ie8 fix

ZDNet Healthcare

Dana Blankenhorn
Home / News & Blogs / ZDNet Healthcare

Health care the new playground for identity thieves

By | November 2, 2010, 7:56am PDT

Summary: If you’re in the medical field you are a merchant, and you need a merchant’s data security.

Everyone knows that retail data is at risk. But health care data is just as big a problem.

Identity thieves know it.

I was honored to talk yesterday with Michael Maloof, CEOCTO of TriGeo Network Security. He was flogging a recent report from the Identity Theft Resource Center indicating that health care suffered 26.3% of all commercial security breaches last year. That’s second to retail’s 40.5% but well ahead of any other economic sector.

Contrary to what you may suppose, they’re not really after your health records. Unless you’re famous or an Octomom, they don’t care about the secret hangnail you suffered in fourth grade.

They just want your money.

With the records in any hospital or clinic, they can get it. “If they have your Social Security Number, your address and date of birth they can take your persona, pretend to be you,” Maloof said.

They can get credit in your name and run up the bills. You may not be charged, because “fraud costs are built into the system,” but merchants will be, and those costs will eventually find their way into the prices you pay.

Too many health systems have awful security, Maloof added. “I’ve seen institutions where every doctor uses the same ID – The Doctor. And the password is known. That’s an easy access point for the hacker.”

TriGeo offers an appliance that can sit behind your firewall, track user traffic, and detect problem patterns, even detect when someone is plugging in a USB thumb drive. This not only protects against outside criminals, but disgruntled insiders.

Most of the company’s prospects are in the mid-market range, hospitals with anywhere from 250-1,000 employees. They may have an Information Technology team but they probably don’t have a security expert on staff. At $20-40,000, then, TriGeo’s software becomes that security employee.

Don’t worry if you’re smaller. “In early December we’ll announce a virtual version of our appliance which brings the cost down further, and people will start using cloud based services. You’ll get it from a service provider.”

Just so long as you get something. And use it. If you’re in the medical field you are a merchant, and you need a merchant’s data security.

Kick off your day with ZDNet's daily e-mail newsletter. It's the freshest tech news and opinion, served hot. Get it.

More from “ZDNet Healthcare”

Topics

Identity Thief, Health Care, Vertical Industries, Healthcare, Benefits And Compensation, Human Resources, Dana Blankenhorn

Disclosure

Dana Blankenhorn

Dana Blankenhorn has been a journalist, writer and part-time futurist for over 30 years. At the present moment I run only a personal blog in addition to my ZDNet open source blog. DanaBlankenhorn.Com has the subtitle The War Against Oil. In the past I have used it to write about political history, e-commerce, personal matters, some ideas related to open source, and The World of Always On, which is the idea of using sensors, motes and RFID to turn WiFi links into platforms for applications which live in the air. My IRA account at Schwab holds a few tech shares, most notably some Intel and Applied Materials, but there are no open source companies in it. I don’t even own any CBS stock.

Biography

Dana Blankenhorn

Dana Blankenhorn has been a business journalist since 1978, and has covered technology since 1982. He launched the Interactive Age Daily, the first daily coverage of the Internet to launch with a magazine, in September 1994.
2
Comments
Add Your Opinion

Join the conversation!

Just In

RE: Health care the new playground for identity thieves
DanaBlankenhorn 2nd Nov 2010
@Rick_R That's why it's important for companies like this to turn this into services that can be delivered automatically. Security should be a service for anyone seeking to become a health ISP under the NHIN.
View in thread
0 Votes
+ -
How about all the "peripheral entities"?
Rick_R 2nd Nov 2010
Nice intro. But a HUGE problem with healthcare is all the "peripheral entities". Healthcare providers--particularly physicians and similar providers--are often primarily concerned with getting services cheap. They'll "farm out" pretty much anything to the lowest bidder. LOADS of the work is by "a relative of a friend". Plus, healthcare providers pay bottom dollar for secretarial/clerical help and there is no chance of meaningful advancement, so they have high turnover and poor employee morale.
0 Votes
+ -
RE: Health care the new playground for identity thieves
DanaBlankenhorn 2nd Nov 2010
@Rick_R That's why it's important for companies like this to turn this into services that can be delivered automatically. Security should be a service for anyone seeking to become a health ISP under the NHIN.

Join the conversation!

Formatting +
BB Codes - Note: HTML is not supported in forums
  • [b] Bold [/b]
  • [i] Italic [/i]
  • [u] Underline [/u]
  • [s] Strikethrough [/s]
  • [q] "Quote" [/q]
  • [ol][*] 1. Ordered List [/ol]
  • [ul][*] · Unordered List [/ul]
  • [pre] Preformat [/pre]
  • [quote] "Blockquote" [/quote]
ie8 fix

The best of ZDNet, delivered

ZDNet Newsletters

Get the best of ZDNet delivered straight to your inbox

Facebook Activity

Blog Roll

Blog Archive

White Papers, Webcasts, & Resources
ie8 fix
ie8 fix