I haven’t been posting all the health data breaches or incidents I have already found this month, as in some cases, I’m waiting for responses from entities to my questions. But I am compiling the incidents in my worksheet that I provide to Protenus, Inc. for their analyses and freely available reports. Yesterday, I added four more incidents to it, only one of which has appeared on this blog so far.
So how are we doing in April? Well, I’ve already added 34 reports to my worksheet in April — and at least 25 of those are hacking incidents. Employee email account compromise continues to figure heavily. Training employees not to fall for phishing or business email compromise is important, but not sufficient. If you think of what a breach can cost you, might it be worth it to engage in some other solutions or strategies?