What can be learned from organizations’ experiences? Here are three key lessons based on my recent conversations with security experts.
Vendor risk management is more important than ever. Many of the largest health data breaches this year have involved third parties. For example, the largest health data breach so far in 2019 was a cyberattack disclosed in the spring by debt collection firm, American Medical Collection Agency, which impacted more than two dozen clients and 20 million-plus individuals. And a ransomware attack revealed last week by IT services firm Virtual Care Provider Inc. impacted more than 110 healthcare entities, including several nursing homes.