Upload File

verizon 2015 protected health information data breach report

  • Home
  • Technology
  • Verizon 2015 Protected Health Information Data Breach Report
16
You’re not immune to PHI data breaches. A cyber health warning from the Verizon 2015 Protected Health Information (PHI) Data Breach Report.

Upload: verizon-enterprise-solutions

Post on 13-Jan-2017

25.015 views

Category:

Technology


2 download

Report

TRANSCRIPT

Page 1: Verizon 2015 Protected Health Information Data Breach Report

You’re not immune to PHI data breaches.A cyber health warning from the Verizon 2015 Protected Health Information (PHI) Data Breach Report.

Page 2: Verizon 2015 Protected Health Information Data Breach Report

This document and any attached materials are the sole property of Verizon and are not to be used by you other than to evaluate Verizon’s service.

© 2015 Verizon. All Rights Reserved. The Verizon name and logo and all other names, logos, and slogans identifying Verizon’s products and services are trademarks and service marks or registered trademarks and service marks of Verizon Trademark Services LLC or its a�liates in the United States and/or other countries. All other trademarks and service marks are the property of their respective owners.

Proprietary statement.

2015 Protected Health Information Data Breach Report

Page 3: Verizon 2015 Protected Health Information Data Breach Report

2015 Protected Health Information Data Breach Report

Who’s at risk?

90of industries experienced a breach.

Many organizations don’t realize they hold PHI and are at risk.

Page 4: Verizon 2015 Protected Health Information Data Breach Report

It can include:

• Name, address, date of birth.• Telephone and email.• Medical insurance numbers.• Social Security numbers.• All biometric data.

2015 Protected Health Information Data Breach Report

What is it?

Name: Kate PorterDOB: 19/05/88SSN: 123-45-6789T: +1 (671) 123-1234 E: [email protected]

Protected health information (PHI) is defined as personally identifiable health information collected from an individual, and covered under one of the state, federal or international data breach disclosure laws.

Page 5: Verizon 2015 Protected Health Information Data Breach Report

2015 Protected Health Information Data Breach Report

Attackers are usually looking for data they can use to commit identity theft.

If PHI is taken as part of the theft, organizations must deal with the resulting regulatory fallout and negative exposure.

Causes and symptoms.

Page 6: Verizon 2015 Protected Health Information Data Breach Report

2015 Protected Health Information Data Breach Report

A PHI data breach is not always straightforward to diagnose.

It can take just seconds for attackers to compromise your systems. But in 50% of cases it took months or longer to identify that a breach had occurred.

Diagnosis.

Months+

Page 7: Verizon 2015 Protected Health Information Data Breach Report

2015 Protected Health Information Data Breach Report

Should the worst happen, treatment must be applied fast. Identify the source, contain it and verify the extent of losses. And take care that vital forensics are not destroyed.

Treatment.

Page 8: Verizon 2015 Protected Health Information Data Breach Report

2015 Protected Health Information Data Breach Report

If a breach is left undiscovered victims can continue to su�er long after the data has left their system.

They risk serious regulatory fallout, lasting damage to brand image and loss of trust.

Prognosis.

Page 9: Verizon 2015 Protected Health Information Data Breach Report

2015 Protected Health Information Data Breach Report

Prevention of PHI breaches is better than the cure.

Ensure you’re in the best possible shape by regularly examining processes, procedures and technologies that a�ect the security of PHI data.

Prevention.

Page 10: Verizon 2015 Protected Health Information Data Breach Report

2015 Protected Health Information Data Breach Report

We’ve identified three attack patterns that account for 85% of incidents — helping you prioritize your defenses.

Prevention.

45

20 20Lost and stolen assets

Privilege misuse Miscellaneous errors

Page 11: Verizon 2015 Protected Health Information Data Breach Report

2015 Protected Health Information Data Breach Report

What can you do?

• Encrypt data.• Automate backups.• Lock assets down.

1. Lost and stolen assets.

The loss or theft of laptops, USB drives, printed paper or any other information assets.

Page 12: Verizon 2015 Protected Health Information Data Breach Report

2015 Protected Health Information Data Breach Report

2. Privilege misuse.

Misuse of access, typically by insiders — but can also be outsiders and partners.

What can you do?

• Know your data.• Review user behavior for suspicious activity.• Monitor data transfers.

Page 13: Verizon 2015 Protected Health Information Data Breach Report

2015 Protected Health Information Data Breach Report

3. Miscellaneous errors.

Any mistake that compromises security — often the result of carelessness and poor processes.

What can you do?

• Implement quality checkpoints.• Learn from your mistakes and those of others.• Teach sta� about secure disposal of assets.

Page 14: Verizon 2015 Protected Health Information Data Breach Report

2015 Protected Health Information Data Breach Report

Attack graphs allow you to identify and visualize the paths attackers are most likely to take into your system. That lets you prioritize your defenses and mitigate the risks.

Prevention.

Page 15: Verizon 2015 Protected Health Information Data Breach Report

2015 Protected Health Information Data Breach Report

Make sure you’re in the best of health. Download the 2015 Protected Health Information Data Breach Report:

www.verizonenterprise.com/phi

90% of industries have experienced a PHI breach.

