2020 Report: Most Common Causes of Malicious Health Data Breaches

According to HIPAA Journal In healthcare, 50% of data breaches were due to malicious attacks, 23% were due to system glitches, and 27% were caused by human error. Malicious attacks were most due to cloud misconfigurations and compromised credentials, with each accounting for 19% of breaches. Vulnerabilities in third-party software was cited as the breach cause in 16% of incidents, followed by phishing (14%), physical security compromises (10%), malicious insiders (7%), system errors and other misconfigurations (6%), and business email compromise attacks (5%). Breaches involving compromised credentials were the costliest, followed by breaches due to vulnerabilities in third-party software and cloud misconfigurations.
53% of attacks were financially motivated, 13% were attributed to nation state hacking groups, and 13% were caused by hacktivists. The threat actors behind 21% of the breaches were unknown. Financially motivated attacks were the least expensive, with a global average cost of $4.23 million and the most expensive were attacks by nation state hackers, which cost an average of $4.43 million. The average cost of a malicious attack was $4.27 million. Destructive data breaches involving ransomware cost an average of $4.4 million and destructive malware, including wipers, cost an average of $4.52 million.
In a brief 15 Minute demo Agile1 can show you how a 24×7 SOC-as-a-Service tailor-made for Healthcare can stop your organization from being breached. Please click here to schedule a brief demo.

Written by Tony Pietrocola

Tony Pietrocola is Co-Founder and President of AgileBlue. Tony has over 20 years' experience in managing and growing technology companies in the SaaS, Fintech and cybersecurity spaces.

August 16, 2020

You May Also Like…

Top January 2023 Cyber-Attacks

Top January 2023 Cyber-Attacks

It’s the end of January 2023, and the numbers are in– below is a list of the most malicious cyber-attacks over the last month.    As reported by Kon Briefing, cyber-attacks have affected more than...

read more

Request a Demo

AgileBlue is a software company with an innovative SOC-as-a-Service for 24X7 network monitoring, cloud security, data privacy and compliance.

Our modern SOC-as-a-Service is built on innovative machine learning and autonomous execution. If you would like to discuss our SOC-as-a-Service, Partner Program or schedule a brief demo please give us a little info and we will contact you immediately.