Did you know that in June 2016 alone, nearly 10 million patient records were posted for sale on a dark web market? Prices for the data ranged from 30 bitcoin ($19,000) to 375 bitcoin ($240,000). In order to fend off cybercriminals, healthcare organizations should consider protecting their data using a layered approach:
Traditional Data Protection: The first layer of protection should always be utilizing IT best practices and making sure your practice has independent backups and data replication setup on all aspects of your IT system.
Encryption: The second layer of protection involves ensuring your practice has encryption setup for data in flight and at rest. Encryption “in flight” means data is encrypted as it moves through the network. Encryption “at rest” refers to encrypting data that does not move such as data on a hard disk drive or solid-state drive.
Security Analytics: During this final stage, your practice should incorporate security analytics to detect threats as well as monitor network traffic and transaction logs. This advanced protection via analytics will give your practice confidence that if a breach were to occur, it could isolate the system until the network threat is neutralized.