Skip to main content
Sister Publication Links
  • ESG: THE IMPLEMENTATION IMPERATIVE
Subscribe
  • Sign Up Free
  • Login
  • Subscribe
  • News
    • Current News
    • Providers
    • Insurance
    • Digital Health
    • Government
    • Finance
    • Technology
    • Safety & Quality
    • Transformation
    • People
    • Regional News
    • Digital Edition (Web Version)
    • Patients
    • Operations
    • Care Delivery
    • Payment
    • Midwest
    • Northeast
    • South
    • West
  • Unwell in America
  • Opinion
    • Bold Moves
    • Breaking Bias
    • Commentaries
    • Letters
    • Vital Signs Blog
    • From the Editor
  • Events & Awards
    • Awards
    • Conferences
    • Galas
    • Virtual Briefings
    • Webinars
    • Nominate/Eligibility
    • 100 Most Influential People
    • 50 Most Influential Clinical Executives
    • Best Places to Work in Healthcare
    • Excellence in Governance
    • Health Care Hall of Fame
    • Healthcare Marketing Impact Awards
    • Top 25 Emerging Leaders
    • Top 25 Innovators
    • Diversity in Healthcare
      • - Luminaries
      • - Top 25 Diversity Leaders
      • - Leaders to Watch
    • Women in Healthcare
      • - Luminaries
      • - Top 25 Women Leaders
      • - Women to Watch
    • Digital Health Transformation Summit
    • ESG: The Implementation Imperative Summit
    • Leadership Symposium
    • Social Determinants of Health Symposium
    • Women Leaders in Healthcare Conference
    • Best Places to Work Awards Gala
    • Health Care Hall of Fame Gala
    • Top 25 Diversity Leaders Gala
    • Top 25 Women Leaders Gala
    • - Hospital of the Future
    • - Value Based Care
    • - Hospital at Home
    • - Workplace of the Future
    • - Digital Health
    • - Future of Staffing
    • - Hospital of the Future (Fall)
  • Multimedia
    • Podcast - Beyond the Byline
    • Sponsored Podcast - Healthcare Insider
    • Video Series - The Check Up
    • Sponsored Video Series - One on One
  • Data Center
    • Data Center Home
    • Hospital Financials
    • Staffing & Compensation
    • Quality & Safety
    • Mergers & Acquisitions
    • Data Archive
    • Resource Guide: By the Numbers
    • Surveys
    • Data Points
  • MORE+
    • Contact Us
    • Advertise
    • Media Kit
    • Newsletters
    • Jobs
    • People on the Move
    • Reprints & Licensing
MENU
Breadcrumb
  1. Home
  2. Providers
October 14, 2016 01:00 AM

Nearly 90% of healthcare lawyers say industry is at greater risk of data breaches than others

Maria Castellucci
  • Tweet
  • Share
  • Share
  • Email
  • More
    Reprints Print

    About 87% of health law attorneys think their healthcare clients are at a greater risk for cybersecurity attacks than other industries, a survey released Thursday found (PDF).

    The survey, conducted by the American Health Lawyers Association, a nonpartisan organization with 13,500 members, along with media research company Bloomberg Law, found attorneys overwhelmingly think the healthcare industry is vulnerable to hacks and they have since become “intimately” involved in managing cybersecurity issues for their clients.

    The survey included the responses of 290 health law attorneys with clients in the healthcare industry. Of those, 158 work within a law firm and 100 work in-house for a healthcare corporation.

    Almost all of the surveyed lawyers, 97%, said they expect their involvement in cybersecurity matters among their healthcare clients to increase in the next three years. In addition, 75% said their health law practices are developing cybersecurity expertise to meet the demand.

    But nearly 40% of all attorneys are concerned their plans to respond to a breach are “too generic and lack specific guidance for the types of incidents their organizations or clients might face.” One-third of surveyed attorneys said their plans aren't updated to reflect recent types of hacks or even changes within healthcare organizations.

    A way to combat this is for healthcare lawyers to establish “tabletop” exercises with healthcare clients to prepare for a potential breach, said Elliot Golding, a lawyer at Crowell Moring in Washington, D.C., who works with healthcare organizations to address privacy concerns.

    He said an incidence response plan should be crafted, up-to-date and frequently reviewed with those at a healthcare organization who will be at the frontlines of handling a potential hack so everyone understands what their role is.

    But only 21% of the surveyed lawyers indicated they are involved in planning a data security approach before something goes wrong, and 46% of the surveyed attorneys said they are asked for counsel after a breach has occurred.

    Legal counsel can help healthcare organizations develop data loss prevention programs, determine when they should report a breach to federal authorities and review relevant policies and procedures, according to the report.

    Nearly 90% of in-house attorneys for healthcare organizations said their clients were prepared. On the other hand, nearly 70% of law firm attorneys said only half of their clients had incidence response plans.

    The need for lawyers versed in both cybersecurity and healthcare has dramatically increased as technology advances and protocols around privacy and protection continue to expand, said Elisabeth Belmont, past president of the American Health Lawyers Association and a corporate counsel attorney for MaineHealth, an integrated delivery network in Portland.

    Belmont said she expects health lawyers will continue to need more education to stay informed on regulatory requirements enforced by federal agencies like the Office for Civil Rights and the Office of the National Coordinator for Health Information Technology.

