Your medical information is worth 10 times more than your credit card number on the black market.
Last month, the FBI told healthcare providers to guard against cyberattacks after one of the largest US hospital operators, Community Health Systems Inc, said suspected Chinese hackers had broken into its computer network and stolen the personal information of 4.5 million patients.
Security experts say cybercriminals are increasingly targeting the US$3 trillion US healthcare industry, which has many companies still reliant on aging computer systems that do not use the latest security features.
“As attackers discover new methods to make money, the healthcare industry is becoming a much riper target because of the ability to sell large batches of personal data for profit,” said Dave Kennedy, an expert on healthcare security and CEO of TrustedSEC LLC. “Hospitals have low security, so it’s relatively easy for these hackers to get a large amount of personal data for medical fraud.”
Interviews with nearly a dozen healthcare executives, cybersecurity investigators and fraud experts provide a detailed account of the underground market for stolen patient data.
The data for sale includes names, birth dates, policy numbers, diagnosis codes and billing information. Fraudsters use this data to create fake IDs to buy medical equipment or drugs that can be resold, or they combine a patient number with a false provider number and file made-up claims with insurers, according to experts who have investigated cyberattacks on healthcare organizations.
Medical identity theft is often not immediately identified by a patient or their provider, giving criminals years to milk such credentials. That makes medical data more valuable than credit cards, which tend to be quickly canceled by banks once fraud is detected.
Stolen health credentials can go for US$10 each, about 10 or 20 times the value of a US credit card number, according to Don Jackson, director of threat intelligence at PhishLabs, a cybercrime protection company. He obtained the data by monitoring underground exchanges where hackers sell the information.
The percentage of healthcare organizations that reported a criminal cyberattack had risen to 40 percent last year from 20 percent in 2009, according to an annual survey by the Ponemon Institute think tank on data protection policy.
Fueling that increase is a shift to electronic medical records by a majority of US healthcare providers.
Healthcare providers and insurers must publicly disclose data breaches affecting more than 500 people, but there are no laws requiring criminal prosecution. As a result, the total cost of cyberattacks on the healthcare system is difficult to pin down. Insurance industry experts say they are one of many expenses ultimately passed onto US citizens as part of rising health insurance premiums.
Consumers sometimes discover their credentials have been stolen only after fraudsters use their personal medical ID to impersonate them and obtain health services. When the unpaid bills are sent on to debt collectors, they track down the fraud victims and seek payment.
The US government’s efforts to combat Medicare fraud have focused on traditional types of scams that involve provider billing and over billing. Fraud involving the Medicare program for seniors and the disabled totaled more than US$6 billion in the past two years, according to a database maintained by Medical Identity Fraud Alliance.
“Healthcare providers and hospitals are just some of the easiest networks to break into,” said Jeff Horne, vice president at cybersecurity firm Accuvant, which is majority-owned by private equity firm Blackstone Group.
KPMG partner Michael Ebert said security has been an afterthought for many medical providers — whether it is building encryption into software used to create electronic patient records or in setting budgets.
“Are you going to put money into a brand new MRI machine or laser surgery or are you going to put money into a new firewall?” he said.
Kehinde Sanni spends his days smoothing out dents and repainting scratched bumpers in a modest autobody shop in Lagos. He has never left Nigeria, yet he speaks glowingly of Burkina Faso military leader Ibrahim Traore. “Nigeria needs someone like Ibrahim Traore of Burkina Faso. He is doing well for his country,” Sanni said. His admiration is shaped by a steady stream of viral videos, memes and social media posts — many misleading or outright false — portraying Traore as a fearless reformer who defied Western powers and reclaimed his country’s dignity. The Burkinabe strongman swept into power following a coup in September 2022
‘FRAGMENTING’: British politics have for a long time been dominated by the Labor Party and the Tories, but polls suggest that Reform now poses a significant challenge Hard-right upstarts Reform UK snatched a parliamentary seat from British Prime Minister Keir Starmer’s Labor Party yesterday in local elections that dealt a blow to the UK’s two establishment parties. Reform, led by anti-immigrant firebrand Nigel Farage, won the by-election in Runcorn and Helsby in northwest England by just six votes, as it picked up gains in other localities, including one mayoralty. The group’s strong showing continues momentum it built up at last year’s general election and appears to confirm a trend that the UK is entering an era of multi-party politics. “For the movement, for the party it’s a very, very big
ENTERTAINMENT: Rio officials have a history of organizing massive concerts on Copacabana Beach, with Madonna’s show drawing about 1.6 million fans last year Lady Gaga on Saturday night gave a free concert in front of 2 million fans who poured onto Copacabana Beach in Rio de Janeiro for the biggest show of her career. “Tonight, we’re making history... Thank you for making history with me,” Lady Gaga told a screaming crowd. The Mother Monster, as she is known, started the show at about 10:10pm local time with her 2011 song Bloody Mary. Cries of joy rose from the tightly packed fans who sang and danced shoulder-to-shoulder on the vast stretch of sand. Concert organizers said 2.1 million people attended the show. Lady Gaga
SUPPORT: The Australian prime minister promised to back Kyiv against Russia’s invasion, saying: ‘That’s my government’s position. It was yesterday. It still is’ Left-leaning Australian Prime Minister Anthony Albanese yesterday basked in his landslide election win, promising a “disciplined, orderly” government to confront cost-of-living pain and tariff turmoil. People clapped as the 62-year-old and his fiancee, Jodie Haydon, who visited his old inner Sydney haunt, Cafe Italia, surrounded by a crowd of jostling photographers and journalists. Albanese’s Labor Party is on course to win at least 83 seats in the 150-member parliament, partial results showed. Opposition leader Peter Dutton’s conservative Liberal-National coalition had just 38 seats, and other parties 12. Another 17 seats were still in doubt. “We will be a disciplined, orderly
RSS