A report compiled by Health and Human Services (HHS) says that cyber crooks targeted hospitals and health service providers the most during the COVID-19 pandemic last year, to steal diagnosis and research details along with patient records from Electronic Health Record (EHR) systems.
Security researchers from Approov also tried to mimic the skills of hackers and accessed over 4 million patient and clinical records from over 25,000 providers, where half of the data was sold on the dark web or used to extort money from the victims.
Health Information such as demographics, lab results, medications, procedures, allergies and other data was severely affected says Elissa Knight, a Cybersecurity Expert from Approov.
Most apps are exhibiting vulnerabilities and that was found in an analysis using the Fast Healthcare Interoperability Resources Standard.
No serious hacking tools were used to access the data from the health apps as just some basic skills helped in pulling out the info and that’s serious added Ms. Knight.
Here the problem is not at the end of EHR housed at hospitals as they are well protected. But as soon as the patient gives permission to health apps to access the records stored in EHR, the app programs start keeping a track of the developments before and after the access- leaving a long trail for hackers.