Anyone in a healthcare organization can find themselves targeted through phishing and business email compromise (BEC) — some of the industry’s most pervasive and damaging cyber threats. Unfortunately, many employees aren’t prepared to protect against these attacks, which can jeopardize confidential data — and even patient safety.
Humans in the Crosshairs
In healthcare, 62% of security incidents start with a phishing email, and cybersecurity and privacy concerns were big topics at a major conference put on last month by HIMSS (Healthcare Information and Management Systems Society). HIMSS has also just released its annual Cybersecurity Survey, which underscores the industry’s need for more people-centric cybersecurity assessments — such as phishing tests — and more effective security awareness training.
In healthcare, cyber criminals rely on targeting people rather than technology. As noted in the HIMSS survey, “[s]ignificant security incidents are a near universal experience in US healthcare organizations with many of the incidents initiated by bad actors, leveraging email as a means to compromise the integrity of their targets.”
Infographic: Healthcare’s Cybersecurity Knowledge Gap
To illustrate the industry’s critical security awareness challenges, Proofpoint has created a new infographic, Healthcare’s Cybersecurity Knowledge Gap. You might be surprised to discover just who’s being targeted in healthcare organizations, as well as three critical knowledge gaps we identified among employees.
For InfoSec professionals in healthcare, this resource can help you position your security awareness training program for more widespread buy-in within your organization.
To learn more, download the infographic from the Proofpoint Security Awareness Training website.