3M addresses need for stronger visual privacy in healthcare

Dec. 16, 2015

Organizations are investing in information security at record levels yet remain vulnerable to low-tech threats such as visual hacking, where someone can capture sensitive information with nothing more than a smartphone camera. In response, 3M has launched its “Visual Hacking Key Risk Areas” educational campaign to help security professionals and IT managers in high-risk industries better understand where vulnerabilities to data privacy exist and how they can be secured.

Worldwide spending on information security will reach $75.4 billion in 2015, an increase of 4.7 percent over 2014, according to the latest forecast from Gartner, but such investments might not address all areas where data vulnerabilities exist. Ponemon Institute recently conducted the Visual Hacking Experiment, jointly sponsored by 3M Company and the Visual Privacy Advisory Council, on visual hacking, defined as the viewing or capturing of private, sensitive or confidential information on a screen device, workspace, copier, etc. for unauthorized use. It found that a white-hat hacker was able to gain access to participating companies and visually hack sensitive information in 88 percent of attempts.

“Visual hacking can target any industry but may be especially dangerous in healthcare and financial industries, given the sensitive information involved in nearly every customer interaction and the desire for malicious parties to obtain it,” said John Brenberg, Information Security & Compliance Manager, 3M and member of the Visual Privacy Advisory Council (VPAC). “The 3M Key Risk Areas campaign aims to help these organizations understand the threats that visual hacking poses and help them expand their privacy programs to include much-needed administrative-privacy measures.”

Privacy key risk areas that visual hackers may target in these high-risk industries include:

Financial Services

  • Lobbies and public areas
  • Teller desks
  • Platform desks
  • Printers, copiers and fax machines
  • Drive-up teller windows
  • Shared / open workstations

“Data is the lifeblood of today’s digital businesses. Protecting it from theft, misuse, and abuse is the top responsibility of every security and risk leader,” stated a report by Forrester Research. “Hacked customer data can erase millions in profits, stolen intellectual property can erase competitive advantage, and unnecessary privacy abuses can bring unwanted scrutiny and fines from regulators while inflicting reputational damage.”

2015 report by Forrester Research recommends verifying and securing all resources, regardless of location. This could entail using applications to mask high-risk data or privacy filters to shield data from onlookers, to name a few. Revising company policies to ensure workspace designs and employee behaviors are in line with data-privacy best practices is another consideration.

To download the new educational resources, visit www.3mscreens.com/visualhacking.

Sponsored Recommendations

How Digital Co-Pilots for patients help navigate care journeys to lower costs, increase profits, and improve patient outcomes

Discover how digital care journey platforms act as 'co-pilots' for patients, improving outcomes and reducing costs, while boosting profitability and patient satisfaction in this...

5 Strategies to Enhance Population Health with the ACG System

Explore five key ACG System features designed to amplify your population health program. Learn how to apply insights for targeted, effective care, improve overall health outcomes...

A 4-step plan for denial prevention

Denial prevention is a top priority in today’s revenue cycle. It’s also one area where most organizations fall behind. The good news? The technology and tactics to prevent denials...

Healthcare Industry Predictions 2024 and Beyond

The next five years are all about mastering generative AI — is the healthcare industry ready?