5 Email security misunderstanding puts medical institutions at risk

In the healthcare industry, there is a disconnect between perceived security readiness and actual vulnerability in the healthcare email system, and other areas do not seem to exist.

Paulbox's report, Healthcare is dangerously overconfident in email safetyconsidering that many compliance failures are the result of false assumptions rather than negligence. The report says these false assumptions may include people who believe their vendors handle emails safely. Or the organization that passes the audit becomes complacent.

The report explores some of the following misunderstandings.

Portal is equivalent to compliance

Most portals create friction, which can lead to non-compliant solutions

Staff are well trained, so health functions are safe.

Human error is inevitable. You need compensation tools, not just training

More training will address our preparations to prevent phishing attacks.

Despite the importance of training, 95% of phishing remain unreported. Better detection is crucial.

Purchase HIPAA-compliant platforms to check compliance check box.

Configuration gaps are common. Compliance cannot be guaranteed without supervision.

Email is just a communication tool

Patient data are not only included in electronic health records. It can be found daily in the inbox, attachments, referrals and care coordination chain, the report says.

“We have seen email threats evolve faster than many tools,” said Paubox CEO Hoala Greevey. “It’s no longer just phishing, it’s mass deception.”

To access the full report, Healthcare is dangerously overconfident in email safety,,,,, Fill in the form below.

picture: Just_super, Getty Images