In August, International Dairy Queen began an investigation into a data breach in its stores. In November, it confirmed the breach took place in 395 locations and may have affected nearly 600,000 debit and credit cards. The company found that Backoff malware, used in so many recent cyber attacks, affected the payment systems in these locations. Customer names, debit card and credit card numbers and their expiration dates were compromised.
In August, Community Health Systems said information on 4.5 million patients was stolen in a cyber attack that may have originated in China. The data breach may have impacted anyone who was a patient in a CHS hospital during the last five years. Hackers may have obtained the patient names, birth dates, addresses, telephone and social security numbers. However, in a filing with the Securities and Exchange Commission, the company said no credit card numbers or medical or clinical information were taken.
Real safeguards and policy implementations, however, speak louder than any number of crisis meetings. Securing any healthcare organization — from a solo practice to multi-location hospital systems — takes measured planning, technical expertise, and business knowledge. It’s the only way security professionals can balance their quest for impenetrable devices and software against medical users’ demand for easy, accessible data and tools.
Read complete article here