To mitigate this threat in the future, the publication outlined a number of preventive steps healthcare organizations can take.
Seven steps to mitigate the risk of email phishing, according to HealthcareInfoSecurity:
- Document information security and privacy policies and procedures, including staff responsibilities for preventing phishing attacks
- Provide updated and frequent training to all employees about the security and privacy policies and procedures
- Consider including an overview of information security and privacy practices during annual performance reviews
- Deploy malware prevention tools, such as those that scan for potential phishing attempts based on the domains email messages originate from and their characteristics
- Implement strong data-storage encryption
- Implement data-leak prevention tools
- Block access to known malicious sites
Click here to access the complete article.
More articles on cybersecurity:
J&J, Apple to test whether latest Apple Watch can predict stroke risk
HITRUST updates program for HIPAA, HITECH compliance assessments
Microsoft, VC firms invest $35M in healthcare data platform Innovaccer
