Real World Risk Management Practical HR Resources
welcome
Are you a new user?
REGISTER HERE





RETRIEVE PASSWORD

Human Error And Password Security

Integris Health in Oklahoma recently announced it was the victim of a cyberattack, stating we "became aware of unauthorized access to a certain portion of our network that stores patient information" and "promptly took steps to secure the environment and commenced an investigation into the nature and scope of the activity." Integris Health stated service was not interrupted, and the hospital remained fully operational.

The data accessed includes names, dates of birth, contact information, demographic information, and Social Security numbers, although the exact information stolen varies by individual. The scammers did not access usernames, passwords, driver's licenses, or government-issued identification.

Integris encouraged those affected to "remain vigilant about any suspicious or unexpected communications from an unfamiliar source or anyone claiming to be affiliated with Integris Health or related to this event." Following the investigation, Integris will contact affected individuals and offer free credit monitoring. Katharyn Burkhead "Integris health becomes target of cyber-attack, patient data potentially compromised" okcfox.com (Dec. 25, 2023).

 

Commentary

 

According to a study by IBM, the main cause of 95 percent of cybersecurity breaches is human error. Human error can result from lack of skills, a temporary lapse in focus, a mistake, or negligence in performing a job.

Poor password security – not using passwords, using weak passwords, failing to change passwords frequently, sharing passwords or writing passwords down on sticky notes and posting them on a workstation – makes people and organizations vulnerable to crime.

The first step to avoiding human error is to solidify your credential security, which starts with training and continual learning and development.

 

Finally, your opinion is important to us. Please complete the opinion survey:

"Juice Jacking" Alert: FBI Warns Of Bad Public Charging Ports

In an unusual move, the FBI warns the general public to stay clear of public USB charging ports. We explain why "juice jacking" is a threat.

read more

Biometric Authentication: Still Not Ready For Prime Time

A bank's choice to rely solely on biometric authentication was quickly shown to be a risk. We explain.

read more

Ask Jack: Is Password Sharing The Same As Password Stealing?

Stealing a password can be viewed as a crime, but what is wrong with sharing a password? Jack explains the problem.

read more

State Consumer Protection Laws Continue To Address Online Issues From Gamification To Data Privacy

Organizations that follow all general and industry-specific laws governing their website and online activities can avoid risk. We examine.

read more