Healthcare data breaches: Implications for digital forensic readiness
Abstract
While the healthcare industry is undergoing disruptive digital transformation, data breaches involving health information are not usually the result of integration of new technologies. Based on published industry reports, fundamental security safeguards are still considered to be lacking with many documented data breaches occurring as the result of device and equipment theft, human error, hacking, ransomware attacks and misuse. Health information is considered to be one of the most attractive targets for cybercriminals due to its inherent sensitivity, but digital investigations of incidents involving health information are often constrained by the lack of the necessary infrastructure forensic readiness. Following the analysis of healthcare data breach causes and threats, we describe the associated digital forensic readiness challenges in the context of the most significant incident causes. With specific focus on privilege misuse, we present a conceptual architecture for forensic audit logging to assist with capture of the relevant digital artefacts in support of possible future digital investigations.
Document Type
Journal Article
Date of Publication
2019
ISSN
1573-689X
Volume
43
Issue
1
PubMed ID
30488291
Publication Title
Journal of Medical Systems
Publisher
Kluwer Academic/Plenum Publishers
School
School of Science
RAS ID
31064
Copyright
subscription content
First Page
7
Last Page
7
Comments
Chernyshev, M., Zeadally, S., & Baig, Z. (2019). Healthcare data breaches: Implications for digital forensic readiness. Journal of Medical Systems, 43(7).
Available here.