A hack at Anthem, the second-largest health insurer in the country, exposed personal information about millions of employees and customers. But the attack is just the latest evidence that cybercriminals are increasingly targeting the medical sector where they can collect health information that can be sold for a premium on the black market.
“What we’ve seen in the last few years is that attackers have realized the economics of health-care data are very, very attractive,” says Lee Weiner, senior vice president at cybersecurity firm Rapid7.
Anthem said hackers collected several pieces of personal information about its employees and customers, including Social Security numbers, birthdays and street and e-mail addresses. But the hack also included medical information numbers, which can be among the most damaging types of stolen data and be used to commit medical fraud, according to security experts.
Complete health insurance credentials sold for $20 a piece on underground markets in 2013, according to Dell SecureWorks. That is 10 to 20 times more than a U.S. credit card number with a security code.
Cyber Security World Conference 2015 New York City, July 10, brings together information security experts and senior executives focused on protecting today’s enterprises from internal and external cyber attacks; the list of firms just keeps growing: Adobe, ADP, Citigroup, E*Trade, Fidelity, Home Depot, HSBC, JPMorgan Chase, Nasdaq, Neiman Marcus, Target and Wal-mart. Our experts will discuss strategies to strengthen corporate defenses, the cybersecurity framework, risks brought by mobile computing, lessons for the boardroom and protecting national infrastructure against foreign attacks. More information at http://cybersecurityworldconference.com.