About 60 percent of last year's healthcare data breaches involved email phishing, according to data cited by HealthcareInfoSecurity.
To mitigate this threat in the future, the publication outlined a number of preventive steps healthcare organizations can take.
Seven steps to mitigate the risk of email phishing, according to HealthcareInfoSecurity:
- Document information security and privacy policies and procedures, including staff responsibilities for preventing phishing attacks
- Provide updated and frequent training to all employees about the security and privacy policies and procedures
- Consider including an overview of information security and privacy practices during annual performance reviews
- Deploy malware prevention tools, such as those that scan for potential phishing attempts based on the domains email messages originate from and their characteristics
- Implement strong data-storage encryption
- Implement data-leak prevention tools
- Block access to known malicious sites
Click here to access the complete article.