One of the big lures for a hacker is lucrative data which can be sold or ransomed. Patient data, financial data, even research data – everything a healthcare organisation may hold. Is your practice fully covered in case of a breach?
Why is healthcare a targeted sector?
You are at risk, especially if your practice operates on outdated or unsupported software systems or holds a large amount of patient data. Your patient’s medical history can be sold for a high profit which is why this type of sensitive information is so highly attractive to Cyber criminals.
46% of all UK businesses identified at least one cyber breach in the past 12 months
Some patients’ records may be years old, but there is a chance that some of the details within the data still remain correct. Your patient may not have changed their bank account or home address for years. They also can’t change their medical history. This is a gold mine to a hacker. They sell data on the black market and your patient becomes a target – and you have a claims case on your hands.
How do you protect both yourself and your practice?
Hackers use a variety of tricks that are constantly evolving alongside technology. Given the large volumes of sensitive data, including financial information you may hold on your patients, it’s vital that you have the right protection in place.
Risks caused by a data breach:
- Damaged hardware and software, which will need to be updated or even replaced
- Crippling legal costs
- Loss of revenue
- Compensation to the patients who have been affected by the data breach
- Reputational damage through negative news stories and word of mouth, putting off new patients and possibly deterring existing patients too
The Cyber Security Breaches Survey 2019 found that 31% of micro and small businesses had identified breaches or attacks – with 19% losing files or network access, 10% having their website slowed or taken down, and 9% having software or systems corrupted or damaged.
How to protect yourself internally
- Manage data securely, lock up any patient records and restrict who has access to full medical records or financial details for both patients and your practice, if you store them
- Ensure you have robust security systems in place
- Ensure the software and hardware you use is up to date
- Train all staff on the risk of Cyber crime and the key issues to watch out for should a risk arise
According to Optimising IT, Cyber is the number one risk to UK businesses with 95% of Cyber attacks starting with an employee being tricked.
How taking out cyber insurance can protect you further
Cyber insurance isn’t optional if you want peace of mind. Your general business insurance likely won’t fully cover Cyber crime and you face huge repercussions should your practice security be compromised. With Cyber Liability insurance you get cover for:
- Compensation payments to your patients
- Your patient’s legal fees
- Money to purchase new computers, hardware and software
- Liability cover for affected third parties – e.g. patients
- Loss of gross revenue
Your next steps towards Cyber security
Don’t turn a blind eye and assume a Cyber attack won’t happen to your practice. The risk is very real. Speak to All Med Pro, we’ll work with you to make sure you have all bases covered and the right protection in place for your practice.