- This topic has 2 replies, 3 voices, and was last updated 2 years, 7 months ago by Pimthong Sinchai.
-
AuthorPosts
-
-
2021-09-27 at 11:02 am #31677Hazem AbouelfetouhParticipant
1. Provide a brief description of the story.
A health cyberattack occurred between May 9 – 19, 2021 on Florida Heart Associates (FHA). FHA became aware of the attack after 10 days on May 19 and notified the Department of Health and Human Services Office for Civil Rights on July 7 and announced the security incident in a press release on July 14.2. What is/are the impact of this data breach? Consequences of the data breach.
A total of 45,148 individuals are affected by this recent cyberattack. There has been no indication that patient information has been misused by an unauthorized individual. However, it is possible that our patients’ Social Security number, member identification number, date of birth, and health insurance information may have been seen or accessed.3. How did the data breach occur?
The initial investigation revealed that malicious actors may have gained access to our network between May 9 and 19, 2021. According to FHA, the investigation into the cyberattack is ongoing.4. What should be the main cause of the data breach? Provide a brief explanation of the cause of data breach, such as phishing, ransomware, HIPAA violation, database misconfiguration, human error, third-party vendor error)?
The main cause is the lack of experts who can implement stronger policies, network monitoring, and response tools to detect any cyberattack early and study the cyberattack to improve system security. Also, the weak system’s architecture plays an important role in this data breach.5. How could you prevent this data breach attack?
FHA should implement additional safeguards and review policies and procedures relating to data privacy and security. And hire a team of cybersecurity engineers and IT experts to implement stronger policies in order to protect FHA’s servers and strengthen the system’s architecture to prevent new incidents. -
2021-09-29 at 9:18 pm #31723SaranathKeymaster
I agree. The organization should pay more attention on cybersecurity. Sometimes an organization doesn’t realize the important of cybersecurity and doesn’t want to invest money on this. But the consequence of data breach may cost much higher than the initial investment.
-
2021-10-15 at 10:35 pm #32191Pimthong SinchaiParticipant
I agree with your idea. To prevent new incidents, they have to improve the policies and staffs.
-
-
AuthorPosts
You must be logged in to reply to this topic. Login here