2015 Protected Health Information Data Breach Report

Page 16: Verizon 2015 Protected Health Information Data Breach Report

2015 Protected Health Information Data Breach Report

© 2015 Verizon. All Rights Reserved. The Verizon name and logo and all other names, logos, and slogans identifying Verizon’s products and services are trademarks and service marks or registered trademarks and service marks of Verizon Trademark Services LLC or its affiliates in the United States and/or other countries. All other trademarks and service marks are the property of their respective owners. PTEXXXXX 11/15


Fewer Breaches Instead of Bigger Data: Thwarting Attacks ...biggest-data-breaches-hacks/ Breach Statistics 5 Verizon Data Breach Incident Report, 2013. Real World Risk Equation Risk

Verizon 2014 data breach investigation report and the target breach

Verizon - 2014 Data Breach Investigations Report - October 2014

HIPAA Violations Explained - Netwrix · HIPAA Requirements –Breach Notification • Focuses on requirements to respond to a breach of unsecured Protected Health Information •

PCI Data Breach Preparedness presentation (with Verizon …root.bryancavemedia.com/docs/pci-data-breach.pdf · PCI Data Breach Preparedness – How To Prevent Your Organization From

Converged Security - protect your digital enterprise€¦ · 2015 Cost of Cyber Crime Study: Global, Ponemon, 2015 / Cost of a Data Breach, Ponemon, 2015 / Verizon Data Breach Investigations

Know Your Enemy: Verizon Data Breach Report

Verizon Enterprise Suffers Security Breach: Hackers Steal Id-theft... · 2017-01-18 · Yahoo Says 500 Million Accounts Stolen 1 Oracle’s Data Breach May Explain Spate of Retail

OVERVIEW - Huntsman · 2014 2 Verizon Data Breach Investigations Report 2014 – Verizon Business, March 2014 3 2012: Looking back at the major hacks, leaks and data breaches –

2019 Verizon Data Breach Investigations Report2019/10/16  · Verizon confidential and proprietary. Unauthorized disclosure, reproduction or other use prohibited. 2 73 CONTRIBUTING

Inside the 2016 Verizon Data Breach Investigations Report

Self-governing compliance doesn’t work here anymore...Verizon Data Breach Investigations Report 2015 Confirmed Serious Incidents With Card Losses Verizon Data Breach Investigations

D2015 Protected-Health-Information-Data-Breach-Report

Verizon Data Breach Investigations Report 2012

Breach Investigations Report · Verizon 2016 Data Breach Investigations Report 3 Before we get into the adversaries behind the incidents and breaches that both underpin this report

2016 Data Breach Investigations Report - Verizon Enterprise · 2016 Data Breach Investigations Report Data from 67 contributors. 3 Ninth edition. 100K incidents. 82 countries. 2,260

New Zealand Privacy Week 2014 Technology and Privacy Forums · Verizon 2014 Data Breach Investigations Report (DBIR) Analysis of 2400+ breach cases from VERIS Community database Realised

Breach Prevention: The Root Cause of the Data Breach Epidemic€¦ · Breach Prevention: The Root Cause of the Data Breach Epidemic According to the 2012 Verizon Data Breach Investigations

Cyber Security for Financial Services · security breach goes unnoticed 70%-80% of breaches are first detected by a 3rd party. 2016 Verizon Data Breach Investigations Report Current

2017 Data Breach Investigations Report - Verizon EnterpriseWelcome to the 10th anniversary of the Data Breach Investigations Report (DBIR). We sincerely thank you for once again taking

Evolution of the Verizon Data Breach Investigations Report (2008-2016)

2013 Data BrEach InvEStIgatIonS rEport - EventTracker DATA BREACH INVESTIGATIONS REPORT 69% 69% of breaches were spotted by an external party — 9% were spotted by customers. Verizon

ACROSS A GROWING ATTACK SURFACE - RiskSense · of data breach victims were notified by an external entity. Verizon Data Breach Report 67% THE CHALLENGE MANAGING CYBER RISK ACROSS

Verizon 2014 data breach investigations report dbir - my view ext

The Darker Value of Your Corporate Data - StarChapter › ... › the_darker_value_of_your_corporate_data.pdf2017 Verizon Data Breach Investigations Report Data Type Value Website

 · 4/24/2014  · 3 SafeNet 3 Step Approach From Breach Prevention to Breach Acceptance The Verizon report indicates that insider threats have been increasing over the last couple

The Human Firewall is on fire – Anatomy of an email-based · 2020. 6. 10. · 1 Verizon Data Breach Report 2016 | 2 Wired 2015 | 3 Verizon Data Breach Report 2017 | 4 FBI, Public

2009 Data Breach Investigations · PDF file2009 Data Breach Investigations Report A study conducted by the Verizon Business RISK team Executive Summary 2008 will likely be remembered

Breach Investigations Report - Verizon Enterprise · Verizon 2016 Data Breach Investigations Report 6 Breach trends Playing a part on the blue team in information security can, to

Verizon Data Breach Report 2010

Breach Notification Protected Health Information Under ARRA/HITECH

Verizon Data Breach Digest 2016

Importance of having a Integrated Security Fabric Sandbox ... · Market Trends – Verizon Breach Report. All organizations experienced a data breach, ranging from approx 2,600 to

Reviewing the 2017 Verizon DBIR - Robert Hurlbut...What is the Verizon DBIR? The Verizon Data Breach Investigations Report (DBIR) was first released in 2008 with data breach data from

PHI/E-PHI Data BREACH NOTIFICATION - HCCA Official Site · 2015. 3. 25. · 3/17/2015 2 Definition of Breach Breach • Means the acquisition, access, use, or disclosure of protected