Phishing was most common vector for 2018 breaches, and healthcare was the top sector hit. The law firm BakerHostetler’s fifth annual Data Security Incident Response Report is based on 750 U.S. data breach incidents in 2018. The report highlights several risk management steps that organizations should take, such as implementing multifactor authentication. The average ransom paid was nearly $29,000, and the largest ransom was $250,000. An estimated 25 percent of incidents triggered international reporting requirements under such laws as the EU’s General Data Protection Regulation.”]
Source: https://www.cuinfosecurity.com/blogs/report-healthcare-no-1-for-breaches-p-2736