[February 06, 2012] Redspin Releases Breach Report 2011, Protected Health Information Tweet Feb 06, 2012 (Close-Up Media via COMTEX) -- Redspin, a provider of IT security assessments, has released its Breach Report 2011, Protected Health Information. According to a release, the report examines a total of 385 incidents affecting over 19 million individuals since the HITECH Act's breach notification rule went into effect in August 2009. "Information security data breach in healthcare has reached epidemic proportions the problem is widespread and accelerating," said Daniel Berger, Redspin's President and CEO. "Incidents have been reported in nearly all 50 states and the total number of records breached increased 97 percent in 2011 as compared to 2010." Redspin cites the increasing concentration of PHI on unencrypted portable devices (laptops, media) and the lack of sufficient oversight of PHI disclosed to hospital business associates as the main reasons for the increase. Malicious attacks (theft, hacking, and insider incidents) continue to cause 60 percent of all breaches due to the economic value of a personal health record sold on the black market and for medical ID theft used to commit Medicare fraud. At the conclusion of the report, Redspin also provides specific recommendations, drawn from its statistical analysis and real-world experience providing HIPAA security risk analysis services to dozens of hospitals and other healthcare organizations. "Information security breach is the Achilles' heel of PHI," said Berger. "Without further protective measures, data breaches will continue to increase and could derail the implementation, adoption and usage of electronic health records." Report information: redspin.com/resources/whitepapers-datasheets/request_PHI_Breach_Analysis.php ((Comments on this story may be sent to [email protected])) [ Back To TMCnet.com's Homepage ]