The 2015 edition of the Protected Health Information Data Breach Report, released by Verizon and based on a database of protected health information (PHI), amounting to 392 million records, and over 1,931 incidents detected in 25 countries.
http://www.verizonenterprise.com/DBIR/2015/
What’s most alarming is that 90% of companies involved in the survey suffered violations of personal health data. The number of external attacks and internal ones, detected by Verizon, is almost equal, with a difference in favor of external ones of just 5 percent. This highlights, the report explained, a high internal rate of illicit businesses, where often the subtraction of this health data was done with malicious intent.
Who attacks the database does not only seek health information, but in general Personal Identifiable Information (PII), such as your credit card or social security number, because they are useful to perpetrate financial or tax fraud crimes. The latter type of violations generally born following the theft of mobile devices (laptops, tablets, USB sticks), because of simple mistakes such as sending medical records to the wrong recipients or by losing the device.
There is a need to invest more in the Data Protection & E-Privacy