Data breaches can lead to major medical identity theft issues
Skip to main content
MDHC_Logotype_white
Subscribe
  • My Account
  • Login
  • Subscribe
  • News
    • This Week's News
    • COVID-19
    • Providers
    • Insurance
    • Government
    • Finance
    • Technology
    • Safety & Quality
    • People
    • Regional News
    • Digital Edition
    • Barbers, artists help defy vaccine myths for people of color
      US opens more distance in worldwide race against coronavirus
      Private equity's estimated healthcare spending halved in first quarter
      UnitedHealthcare sees Q1 profits rise and other key earnings takeaways
    • Barbers, artists help defy vaccine myths for people of color
      US opens more distance in worldwide race against coronavirus
      FCC to open next round of COVID-19 telehealth program applications
      Virus is 'runaway train' at Michigan hospital system
    • Some healthcare associations moving full steam ahead with conferences starting in summer
      COVID hospitalizations in Michigan top fall surge; Beaumont seeing nurse 'burnout'
      Calls mount for Biden to track U.S. healthcare worker deaths from COVID
      Front-line workers want more assistance after a year of COVID-19
    • UnitedHealthcare sees Q1 profits rise and other key earnings takeaways
      California re-opens enrollment for health insurance coverage
      Insurers are partnering to offload the costs of kidney failure patients
      Cigna and Oscar expand their small business partnership
    • J&J vaccine pause a minor blip, but efforts must press on, experts say
      Effort to keep Arkansas Medicaid plan falls short in state Legislature
      A year into pandemic, federal officials design new mask guidelines to better protect more workers
      Long-term care providers concerned by effects of J&J COVID-19 vaccine pause
    • Private equity's estimated healthcare spending halved in first quarter
      UH reports $54.7M operating income for 2020 despite significant COVID-related costs
      CMS issues new guidance to enforce price transparency rule
      Massachusetts to crack down on highest-cost hospitals, insurers
    • FCC to open next round of COVID-19 telehealth program applications
      CHIME, HLTH to host joint spring conference next year
      Anthem, Blackstone launch new joint venture
      Healthcare data breaches
    • Michigan expands antibody treatment to cut hospitalizations
      J&J vaccine pause a minor blip, but efforts must press on, experts say
      A year into pandemic, federal officials design new mask guidelines to better protect more workers
      FDA pauses enforcement of in-person dispensing requirement for abortion pill
    • Oscar names new virtual-first care division president
      Redfield joins Big Ass Fans, which promotes controversial COVID-killing technology
      Next Up Podcast: Modern Healthcare's editor Aurora Aguilar talks new content direction
      Novant Health adds chief payor performance officer
    • Midwest
    • Northeast
    • South
    • West
  • Insights
    • ACA 10 Years After
    • Best Practices
    • Special Reports
    • Innovations
    • The Affordable Care Act after 10 years
    • A close-up of a woman receiving a COVID-19 vaccine.
      Providers in underserved communities work toward equitable vaccine distribution
      Josh Bradshaw
      How one rural Illinois county vaccinated 84% of its senior citizens by early March
      Dr. John Fischer
      Patient-reported outcomes tool for hernia surgery helps physicians improve care
      New care model helps primary-care practices treat obesity
    • A family photo of the the Hangens.
      Stressing the already burdened pediatric behavioral health system
      Jennifer Pannone and her daughter Victoria.
      Mental health access for children needs attention
      What's next for on-demand telehealth companies?
      A CalOptima PACE vaccination clinic.
      Will COVID-19 be the catalyst for creating a more sustainable healthcare system?
    • Ryan McGinnis
      Finding efficiencies in the OR using tech
      Dr. Daniel Hall
      UPMC pilots machine learning, telehealth to inform patient transfers
      A woman being recorded using her inhaler on a smartphone.
