Our Solution

Insights

Blog

The 10 Most Noteworthy Cyber Attacks in Healthcare in the U.S.

According to the 2023 Cost of a Data Breach Report, healthcare data breach-related expenses surged by 53.3 percent over three years, reaching an average of USD 10.93 million. The healthcare industry has borne the highest breach costs for 13 straight years.

Beyond the financial toll, the threat landscape is worsening. On May 1, 2024, the Verizon Data Breach Investigations Report (DBIR) for 2024 was published. This year, it analyzed an unprecedented 30,458 security incidents and reported over twice the number of confirmed data breaches compared to the previous year, totaling 10,626. The report highlights 1,378 security incidents and 1,220 confirmed data breaches specifically within healthcare organizations. Cybercriminals are increasingly targeting this sector to exploit data and gain financial advantages.

Why Are Cyber Attacks a Persistent Problem in Healthcare?

While threat actors don’t typically discriminate in their targets, the healthcare industry remains a lucrative and recurrent focus for hackers.

Several factors contribute to the vulnerability of healthcare organizations to cyber attacks:

  • Expanding Attack Surfaces: The ongoing digitization of healthcare services increases potential entry points for cybercriminals.
  • Interconnected Medical Devices: The widespread use of networked medical devices across various locations creates a complex and vulnerable ecosystem.
  • Security Talent Shortage: The industry faces a growing shortage of skilled cybersecurity professionals.
  • Valuable Data: Healthcare organizations store large volumes of highly sensitive data, making them attractive targets.
  • Regulatory Pressures: The high costs of downtime and compliance regulations often lead organizations to negotiate or pay ransoms.
  • Untrained User Base: A large number of users may lack proper security training and identity hygiene practices.

In addition to these organizational traits, another factor exacerbates the threat: the dark web marketplace for stolen data and credentials. Cybercriminals are aware that healthcare data can be sold or used to facilitate future attacks, such as social engineering or credential-based breaches. The vast amounts of personal data held by healthcare organizations, such as those responsible for a significant portion of national insurance billing, make them particularly attractive targets.

As healthcare data breaches continue to increase in frequency and cost, it is crucial to understand the potential damage. Here is a review of some of the most significant data breaches to date, serving as a reminder to healthcare risk managers of the vital importance of maintaining robust security and compliance practices.

Major Cyber Attacks on the U.S. Healthcare Industry Over the Last Decade

1. Anthem, Inc.

In 2015, Anthem (formerly WellPoint) reported a massive cyber attack where hackers accessed its corporate database through a phishing email, compromising approximately 79 million records. Stolen data included sensitive information like names, Social Security numbers, and medical IDs. Anthem settled for $115 million to enhance its cybersecurity measures.

Type of Attack: Phishing/Malware

Location: Indiana

Cost: $115 million

People affected: 79 million patients and employees

2. Premera Blue Cross

In 2014, Premera Blue Cross suffered a data breach when hackers used a phishing email to infiltrate its servers, compromising data of 11 million patients. The breach remained undetected for eight months, leading to a $74 million settlement to improve its security infrastructure.

Type of Attack: Phishing

Location: Washington State

Cost: $74 million

People affected: 10.6 million patients

3. American Medical Collection Agency (AMCA)

In 2018, AMCA, a billing collections service provider, was breached, exposing data of at least 21 million patients from Quest Diagnostics, LabCorp, and others. The breach led to bankruptcy and a $21 million settlement for security enhancements.

Type of Attack: Online Payment Portal Breach

Location: New York

Cost: $21 million

People affected: At least 21 million patients

4. Excellus Health Plan, Inc.

In 2015, Excellus Health Plan reported a cyber attack compromising data of 10 million clients, including Social Security numbers and financial information. The breach cost the company $17.3 million in remediation efforts.

Type of Attack: Malware

Location: New York

Cost: $17.3 million

People affected: 10.5 million health plan members and other individuals

5. HCA Healthcare

In July 2023, HCA Healthcare experienced a breach affecting over 11 million patients across 20 states. Hackers accessed and extracted sensitive information, prompting multiple lawsuits alleging inadequate security measures.

