A report published by LexisNexis Solutions points to the low level of security across telemedicine and patient portals. Healthcare facilities across the world are deploying telemedicine solutions at a rapid pace. However, the use of traditional platforms has subjected patient data to cyber risks. Most of the renowned healthcare organisations are confident about their data safety and verification nodes. However, an in-depth analysis of their patient portals reveals major protection loopholes.
The report records responses of healthcare professionals and payers from over a hundred leading healthcare facilities. They were asked to fill-in their answers with regard to identity management plans, best practices, and future investments. 70 percent of the respondents revealed that they currently have a patient portal in place. 18 percent of them plan to deploy a patient management system in the future. Only 26 percent of healthcare facilities said that most of their patients use the portal.
Obsolete Nature of Traditional Systems
The report also gives key insights about the security concerns faced by healthcare facilities. Around 65 percent of healthcare facilities use multifactor authentication which is recommended by cybersecurity experts. The researchers expressed appal at the fact that 35% of facilities did not have multifactor authentication. Knowledge-based methods for authentication are not adequate in this scenario when data breaches are rampant.
Complacence of Healthcare Facilities
Healthcare organisations have succumbed to the pressure of maintaining patient healthcare records. This has led them to induct traditional and obsolete authentication systems and security nodes. Furthermore, healthcare facilities are showing complacence with their security systems and have to acknowledge the pitfalls. Several of these facilitates claim to prioritise patient data safety, but their weak authentication nodes suggest otherwise.
The researchers went on to say that some of the facilities are “waiting” for data breaches. Username and password are insecure options for protecting patient portals. Information-based login has, in fact, become an entry point for attackers and cyber criminals.