By Caroline Humer and Jim Finkle NEW YORK/BOSTON (Reuters) - Your medical information is worth 10 times more than your credit card number on the black market. Last month, the FBI warned healthcare providers to guard against cyber attacks after one of the largest U.S. hospital operators, Community Health Systems Inc, said Chinese hackers had broken into its computer network and stolen the personal information of 4.5 million patients. Security experts say cyber criminals are increasingly targeting the $3 trillion U.S. healthcare industry, which has many companies still reliant on aging computer systems that do not use the latest security features. "As attackers discover new methods to make money, the healthcare industry is becoming a much riper target because of the ability to sell large batches of personal data for profit," said Dave Kennedy, an expert on healthcare security and CEO of TrustedSEC LLC. "Hospitals have low security, so it's relatively easy for these hackers to get a large amount of personal data for medical fraud." Interviews with nearly a dozen healthcare executives, cybersecurity investigators and fraud experts provide a detailed account of the underground market for stolen patient data. The data for sale includes names, birth dates, policy numbers, diagnosis codes and billing information. Fraudsters use this data to create fake IDs to buy medical equipment or drugs that can be resold, or they combine a patient number with a false provider number and file made-up claims with insurers, according to experts who have investigated cyber attacks on healthcare organizations. Medical identity theft is often not immediately identified by a patient or their provider, giving criminals years to milk such credentials. That makes medical data more valuable than credit cards, which tend to be quickly canceled by banks once fraud is detected. Stolen health credentials can go for $10 each, about 10 or 20 times the value of a U.S. credit card number, according to Don Jackson, director of threat intelligence at PhishLabs, a cyber crime protection company. He obtained the data by monitoring underground exchanges where hackers sell the information. ATTACKS ON THE RISE The percentage of healthcare organizations that have reported a criminal cyber attack has risen to 40 percent in 2013 from 20 percent in 2009, according to an annual survey by the Ponemon Institute think tank on data protection policy. Founder Larry Ponemon, who is privy to details of attacks on healthcare firms that have not been made public, said he has seen an increase this year in both the number of cyber attacks and number of records stolen in those breaches. Fueling that increase is a shift to electronic medical records by a majority of U.S. healthcare providers. Marc Probst, chief information officer of Intermountain Healthcare in Salt Lake City, said his hospital system fends off thousands of attempts to penetrate its network each week. So far it is not aware of a successful attack. "The only reason to buy that data is so they can fraudulently bill," Probst said. Healthcare providers and insurers must publicly disclose data breaches affecting more than 500 people, but there are no laws requiring criminal prosecution. As a result, the total cost of cyber attacks on the healthcare system is difficult to pin down. Insurance industry experts say they are one of many expenses ultimately passed onto Americans as part of rising health insurance premiums. Consumers sometimes discover their credentials have been stolen only after fraudsters use their personal medical ID to impersonate them and obtain health services. When the unpaid bills are sent on to debt collectors, they track down the fraud victims and seek payment. Ponemon cited a case last year in which one patient learned that his records at a major hospital chain were compromised after he started receiving bills related to a heart procedure he had not undergone. The man's credentials were also used to buy a mobility scooter and several pieces of medical equipment, racking up tens of thousands of dollars in total fraud. MEDICARE FRAUD The government's efforts to combat Medicare fraud have focused on traditional types of scams that involve provider billing and over billing. Fraud involving the Medicare program for seniors and the disabled totaled more than $6 billion in the last two years, according to a database maintained by Medical Identity Fraud Alliance. "Healthcare providers and hospitals are just some of the easiest networks to break into," said Jeff Horne, vice president at cybersecurity firm Accuvant, which is majority-owned by private equity firm Blackstone Group. "When I've looked at hospitals, and when I've talked to other people inside of a breach, they are using very old legacy systems - Windows systems that are 10 plus years old that have not seen a patch." KPMG partner Michael Ebert said security has been an afterthought for many medical providers - whether it is building encryption into software used to create electronic patient records or in setting budgets. "Are you going to put money into a brand new MRI machine or laser surgery or are you going to put money into a new firewall?" he said. (Additional reporting by Susan Kelly in Chicago; Editing by Michele Gershberg and Tiffany Wu)
- Good Housekeeping
'Today' show co-hosts Hoda Kotb and Savannah Guthrie posted heartwarming Instagrams dedicated to each other amid rumors that the two are feuding.
