Human Error And Password Security

Integris Health in Oklahoma recently announced it was the victim of a cyberattack, stating we "became aware of unauthorized access to a certain portion of our network that stores patient information" and "promptly took steps to secure the environment and commenced an investigation into the nature and scope of the activity." Integris Health stated service was not interrupted, and the hospital remained fully operational.

The data accessed includes names, dates of birth, contact information, demographic information, and Social Security numbers, although the exact information stolen varies by individual. The scammers did not access usernames, passwords, driver's licenses, or government-issued identification.

Integris encouraged those affected to "remain vigilant about any suspicious or unexpected communications from an unfamiliar source or anyone claiming to be affiliated with Integris Health or related to this event." Following the investigation, Integris will contact affected individuals and offer free credit monitoring. Katharyn Burkhead "Integris health becomes target of cyber-attack, patient data potentially compromised" (Dec. 25, 2023).




According to a study by IBM, the main cause of 95 percent of cybersecurity breaches is human error. Human error can result from lack of skills, a temporary lapse in focus, a mistake, or negligence in performing a job.

Poor password security – not using passwords, using weak passwords, failing to change passwords frequently, sharing passwords or writing passwords down on sticky notes and posting them on a workstation – makes people and organizations vulnerable to crime.

The first step to avoiding human error is to solidify your credential security, which starts with training and continual learning and development.


Finally, your opinion is important to us. Please complete the opinion survey:

What's New

Data Compliance Audit: A Double-Edge Sword When Defending Data Security Claims

A new report claims a surge in ransomware attacks. Compliance audits are necessary to limit risk, but there is a dark side to audits if organizations are not ready to comply.

"Juice Jacking" Alert: FBI Warns Of Bad Public Charging Ports

In an unusual move, the FBI warns the general public to stay clear of public USB charging ports. We explain why "juice jacking" is a threat.

Biometric Authentication: Still Not Ready For Prime Time

A bank's choice to rely solely on biometric authentication was quickly shown to be a risk. We explain.