      Digital check-ins, connected inhalers help control asthma
      A phone screen showing the question, "Mary we hope this information was helpful and we'd like to keep guiding you. Are you interested in knowing when it's your turn to receive the vaccine?"
      Chatbots, texting campaigns help manage influx of COVID vax questions
  • Transformation
    • Patients
    • Operations
    • Care Delivery
    • Payment
    • Mayo Clinic launches two tech companies
      Diabetes patients at high risk for COVID-19 are managing conditions more effectively
      Nearly 1 in 5 Americans skipped care due to cost last year
      COVID-19 long-haulers need holistic treatment, providers say
    • Amazon gives out $12M under next phase of AWS diagnostics development initiative
      Malpractice premiums peak in 2020, AMA survey shows
      A rendering of a cancer research institute at the University of Southern California that will include 5G.
      Healthcare providers determine how to best use ultrafast 5G
      Two-thirds of largest hospitals aren't complying with price transparency rule
    • Addressing long-standing barriers needed for mental and physical health integration
      A close-up of a woman receiving a COVID-19 vaccine.
      Providers in underserved communities work toward equitable vaccine distribution
      The waiting room of a Kaiser Permanente clinic at a Target location.
      Health systems revamp their approach to retail clinics
      Josh Bradshaw
      How one rural Illinois county vaccinated 84% of its senior citizens by early March
    • When money talks. Why cash pay is becoming more popular
      CMS wants to bump pay for hospices, SNFs next year
      CMMI pauses new Direct Contracting model applications
      CMS wants to boost payments over 2% for inpatient rehab, psych facilities
  • Data/Lists
    • Rankings/Lists
    • Interactive Databases
    • Data Points
    • Health Systems Financials
      Executive Compensation
      Physician Compensation
  • Op-Ed
    • Bold Moves
    • Breaking Bias
    • Commentaries
    • Letters
    • Vital Signs Blog
    • From the Editor
    • Dr. Alan Kaplan
      The risks, rewards of taking organizations 'where they haven’t gone before'
      Wellstar CEO calls adapting for the pandemic her bold move
      Howard P. Kern
      Recognizing the value of telehealth in its infancy
      Dr. Stephen Markovich
      A bold move helped take him from family doctor to OhioHealth CEO
    • Drs. Hal Paz and Joshua J. Joseph
      Mobilized to fight the COVID crisis: a blueprint for community and academic partnerships
      Dr. Stephen Markovich
      Making sure we're aligned along the path to achieving inclusion
      Barry Ostrowsky
      Ending racism is a journey taken together; the starting point must be now
      Laura Lee Hall and Gary Puckrein
      Increased flu vaccination has never been more important for communities of color
    • Five lessons for securing our children's future
      We're losing engaged providers, and healthcare will pay the price
      Bonnie Castillo and John Welton
      Dueling opinions: The role of mandated nurse staffing ratios
      Dr. Chris DeRienzo
      How COVID-19 broke health systems and made them stronger
    • Letters: Eliminating bias in healthcare needs to be ‘deliberate and organic’
      Letters: Maybe dropping out of ACOs is a good thing for patients
      Letters: White House and Congress share blame for lack of national COVID strategy
      Letters: VA making strides to improve state veterans home inspections
    • Sponsored Content Provided By Optum
      How blockchain could ease frustration with the payment process
      Sponsored Content Provided By Optum
      Three steps to better data-sharing for payer and provider CIOs
      Sponsored Content Provided By Optum
      Reduce total cost of care: 6 reasons why providers and payers should tackle the challenge together
      Sponsored Content Provided By Optum
      Why CIOs went from back-office operators to mission-critical innovators
  • Awards
    • Award Programs
    • Nominate
    • Previous Award Programs
    • Other Award Programs
    • Nominations Closed - 50 Most Influential Clinical Executives
