November 14, 2017
In the Wake of Major Anthem and Premera Healthcare Breaches, ThreatMetrix Provides Strategies for Prevention
Posted April 16, 2015
As the Healthcare Industry Continues to be a Major Target for Cybercrime, ThreatMetrix Calls for the Need for Protection Beyond Encryption
San Jose, CA – April 16, 2015 – ThreatMetrix®, the fastest-growing provider of context-based security and advanced fraud prevention solutions, today announced strategies for cybercrime prevention in the healthcare industry following the high profile data breaches of Anthem and Premera in recent months. According to ThreatMetrix, the Anthem and Premera breaches could have been prevented through the use of real-time digital identity intelligence.
Stolen health credentials can sell for $10 each on the black market—about 10 or 20 times the value of a U.S. credit card number. The Anthem hack exposed the health records of more than 80 million personal identities, and the numbers for the more recent Premera breach rose above 11 million. With more than 90 million healthcare records exposed in the first few months of 2015, it’s clear that the healthcare industry is a growing target for cybercriminals. However, healthcare providers are still using antiquated authentication and fraud prevention solutions.
“The most valuable data stores for fraudsters are stolen patient records that are associated with a valid health insurance policy,” said Reed Taussig, president and CEO at ThreatMetrix. “While most enterprises continue to focus on securing their internal networks, what is really required is broad adoption and use of secure, anonymized global shared intelligence that will identify what for and where those 90 million stolen identities are being used.”
Increased attacks on healthcare and other insurance organizations are likely due to the high value of stolen health information. To help prevent these massive healthcare breaches and their far-reaching implications, ThreatMetrix offers the following preventative strategies:
- Implement unified fraud prevention that leverages a digital identity network to detect and prevent mobile and online fraud while remaining agile and responsive for customers, agents, brokers and others.
- Implement advanced device and malware detection capabilities to ensure insurance providers’ systems are not breached due to stolen or third-party credentials.
- Leverage anonymized shared intelligence on personas (digital identities) to connect users with their online activity and device-related behavior patterns beyond the confines of a company’s network.
“When Anthem and Premera sneezed, the cybersecurity industry caught a cold,” said Alisdair Faulkner, chief products officer at ThreatMetrix. “Most organizations are focusing purely within their own networks, but the board room needs to be aware that these massive data breaches are just a precursor to the main event – a systemic and continuous attack on their customer and employee authentication, fraud and identity systems. To do a credible job defending against stolen identities, organizations need better risk intelligence based on anonymized shared intelligence to differentiate between trusted users and cyber threats.”
The data that was stolen in the Anthem breach was encrypted, but it’s clear that encryption alone isn’t enough to protect employees’ and customers’ personal information. Hackers began infiltrating Anthem’s systems 10 months prior to the announcement of the attack and Anthem needed real-time intelligence to stop these hackers in their tracks.
- Share this news on Twitter: Will #healthcare breaches continue in 2015? @ThreatMetrix thinks fraudsters aren’t done yet http://goo.gl/kyiexx
- Press Release: ThreatMetrix Predicts Mobile Will Represent More Than Half of Transactions in 2015 and Cybercrime Threats Will Continue to Evolve
- Press Release: ThreatMetrix Shares Strategies for Businesses to Protect Privacy, Safeguard Data and Build Trust on the Internet in Alignment with Data Privacy Day
- ThreatMetrix Blog: The Anthem Tipping Point
ThreatMetrix builds trust on the Internet by offering market-leading advanced fraud prevention and frictionless context-based security solutions leveraging a global shared digital identity network and real-time customer-driven analytics platform. These solutions help customers differentiate between trusted users and potential fraud resulting in reduced friction, incremental revenue and lower fraud and operational costs.
ThreatMetrix secures customers against account takeover, payment fraud, fraudulent account registrations resulting from malware, and data breaches. Underpinning the solution is the ThreatMetrix® Global Trust Intelligence Network, which analyzes more than one billion monthly transactions and protects more than 250 million active user accounts across 3,000 customers and 15,000 websites and mobile applications. ThreatMetrix is deployed by industry leaders across financial services, e-commerce, payments, social networks, government and insurance.
For more information, visit www.threatmetrix.com or call 1-408-200-5755.
© 2015 ThreatMetrix. All rights reserved. ThreatMetrix, TrustDefender ID, TrustDefender Cloud, TrustDefender Mobile, TrustDefender Client, the TrustDefender Cybercrime Protection Platform, ThreatMetrix Labs, and the ThreatMetrix logo are trademarks or registered trademarks of ThreatMetrix in the United States and other countries. All other brand, service or product names are trademarks or registered trademarks of their respective companies or owners.
Walker Sands Communications