please contact us. This information should not be considered legal advice applicable to a specific situation. Legal guidance for individual matters should be obtained from a retained attorney.