      Nominations Open - Top 25 Innovators
      Nominations Open May 24 - Top 25 Emerging Leaders
    • 100 Most Influential People
    • 50 Most Influential Clinical Executives
    • Best Places to Work in Healthcare
    • Health Care Hall of Fame
    • Healthcare Marketing Impact Awards
    • Top 25 Emerging Leaders
    • Top 25 Innovators
    • Minorities in Healthcare
      • - Luminaries
      • - Top 25 Minority Leaders
      • - Minorities to Watch
    • Women in Healthcare
      • - Luminaries
      • - Top 25 Women Leaders
      • - Women to Watch
    • Excellence in Nursing Awards
    • Design Awards
    • Top 25 COOs in Healthcare
    • 100 Top Hospitals
    • ACHE Awards
  • Events
    • Conferences
    • Galas
    • Webinars
    • COVID-19 Event Tracker
    • emburse certify modern healthcare custom media webinar logo lockup
      Sponsored Content Provided By Emburse
      Webinar: Making it easy to manage costs
      virtualmed staff modern healthcare custom media logo lockup
      Sponsored Content Provided By VirtualMed Staff
      Webinar: Best practices for creating a successful telepsychiatry program
      telehealth visit man touching neck while speaking to doctor on computer
      Sponsored Content Provided By Accumen
      Webinar: How telehealth has evolved into a standard of care
      modern healthcare custom media and trimedx custom webinar logo lockup
      Sponsored Content Provided By TRIMEDX
      Webinar: Bridging the gap between clinicians and administration to improve capital equipment planning
    • Women Leaders in Healthcare Conference
    • Social Determinants of Health Symposium
    • Healthcare Transformation Summit
    • Leadership Symposium
    • Virtual Briefings
      • - Hospital of the Future
      • - Mental Health
      • - Patient Safety & Quality
      • - Strategic Marketing
      • - Virtual Health
      • - Workplace of the Future
    • Best Places to Work Awards Gala
    • Health Care Hall of Fame Gala
    • Top 25 Minority Leaders Gala
    • Top 25 Women Leaders Gala
  • Listen
    • Podcast - Next Up
    • Podcast - Beyond the Byline
    • Sponsored Podcast - Healthcare Insider
    • Video Series - The Check Up
    • Sponsored Video Series - One on One
    • Next Up Podcast: Modern Healthcare's editor Aurora Aguilar talks new content direction
      Dr. Chris DeRienzo
      Next Up Podcast: Building team spirit in the wake of COVID-19
      Mikelle Moore
      Next Up Podcast: Mikelle Moore on recognizing all hospital workers during the pandemic
      Empty boardroom
      Next Up Podcast: What's going to happen tomorrow? Succession planning during emergencies
    • Beyond the Byline: Kids' unchecked mental health needs pose long-term consequences
      Beyond the Byline: How COVID-19 has impacted hospital finances
      An older man sitting on a hospital bed with his back toward the camera.
      Beyond the Byline: Upcoding could explain why hospitals are increasingly billing for the most complex treatment
      Beyond the Byline: Insurers are betting on virtual-first plans as COVID-19 shifts care pathways
    • James garvert neustar healthcare insider podcast image
      Building on basics
      Healthcare Insider Podcast Episode Art - Premier
      Why Roger Weems and other consultants are leaving the big firms to join Premier
      James garvert neustar healthcare insider podcast image
      Outreach during COVID-19
      ann barnes healthcare insider podcast image
      Leading with intention to promote diversity and inclusion
    • The Check Up: Dr. James E.K. Hildreth
      The Check Up: Dr. James E.K. Hildreth of Meharry Medical College
      The Check Up: Matt Eyles
      The Check Up: Matt Eyles of AHIP
      The Check Up: Dr. Tom Shanley
      The Check Up: Dr. Tom Shanley of Lurie Children’s Hospital of Chicago
      The Check Up: Dr. Harold Paz
      The Check Up: Dr. Harold Paz of Wexner Medical Center at Ohio State University
    • ivana naeymi-rad one on one intelligent medical objects
      Video: Ivana Naeymi Rad of Intelligent Medical Objects
  • MORE +
    • Advertise
    • Media Kit
    • Newsletters
    • Jobs
    • People on the Move
    • Reprints & Licensing
MENU
Breadcrumb
  1. Home
  2. Technology
March 04, 2015 12:00 AM

