Cloud Security Alarms: Navigating the Ongoing Threats in Healthcare


CloudWize is the first out-of-the-box Cloud Security Center of Excellence (CSCoE) solution that helps companies easily guard their cloud by having maximum cloud security and compliance with minimal effort. Get 360° protection from architecture design to runtime and have peace of mind.

In the past year, the healthcare industry finds itself grappling with a rising tide of cyber threats, leaving both patients and healthcare providers exposed to the perils of data breaches. 

Recent times have shown two major incidents unfurl, sending shockwaves through the industry and emphasizing the critical need for robust cloud security measures. Stanford Health Care Tri-Valley and Mercy Health, both stalwarts in the healthcare domain, have been thrust into the spotlight as victims of breaches, bringing to the forefront the urgency of fortifying the defenses of the digital infrastructure that houses sensitive health data.

Let’s take a closer look: 

1. Stanford Health Care Tri-Valley: Cloud Security Breach Sends Shockwaves

In a disturbing turn of events, Stanford Health Care Tri-Valley, alongside several other hospitals nationwide, found itself ensnared in a data breach originating from a cloud-based software company, Welltok. 

Based in Colorado, Welltok provides crucial database and file-transferring services to healthcare facilities. The breach, affecting a staggering 8,493,379 patients across the United States, stands as one of the largest under investigation by the U.S. Department of Health and Human Services.

What happened:

Welltok sounded the alarm in October with a “notice of data privacy event,” revealing that patients’ personal information, including names, addresses, phone numbers, and email addresses, had been compromised. The breach also extended to health-related data such as provider and prescription names. In some instances, the breach exposed more sensitive information, including Social Security numbers and health insurance details.

The timeline of events is equally concerning. Welltok initially became aware of data vulnerabilities on July 26, with no immediate evidence of compromise during the initial investigation. However, subsequent examinations, aided by third-party cybersecurity consultants, unearthed unauthorized access to Welltok’s server on May 30, with data theft occurring during that period. Shockingly, it wasn’t until August 26 that Welltok confirmed the presence of personal data on the server during the hacking incident.

The results:

Affected patients received notifications from Welltok on behalf of Stanford Health Care, and 20 other healthcare systems were also impacted. While Welltok reassured patients that there was no evidence of misuse, they provided resources for safeguarding personal information. The exact number of Tri-Valley patients affected remains uncertain, adding to the cloud of uncertainty shrouding the breach’s aftermath.

Read more about the Tri -Valley incident here

2. Mercy Health: PJ&A Data Breach Rings the Cloud Security Alarm

Meanwhile, in Cincinnati, Mercy Health confronted its own cloud security nightmare when Perry Johnson & Associates, Inc. (PJ&A), a medical transcription services company, fell victim to a data breach. This breach had far-reaching consequences, impacting over 8.9 million individuals, including patients with Mercy Health.

What happened: 

The unauthorized access to PJ&A’s network occurred between March 27 and May 2, resulting in the acquisition of certain files by an unknown party. PJ&A promptly enlisted a cybersecurity vendor to investigate, contain the threat, and secure their systems. The compromised data encompassed personal health information, such as date of birth, address, medical record number, admission diagnosis, and date(s) and time(s) of service.

The results:

Fortunately, the breach did not compromise credit card information, bank account details, or login credentials. However, for some individuals, the breach extended to more sensitive information, including Social Security numbers, insurance details, and clinical information from medical transcription files. This clinical information encompassed laboratory and diagnostic testing results, medications, the name of the treatment facility, and the name of healthcare providers.

PJ&A moved swiftly, establishing a call center for affected individuals and emphasizing that there was no evidence of information misuse. However, they urged affected parties to review notifications for guidance on safeguarding themselves. Mercy Health, a crucial component of the Bon Secours Mercy Health system, acknowledged the incident without providing further comments, leaving patients in the lurch regarding the long-term implications of the breach.

Learn more about this incident here

Connecting the Dots: Unraveling Common Threads in Healthcare Breaches

These breaches, though seemingly distinct, form part of a broader pattern of vulnerabilities plaguing the digital infrastructure of healthcare systems. The Welltok and PJ&A incidents, along with others, collectively impact millions of individuals, underscoring the urgent need for fortified cybersecurity measures within the healthcare sector.

Understanding the Dynamics: Cloud Security Vulnerabilities

As the healthcare industry grapples with the aftermath of these breaches, a crucial question emerges: what can be done to mitigate the risks associated with cloud security vulnerabilities? Both incidents point to a pressing need for comprehensive tools that can swiftly identify and remediate such vulnerabilities. In this context, Chief Information Security Officers (CISOs) in the healthcare industry are urged to explore solutions like CloudWize, a comprehensive tool equipped with a Cloud Security Center of Excellence.

CloudWize: A Comprehensive Defense Against Cloud Security Threats

CloudWize emerges as a beacon of hope in the turbulent sea of cloud security concerns. This tool offers a multifaceted approach to identifying and remediating cloud security vulnerabilities promptly. 

CloudWize’s Cloud Security Center of Excellence serves as a focal point for streamlining security workloads and enhancing communication between various stakeholders involved in safeguarding sensitive healthcare data.

CloudWize not only addresses the immediate concerns raised by these breaches but also positions itself as a proactive solution for the healthcare industry, along with other targeted industries.

By offering a centralized hub for cloud security management, it empowers CISOs to stay ahead of potential threats, identify vulnerabilities, and implement mitigation strategies swiftly.

Conclusion: Navigating the Cloud Security Storm

The recent breaches in the health industry serve as a stark reminder of the persistent threat landscape surrounding sensitive patient data. As healthcare providers grapple with evolving cybersecurity challenges, implementing advanced solutions and best practices is paramount to safeguarding patient privacy and maintaining trust in the digital age. 

The incidents underscore the need for a collective effort to fortify defenses, ensuring that the healthcare sector remains resilient against cyber threats.

In the aftermath of these breaches, the resounding call is for heightened vigilance and a proactive approach to cloud security. CloudWize stands out as a comprehensive tool that not only identifies and remediates vulnerabilities but also paves the way for a robust defense strategy. 

As the healthcare industry charts its course through the storm of digital threats, solutions like CloudWize offer a beacon of hope, guiding stakeholders toward a safer, more secure future.

Want to see CloudWize’s Cloud Security Solution in action? Request a Demo here.

Join our weekly demo

Once a week our CEO, Chen Goldberg is giving a group demo. 

In this demo he’s showing how to gain maximum cloud security and compliance using CloudWize platform. 

We use cookies and tracking technologies to improve your experience on our website and for analytics purposes. By using and accessing this site, you agree to our Terms of Use and Privacy Policy