But is this increase due to more breaches actually happening, or simply better reporting? Since last year, the penalties for not reporting a data breach have increased along with the number of reported breaches.
Lee Kim, director of privacy and security at HIMSS, says that while it's still unclear whether the number of breaches is growing, healthcare leaders should assume the numbers are accurate until we learn otherwise. "The number of breaches and quantification surrounding them depends upon who is responding, what the culture is about reporting such breaches within the organization, and the rate of detection of looking for these incidents," Kim says.
The number of breaches depends heavily on sources, how adept they are at catching the infiltration to begin with and how dutifully they report the breach to begin with, she says. "There's something to be said for how on our toes we are regarding reporting breaches quickly. Are we being proactive enough?"