Data breaches can lead to major medical identity theft issues

Bob Herman
Darius Tahir
  • Tweet
  • Share
  • Share
  • Email
  • More
    Print

    A healthcare data breach, such as the recent massive one at health insurer Anthem, means more than lost data for a patient: it can mean lost money and, in the most extreme circumstances, a completely altered medical history.

    The financial ramifications can come when credit card and identity information is stolen. For example, the Community Health Systems breach in summer 2014 has caused several lawsuits alleging specific harms to patients. William Lutz, a CHS patient in Lafayette Hill, Penn., contends the data loss resulted in hackers making more than $40,000 in illegal charges and setting up new financial accounts in his name.

    Hixie Lewis, a CHS patient in Alabama, said a third party opened—and maxed out—two credit cards to Victoria's Secret, which is still pursuing her for the debts run up on the cards. Class-action lawsuits against Anthem have popped up and allege potential financial harm.

    However, in both cases, the companies have maintained patients' medical data was not compromised. Theft of medical records poses not only financial but also potentially life-threatening harms to patients. Yet, a lack of public indignation about such breaches indicates the industry has not hit a tipping point that will force it to change its procedures by spending more on data security.

    A February 2015 report from the Ponemon Institute surveying medical identity theft victims—whose ranks are often swelled by data breaches—found that of the surveyed patients, about two-thirds said they had paid money to resolve the theft. Those patients paid an average of $13,500.

    Stealing medical identities is done to commit healthcare fraud. As a result, “you have to reimburse either the healthcare provider or your health plan for a medical good or service that the identity thief enacted,” said Ann Patterson, senior vice president of the Medical Identity Fraud Alliance.

    Unlike in the credit card industry, where cardholder liability is limited for fraudulent charges, patients often have to pay either the insurer or the provider in question, she said.

    Cletis Earle, chief information officer of St. Luke's Cornwall (N.Y.) Hospital, said the perpetrators of such fraud are often individuals who don't want to pay for care, or don't have a legitimate identity for doing so—for example, opioid addicts who need to doctor-shop.

    Once care is done, several experts agree, the results can follow a patient for years regardless of whether the payment issue is resolved. That's because a record of care bearing the patient's identity has been created.

    Pam Dixon, executive director for the World Privacy Forum, noted that a patient could wrongly have an allergy crossed off the list, for example. If a fraudster is treated using that antibiotic, the record might cause a new notation—that the patient in question isn't allergic.

    That permanence is due to an unfortunate feature with the electronic health-record system, Patterson said. “With your financial credit report, when you see something that's incorrect, there's a dispute process,” she said. “You can have things removed that are inaccurate from your report.”

    With EHRs, data can't get removed. Annotated, perhaps, stating that the data is incorrect. But not necessarily removed. “You have this lifelong corruption of your record,” she said.

    Earle said that particular technological quirk might get resolved in the future. If data-sharing between EHRs becomes more advanced, and data is more easily reconciled, such problems could become resolved—and patients could find it easier to check for potential identity theft.

    But it's difficult right now to check for the medical implications of identity theft. The Ponemon Institute report found that identity theft victims don't frequently check their own records. Only 17% of those patients check their records for accuracy most of the time.

    Getting patients to check their records is a government requirement under the EHR subsidy program. And it's one providers struggle with achieving. November 2014 government data found that 49% of attesting hospitals had only barely passed the second stage requirements for the program—they needed 5% of patients to view their records, and got between 5-10%.

    If patients don't check the data themselves, can they rely on automated tools to do it for them? Most affected institutions seem to provide credit monitoring services to patients whose data is breached.

    But that's not universal. For example, after a 2011 data breach, Sutter Health in Sacramento, Calif., did not offer credit monitoring services. A spokeswoman said that the decision was based on the types of data lost in the breach, which was not financial.

    Some question whether credit monitoring is enough. “It does need more scrutiny, and it does need more attention,” said Steven Russo, executive vice president of cybersecurity firm CertainSafe.

    The credit monitoring services do not scrutinize medical claims. Patterson isn't aware of many firms that do.

    “Unlike financial reports that are housed at the three credit bureaus … there is no central repository where your medical record is housed,” she explained. As such, it's a challenge for an interested firm to aggregate the data.

    Despite the medical and financial issues associated with the rising number of data breaches, backlash against affected firms appears to be muted. Josh Raskin, an analyst at Barclays Research, said he doesn't think investors care a great deal about the Anthem data breach “because the financial ramifications don't appear to be great.”

    Raskin's analysis appears to be shared by others. Louise Norris, a health insurance broker in Wellington, Colo., said that “the Anthem hack has been pretty much a non-issue for our clients.”

    At close of trading Tuesday, Anthem was trading at $145.99 per share, not far from its 52-week high of $148. Wall Street appears to be equally sanguine about Community Health Systems, which traded at $49.59 as of the close, compared to $47.24 in early August last year.

    Community Health Systems has held two quarterly earnings calls since the August 2014 disclosure of the breach and neither executives nor analysts have discussed it in those calls.

    In its annual Securities and Exchange Commission filing, it focused on the potential negative effects of litigation related to the breach, rather than a deterioration in consumer confidence. A CHS spokeswoman said the company would not comment beyond what is included in SEC filings.

    Anthem's yearly filing with the SEC is similar. Anthem also declined to comment for this story.

    However, a Ponemon Institute report said 48% of identity theft victims would consider leaving a provider in question. Dixon of the World Privacy Forum added that her organization has "never gotten such a large response as we have to the Anthem breach. They [consumers] are taking it much more seriously, and they are very angry.”

