The company analyzed critical risks facing hospitals and health systems in its database and summarized them. Clearwater gathered the data from HIPAA risk analyses performed using its IRM|Analysis software that provides an automated process for assessing and remediating cybersecurity risks.
The three most common risks found during a HIPAA risk analysis using the IRM|Analysis software were:
• User authentication deficiencies
• Endpoint leakage
• Excessive user permissions
Additionally, Clearwater found that the top three user authentication deficiencies were:
• Use of generic user IDs and/or passwords
• Posting user passwords on monitors or under keyboards
• Emailing user credentials unencrypted over external networks
More articles on cybersecurity:
Malware on BJC HealthCare website compromises 6,000 patients’ payment data
Ransomware hit 1 in 4 healthcare organizations this year, report finds
Vermont community hospital notifies 32,000 after data breach: 4 things to know