Type of Attack: Third-party Storage Breach

Location: Nashville, Tennessee (Nationwide impact)

People affected: 11 million patients

6. University of California, Los Angeles Health

In 2014, officials at UCLA Health detected suspicious activity on their network but initially believed no personal or medical data had been accessed. However, by 2015, it was confirmed that the cyber attack had compromised systems containing sensitive patient information, including names, Social Security numbers, and medical details.

In response to a class-action lawsuit, UCLA Health committed to enhancing its cybersecurity practices and policies. The organization collaborated with the FBI and engaged computer forensic experts to secure its network, implementing measures to assess emerging threats and vulnerabilities.

Type of Attack: Malware

Location: California

Cost: $7.5 million

People Affected: 4.5 million patients

7. Banner Health

In 2016, Banner Health experienced a malware attack targeting its payment processing system for food and beverage services. Hackers exploited this entry point to access servers containing patient data, compromising sensitive information like Social Security numbers and health insurance details. The breach went undetected for nearly a month.

Following the incident, Banner Health bolstered its cybersecurity posture by enhancing compliance with the PCI DSS standard, improving security monitoring, and implementing rigorous cybersecurity practices across its operations.

Type of Attack: Malware

Location: Arizona

Cost: $6 million

People Affected: 3.7 million patients

8. Advocate Medical Group

Between July and November 2013, Advocate Medical Group suffered three separate data breaches affecting over 4 million patients. The breaches involved physical theft, unauthorized network access, and the theft of an unencrypted laptop, compromising extensive patient data including credit card numbers and health records.

In response, Advocate Medical Group strengthened security protocols, enhanced encryption measures, and deployed 24/7 security personnel at affected facilities. These efforts aimed to mitigate future risks and protect patient confidentiality.

Type of Attack: Physical Theft

Location: Illinois

Cost: $5.55 million

People Affected: 4 million patients

9. Community Health Systems

In 2014, Community Health Systems fell victim to a sophisticated malware attack originating from China, compromising personal data of 4.5 million individuals. The breach included sensitive information such as names, addresses, and Social Security numbers.

Community Health Systems engaged forensic experts to investigate and remediate the breach, implementing advanced auditing and encryption technologies to fortify its defenses against future cyber threats.

Type of Attack: Malware

Location: Tennessee

Cost: $5 million

People Affected: 6.1 million individuals

10. MCNA Dental

In fall 2023, MCNA Dental fell victim to a ransomware attack by the LockBit group, compromising data of 8.9 million individuals after a failed ransom negotiation. The incident resulted in multiple lawsuits nationwide.

Type of Attack: Ransomware

Location: Nationwide

People affected: 8.9 million patients

These incidents underscore the critical need for robust cybersecurity measures in healthcare to safeguard patient information from increasingly sophisticated cyber threats. The Clinician Assistant in Critical Care plays a crucial role in fortifying healthcare systems against the rising tide of cyberattacks. By implementing extensive security protocols, it protects both the technological infrastructure and clinical operations. This comprehensive approach not only improves patient care but also manages financial risks efficiently. Discover more by scheduling your demo now: https://docboxmed.com/demo/    

Tags:

Share:
Share on facebook
Share on twitter
Share on linkedin
Share on email

Subscribe to our newsletter

Related Posts

What clients say about DocBox®

Dr. Yatin Mehta

Chairman of Critical Care
and Anesthesiology
Medanta Hospital, the Medicity
Gurgram, National Capital Region,
India

“We have been using DocBox at Medanta Hospital for several years now
and it is a key solution for us in the Intensive Care Unit.


Our physicians and nurses can monitor all data about the patient
on the DocBox screen: X-Rays, CT Scans, MRIs, all the labs, the ventilator settings,
the hemodynamic medication and status. If needed, they can go back
the record’s history and review any incident that has occurred.


In addition to medical data, the DocBox system also tracks information important
to department administration—such as bed occupancy, billing, and more.
DocBox is a very useful clinical care assistant to the critical care
physicians and to the hospital.“

Our Partners

Hewlett Packard
The Geneva Foundation
Massachusetts General Hospital
VitelNet
SmileFish
Medanta - The Medicity
RTI
Trout and Partners

Proud member of

Subscribe to our newsletter

Stay up to date with our latest news.

Home

Contact us

Headquarters:

  • 905 Isom Rd
    San Antonio, TX 78216
    United States

Locations:

  • Waltham, MA
    Silver Spring, MD
    New Delhi, India