This article details a disturbing trend in Health Care and Academia concerning an utter lack of cyber preparedness. From a health care perspective, from my experience, I believe this problem is largely fed by the false comfort provided by compliance efforts. More specifically, the concept of Meaningful Use has lulled medical providers into thinking they are actually safe from attack or breach. This problem is further exacerbated by the false sense of security provided by cyber insurance policies.
Businesses desperately need to realize that compliance does not by any stretch of the imagination mean you are secure. Insurance cannot protect your reputation or insulate you from the follow up events after your policy has been cancelled due to a breach. The threat must be taken seriously and addressed accordingly with valid IT security measures grounded in a best practices approach.