A whopping 58 percent of healthcare vendors scored a "D" when it came to data security and privacy standards, as cyberattacks trying to steal medical records become more common, according to security risk management firm Corl Technologies. To put together the report, everything from security incidents, security and privacy policies, and quality of security team in place helped calculate scores.
"[The] majority of health care vendors lack minimum security practices, well short of HIPAA standards," according to the report. "Health organizations are often unaware of how many of their vendors have access to protected information."
It's unfortunate that healthcare vendors earned such a low score, as patient medical records are a valuable asset for cybercriminals. As such, medical identity theft amounted to 43 percent of identity theft cases in 2013, according to a study released by the Ponemon Institute - and HIPAA laws are scrambling to catch up to the current rash of healthcare-related cyberattacks.