- NY Daily News
Donald Trump Jr. got so worked up speaking about the FBI’s search to recover confidential documents from his father’s home last week that it even caused critics of the former president’s namesake to wonder about his well-being. The Atlantic writer Molly Jong-Fast posted the 44-year-old scion’s rapid-fire rant, which included a nonstop stream of loosely connected grievances running the gamut ...
- NBC News
An Oval Office incident from 2019 perfectly illustrates Trump's approach to state secrets, say ex intel officials
What happened in the Oval Office on Aug. 30, 2019, perfectly illustrated President Donald Trump's approach to state secrets, say former intel officials.
- Yahoo Life
Florence Pugh reflects on body shaming after wearing a sheer dress: 'They were so angry that I was confident'
The 26-year-old actress opens up about being subjected to public scrutiny.
Donna D’Errico is defying the haters who think she’s “too old” to wear a bikini. The “Baywatch” star announced that she has joined OnlyFans, the subscriber-only social media site, joining her former costar Carmen Electra on the platform. D’Errico, who is 54, shared an explanation for why she started a page on OnlyFans in a […]
- The Hill
Rep. Liz Cheney (Wyo.), a one-time ally of Donald Trump who became one of his most ardent Republican critics, is projected to lose her primary on Tuesday after a longshot bid to survive defying the former president and his influence over GOP voters. NBC News and CBS News both called the race shortly after 10…
Trump was so distracted by grievances that he never got round to returning secret documents the FBI found at Mar-a-Lago: NYT
Sources told The Times the procedures for returning documents were ignored during the chaotic final days of Trump's presidency.
- CBS News
"They took a great, a great person who wanted to help the community and wanted to better us as people," friend and fellow coach Heith Mayes said.
- The Wrap
Jolie had leveled accusations of physical and verbal abuse by her ex-husband in 2016
- The Courier Journal
Narratives around this disaster have run amuck with some going so far as to name the people dealing with it as the harbingers of their own destruction
- The Hill
To view past editions of The Hill’s 12:30 Report, click here: https://bit.ly/30ARS1U To receive The Hill’s 12:30 Report in your inbox, please sign up here: https://bit.ly/3qmIoS9 –> A midday take on what’s happening in politics and how to have a sense of humor about it.* *Ha. Haha. Hahah. Sniff. Haha. Sniff. Ha–breaks down crying hysterically. HAPPENING TODAY There aren’t…
- The Hollywood Reporter
General Hospital actress Lindsey Pearlman’s cause of death has been revealed nearly six months after she was found dead in Los Angeles. According to the Los Angeles County coroner’s office, Pearlman died by suicide from sodium nitrite toxicity. The case was closed Aug. 1, the coroner’s office tells The Hollywood Reporter. Pearlman, 43, had recurring […]
- In The Know by Yahoo
Some social media users love the new item, but others claimed it was strange and disappointing.
A man with monkeypox shared a three-week timeline of his rash with pictures to raise awareness of monkeypox symptoms and how the virus is spreading.
Single mother says she was fired from her job after her co-worker reported her TikTok to school officials
Nicole Johnson, 29, said she was fired from her job as a teacher because her co-worker reported her TikTok videos to the administration.
According to a doctor, one change could've saved Princess Diana's life.
- The Hill
Rep. Val Demings (D) leads Sen. Marco Rubio (R) by 4 percentage points in Florida’s Senate race, according to a poll released Tuesday. The poll, released by the University of North Florida’s Public Opinion Research Lab, shows Demings with the support of 48 percent of surveyed registered voters who said they would vote in the…
- MMA Junkie
Jake Paul hasn't been shy about calling out the UFC roster but admits there's one fighter he wouldn't want to box.
The Justice Department will reveal the names only if it presses criminal charges against Trump so that the cooperation of other witnesses isn't jeopardized.
- USA TODAY Sports - Golfweek
Report: Lawsuit on behalf of Patrick Reed filed against Brandel Chamblee, Golf Channel for defamation — seeking $750 million in damages
According to the documents, Reed claims Chamblee has a history of calling him a cheater.