We've seen multiple attacks on the Healthcare sector being reported in the media lately, and cases like these create waves that go further than the financial ramifications.
This is a typical case of hackers targeting people - and the greatest vulnerabilities come from people. Most of the time the technology is actually quite robust, but people click on a link when they are not supposed to, choose a simple password, or write the password down on a piece of paper.
Companies need to start utilising their strongest defence against external threats - the human brain. If more organisations share basic security knowledge with those who have access to any important data daily, the awareness may very well go some way towards preventing attacks such as these.
Wyoming Medical Center has reported on their website a potential healthcare data breach due to a phishing scam. Approximately 3,184 individuals were notified by the medical center that their PHI may have been accessed by an unauthorized user. The entity had first sent a phishing email to one employee. After the employee opened the scam email, the third party was able to use the employee’s account to send more phishing emails to other staff.