We should never trust the insurance companies with our medical records. Why? For one, they sell it to big data companies to make money. Secondly, they use it to find ways to save money on our health. Lastly, they are targets of hackers who are trying to steal and sell it.
- The addition of a new potential for profiting from hacking could increase the “demand” side of the equation for records, increasing the likelihood of attacks and the need for healthcare organizations to stiffen defenses.
- In late June, a hacker known as “The Dark Overlord” reported the theft of nearly 10 million patient medical records from providers and a major insurer and put them on the Dark Web market where hackers conduct buy and sell data taken from a variety of sources.
- However, security pros were stunned by the scope of this data sale—that so many records from multiple healthcare organizations were being openly made available for sale either in mass or in part, with a total value of more than $800,000.
- However, the hacker also attempted to extort at least one victim to pay ransom as another vehicle for monetizing the haul, says Christos Dimitriadis, PhD, chair of the ISACA board of directors, a trade group previously known as the Information Systems and Control Association.
- Hackers can go through the records they have stolen, identify healthcare CEOs and other top leaders who have medical records they would not want to see made public, and blackmail them, Cunningham warns.
The answer to this, using my limited technological knowledge, is that you should probably keep your own medical records on you, which are encrypted and used only when you see a doctor or go to the hospital. Don’t let the health insurance companies have it. When is the last time they could be trusted with anything?