    Healthcare is more vulnerable to hacks than other industries because medical records are so valuable, both Belmont and Golding said.

    This summer, a hacker was spotted on the black market offering to sell nearly 10 million patient records for $880,000. A lot of criminals who steal credit card account information will use it themselves for fraudulent purchases or sell it.

    Hackers can get anywhere from $5 for the card number to $1,000 for the information contained in account balances, according to Business Insider.

    The survey found medical records are the most frequent target of cyberattacks with 60% of all attorneys indicating that medical records were the target of data breaches for their healthcare clients in the past two years. Nearly 50% said Social Security numbers and credit card data were targets. Forty percent said billing and insurance records were threatened.

    Overall, the number of healthcare attacks over the past five years has increased by 125%, according to a 2016 survey from HIMSS Analytics, the research arm of the Healthcare Information and Management Systems Society, and security firm Symantec.

    Letter
    to the
    Editor

    Send us a letter

    Have an opinion about this story? Click here to submit a Letter to the Editor, and we may publish it in print.

    Recommended for You
    InDepth: Private Equity
    Legal questions surround private equity-backed Noble Health
    health care_doc and patient_i.jpg
    Michigan primary care doctors want more funding to help rural staffing shortages
    Most Popular
    1
    More healthcare organizations at risk of credit default, Moody's says
    2
    Centene fills out senior executive team with new president, COO
    3
    SCAN, CareOregon plan to merge into the HealthRight Group
    4
    Blue Cross Blue Shield of Michigan unveils big push that lets physicians take on risk, reap rewards
    5
    Bright Health weighs reverse stock split as delisting looms
    Sponsored Content
    Modern Healthcare A.M. Newsletter: Sign up to receive a comprehensive weekday morning newsletter designed for busy healthcare executives who need the latest and most important healthcare news and analysis.
    Get Newsletters

    Sign up for enewsletters and alerts to receive breaking news and in-depth coverage of healthcare events and trends, as they happen, right to your inbox.

    Subscribe Today
    MH Magazine Cover

    MH magazine offers content that sheds light on healthcare leaders’ complex choices and touch points—from strategy, governance, leadership development and finance to operations, clinical care, and marketing.

    Subscribe
    Connect with Us
    • LinkedIn
    • Twitter
    • Facebook
    • RSS

    Our Mission

    Modern Healthcare empowers industry leaders to succeed by providing unbiased reporting of the news, insights, analysis and data.

    Contact Us

    (877) 812-1581

    Email us

     

    Resources
    • Contact Us
    • Advertise with Us
    • Ad Choices Ad Choices
    • Sitemap
    Editorial Dept
    • Submission Guidelines
    • Code of Ethics
    • Awards
    • About Us
    Legal
    • Terms and Conditions
    • Privacy Policy
    • Privacy Request
    Modern Healthcare
    Copyright © 1996-2023. Crain Communications, Inc. All Rights Reserved.
    • News
      • Current News
      • Providers
      • Insurance
      • Digital Health
      • Government
      • Finance
      • Technology
      • Safety & Quality
      • Transformation
        • Patients
        • Operations
        • Care Delivery
        • Payment
      • People
      • Regional News
        • Midwest
        • Northeast
        • South
        • West
      • Digital Edition (Web Version)
    • Unwell in America
    • Opinion
      • Bold Moves
      • Breaking Bias
      • Commentaries
      • Letters
      • Vital Signs Blog
      • From the Editor
    • Events & Awards
      • Awards
        • Nominate/Eligibility
        • 100 Most Influential People
        • 50 Most Influential Clinical Executives
        • Best Places to Work in Healthcare
        • Excellence in Governance
        • Health Care Hall of Fame
        • Healthcare Marketing Impact Awards
        • Top 25 Emerging Leaders
        • Top 25 Innovators
        • Diversity in Healthcare
          • - Luminaries
          • - Top 25 Diversity Leaders
          • - Leaders to Watch
        • Women in Healthcare
          • - Luminaries
          • - Top 25 Women Leaders
          • - Women to Watch
      • Conferences
        • Digital Health Transformation Summit
        • ESG: The Implementation Imperative Summit
        • Leadership Symposium
        • Social Determinants of Health Symposium
        • Women Leaders in Healthcare Conference
      • Galas
        • Best Places to Work Awards Gala
        • Health Care Hall of Fame Gala
        • Top 25 Diversity Leaders Gala
        • Top 25 Women Leaders Gala
      • Virtual Briefings
        • - Hospital of the Future
        • - Value Based Care
        • - Hospital at Home
        • - Workplace of the Future
        • - Digital Health
        • - Future of Staffing
        • - Hospital of the Future (Fall)
      • Webinars
    • Multimedia
      • Podcast - Beyond the Byline
      • Sponsored Podcast - Healthcare Insider
      • Video Series - The Check Up
      • Sponsored Video Series - One on One
    • Data Center
      • Data Center Home
      • Hospital Financials
      • Staffing & Compensation
      • Quality & Safety
      • Mergers & Acquisitions
      • Data Archive
      • Resource Guide: By the Numbers
      • Surveys
      • Data Points
    • MORE+
      • Contact Us
      • Advertise
      • Media Kit
      • Newsletters
      • Jobs
      • People on the Move
      • Reprints & Licensing