Survey: Majority of Americans Underestimate the Threat of Stolen Medical Data | Healthcare Informatics Magazine | Health IT | Information Technology Skip to content Skip to navigation

Survey: Majority of Americans Underestimate the Threat of Stolen Medical Data

October 30, 2015
by Heather Landi
| Reprints

Despite widespread media attention about recent large security breaches at healthcare organizations, most Americans don’t recognize the threat posed by stolen medical records, according to a Vormetric survey.

Vormetric, a data security vendor, in conjunction with Wakefield, surveyed consumers about the types of account information they are most concerned about in the event of a data breach. The survey found that 89 percent of Americans polled did not include medical records in their top three selections of personal data they would be most concerned to have lost in a data breach. And, the survey indicated that Americans are still most concerned about the security of financial account information and social security numbers.

According to the survey, 84 percent of consumers surveyed said they were concerned about security of social security numbers, 73 percent cited credit card data and 71 percent in financial account information.

Cybersecurity experts have learned that black market prices for personal health information (PHI) can be four to 12 times higher than for credit card data, which makes healthcare data a prime target for hackers.

“Healthcare data sets contain extremely detailed personal information. Enough to not only apply for credit cards or loans, but also to generate huge sums from fraudulent medical charges,” Tina Stewart, vice president of marketing for Vormetric, said in a statement. “The public’s lack of awareness of their potential exposure to this is troubling. Few seem to realize that having their medical data lost is much more dangerous to their financial health than a stolen credit card number and address.”

And as Healthcare Informatics Senior Editor Rajiv Leventhal pointed out in his blog post, medical identity theft can result in a significant financial loss for patients, on average about $13,500 per victim.

The survey found 91 percent of Americans polled said they would still be worried if their personal data was stored in an encrypted file that was stolen as a result of a hack.

Stewart said encryption combined with strong access control was perhaps the most effective way to protect sensitive data given today’s threat environment. However, information security leaders interviewed by Healthcare Informatics have indicated that other techniques can effectively protect data. Many information security leaders have said that a solid risk analysis of healthcare databases is needed to determine the best security strategy.

Get the latest information on Health IT and attend other valuable sessions at this two-day Summit providing healthcare leaders with educational content, insightful debate and dialogue on the future of healthcare and technology.

Learn More



Advocate Aurora Health, Foxconn Plan Employee Wellness, “Smart City,” and Precision Medicine Collaboration

Wisconsin-based Advocate Aurora Health is partnering with Foxconn Health Technology Business Group, a Taiwanese company, to develop new technology-driven healthcare services and tools.

Healthcare Data Breach Costs Remain Highest at $408 Per Record

The cost of a data breach for healthcare organizations continues to rise, from $380 per record last year to $408 per record this year, as the healthcare industry also continues to incur the highest cost for data breaches compared to any other industry, according to a new study from IBM Security and the Ponemon Institute.

Morris Leaves ONC to Lead VA Office of Electronic Health Record Modernization

Genevieve Morris, who has been detailed to the U.S. Department of Veterans Affairs (VA) from her position as the principal deputy national coordinator for the Department of Health and Human Services, will move over full time to lead the newly establishment VA Office of Electronic Health Record Modernization.

Cedars-Sinai Accelerator Program Presents Fourth Class of Startups

The Cedars-Sinai Accelerator, a program that helps entrepreneurs bring their innovative technology products to market, has brought in nine more health tech startups as part of its fourth class.

DirectTrust Adds Five Board Members

DirectTrust, a nonprofit organization that support health information exchange, announced the appointment of five new executives to its board of directors.

Analysis: Many States Continue to Have Restrictive Telemedicine Policies

State Medicaid programs are evolving to accelerate the adoption of telemedicine models, this evolution is occurring more quickly in some states than others, according to a recent analysis by Manatt Health.