As important a role as mobile plays in healthcare, it may also pose an equally serious threat, according to a report by Skycure, a mobile threat defense company based in Palo Alto, Calif. In fact, the report found that the doctors who use mobile devices—approximately 80% of doctors use mobile devices and 28% store patient data on their mobile device, according to the report– in their day-to-day practice are exposed to network threats that increase over time.
For instance, in a single month one in five (22%) of mobile devices will be at risk of a network attack, the report found. After four months, the risk nearly doubles to 39%.
But network attacks are not the only threat at play when it comes to mobile in healthcare. Malware is also a major issue. The report found that more than 4% of all Android devices were infected with malicious apps and that, of the respondents who are medical app users, 27.79 million devices with medical apps installed may also be infected with high-risk malware. In 2015, the Skycure mobile defense system conducted 51 million network tests and detected the installation of nearly 13,00 malicious apps.
The U.S. department of Health and Human Services also reported that in 2015 there were more than 260 major healthcare breaches, and of those breaches, 9% involved a mobile device other than a laptop.
The Skycure report also found that 11% of mobile devices running an outdated operating system with high severity vulnerabilities might have stored patient data on them and 14% of mobile devices containing patient data likely have no passcode to protect them.
“The mobile phone is the best surveillance device in history,” Jim Routh, CSO of the Aetna insurance company, said in the report. “Each device is a potential attack target for personal data, company data, and, in the healthcare industry, the private medical and health information of patients and customers. It’s imperative that both mobile users and their employers understand the risk and how to stay safe.”
The report also found that more than two out of every 100 mobile devices in every industry are high risk—”meaning they’ve already been compromised or are currently under attack.” And nearly 44% are medium to high risk, the report said.
“Mobile is a huge attack target for cyber criminals who are after sensitive personal data like patient records,” Adi Sharabani, CEO of Skycure, said in the report. “Unlike desktop and network security, mobile security is often the weakest link in the security chain. Healthcare is one place where it is clear that one compromised device puts more than just the device owner’s data and identity at risk.”