In its first annual healthcare data breach report, Stern Security has critically analyzed over 4,000 data breaches since the Department of Health and Human Services began tracking the information in 2009. Stern Security utilized data from their HealthcareBreaches.com website as well as published information from Health and Human Services to create this comprehensive report. This […]
Healthcare breaches have recently reached a grim milestone. As of June 10th, 2022, the number of Protected Health Information (PHI) records breached has reached 341,995,928. To put in prospective, this number surpasses the United States population which is at 332,759,097 (United States Census Bureau, 2022). It must be noted that these numbers only include reported healthcare […]
Introduction Velocity helped a large hospital system quadruple the speed of vendor risk assessments, increase accuracy of reviews, create a continuous assessment process, and track internal risk using the Center for Internet Security (CIS), NIST Cybersecurity Framework (CSF), and the HIPAA Security Rule. Background The hospital was struggling to manually review hundreds of vendor (business […]
If the SolarWinds hack taught us anything, it’s that the security of a company’s infrastructure is dependent on the resilience of their vendors. A breached vendor is a trojan horse that bypasses normal defenses and accesses the trusted areas of the network. Threat actors have cunningly discovered that a trusted vendor is often the easier […]
One would think that most data breaches were caused by hacking as those are the breaches that are always mentioned in the news. However, up until the end of 2019, Theft was still the top cause of breaches in healthcare according to data compiled from the U.S. Department of Health and Human Services (HHS) Office […]
2019 NCHICA Incident Response 101 Forum Creating the IR Plan Using Playbook Scenarios Presenter: Jon Sternstein August 2nd, 2019 Research Triangle Foundation12 Davis DriveResearch Triangle Park, NC
2019 Academic Medical Center Conference Healthcare Security Project StrategiesPresenters: Kirk Davis & Jerry Hare (Vidant Health), Jon Sternstein (Stern Security) June 4th, 2019Washington Duke Inn, Durham, NC
The September 2017 (Volume 15 Issue 9) edition of the ISSA Journal features an article by our founder and principal, Jon Sternstein. The title of the story is “Healthcare Security Ailments and Treatments the World Needs to Know” and provides valuable insight into healthcare data breaches. All of the graphs shown can be recreated on […]
2016 NCHICA Annual Conference The Rise of Ransomware in Healthcare – New Threats, Old Solutions Presenters: Chuck Kesler (CISO, Duke Health) & Jon Sternstein (Principal, Stern Security) August, 2016
NC HIMSS Annual Conference 2016 Multifactor Authentication – 2016’s Essential Security ProjectPresenters: Chuck Kesler (Duke Health), Jon Sternstein (Stern Security) April 20 & 21, 2016Hilton North Raleigh/Midtown Hotel3415 Wake Forest Rd, Raleigh, NC 27609
- 1
- 2