    Breach issues will likely only continue, Patterson said. Hackers are becoming more sophisticated at stealing and criminally exploiting data. The number of patient records breached increased 25.5% in 2014, according to Redspin, an information technology security firm.

    Follow Darius Tahir on Twitter: @dariustahir

    Follow Bob Herman on Twitter: @MHbherman

    Letter
    to the
    Editor

    Send us a letter

    Have an opinion about this story? Click here to submit a Letter to the Editor, and we may publish it in print.

    Recommended for You
    FCC to open next round of COVID-19 telehealth program applications
    FCC to open next round of COVID-19 telehealth program applications
    CHIME, HLTH to host joint spring conference next year
    CHIME, HLTH to host joint spring conference next year
    Sponsored Content
    Get Newsletters

    Sign up for enewsletters and alerts to receive breaking news and in-depth coverage of healthcare events and trends, as they happen, right to your inbox.

    Subscribe Today
    MH Magazine Cover

    MH magazine offers content that sheds light on healthcare leaders’ complex choices and touch points—from strategy, governance, leadership development and finance to operations, clinical care, and marketing.

    Subscribe
    Connect with Us
    • LinkedIn
    • Twitter
    • Facebook
    • RSS
    • Instagram

    Our Mission

    Modern Healthcare empowers industry leaders to succeed by providing unbiased reporting of the news, insights, analysis and data.

    MDHC_Logotype_white
    Contact Us

    (877) 812-1581

    Email us

     

    Resources
    • Contact Us
    • Advertise with Us
    • Ad Choices Ad Choices
    • Sitemap
    Editorial Dept
    • Submission Guidelines
    • Code of Ethics
    • Awards
    • About Us
    Legal
    • Terms and Conditions
    • Privacy Policy
    • Privacy Request
    Modern Healthcare
    Copyright © 1996-2021. Crain Communications, Inc. All Rights Reserved.
    • News
      • This Week's News
      • COVID-19
      • Providers
      • Insurance
      • Government
      • Finance
      • Technology
      • Safety & Quality
      • People
      • Regional News
        • Midwest
        • Northeast
        • South
        • West
      • Digital Edition
    • Insights
      • ACA 10 Years After
      • Best Practices
      • Special Reports
      • Innovations
    • Transformation
      • Patients
      • Operations
      • Care Delivery
      • Payment
    • Data/Lists
      • Rankings/Lists
      • Interactive Databases
      • Data Points
    • Op-Ed
      • Bold Moves
      • Breaking Bias
      • Commentaries
      • Letters
      • Vital Signs Blog
      • From the Editor
    • Awards
      • Award Programs
        • 100 Most Influential People
        • 50 Most Influential Clinical Executives
        • Best Places to Work in Healthcare
        • Health Care Hall of Fame
        • Healthcare Marketing Impact Awards
        • Top 25 Emerging Leaders
        • Top 25 Innovators
        • Minorities in Healthcare
          • - Luminaries
          • - Top 25 Minority Leaders
          • - Minorities to Watch
        • Women in Healthcare
          • - Luminaries
          • - Top 25 Women Leaders
          • - Women to Watch
      • Nominate
      • Previous Award Programs
        • Excellence in Nursing Awards
        • Design Awards
        • Top 25 COOs in Healthcare
      • Other Award Programs
        • 100 Top Hospitals
        • ACHE Awards
    • Events
      • Conferences
        • Women Leaders in Healthcare Conference
        • Social Determinants of Health Symposium
        • Healthcare Transformation Summit
        • Leadership Symposium
        • Virtual Briefings
          • - Hospital of the Future
          • - Mental Health
          • - Patient Safety & Quality
          • - Strategic Marketing
          • - Virtual Health
          • - Workplace of the Future
      • Galas
        • Best Places to Work Awards Gala
        • Health Care Hall of Fame Gala
        • Top 25 Minority Leaders Gala
        • Top 25 Women Leaders Gala
      • Webinars
      • COVID-19 Event Tracker
    • Listen
      • Podcast - Next Up
      • Podcast - Beyond the Byline
      • Sponsored Podcast - Healthcare Insider
      • Video Series - The Check Up
      • Sponsored Video Series - One on One
    • MORE +
      • Advertise
      • Media Kit
      • Newsletters
      • Jobs
      • People on the Move
      • Reprints & Licensing