PROTECTING HEALTH – SECURING DATA
244,000+ Data Breaches, 700+ Hospitals
The MedGuard Project is a scientific initiative focused on identifying and analyzing data breaches in medical institutions worldwide. With over 244,000 breaches across more than 700 hospitals, the project emphasizes responsible disclosure and scientific research to enhance data security and protect patient information.
01/24 - 05/24
Data Aggregation and Preparation
"The Great Data Hunt"
During this period, we focused on aggregating data from available sources. The original data sources contained billions of data breaches, from which we meticulously extracted 244,000 breaches affecting more than 700 hospitals worldwide.
The collected data underwent a thorough cleaning process to ensure accuracy and reliability, removing duplicates and correcting inconsistencies. We then analyzed the data to identify patterns, trends, and key vulnerabilities. Finally, the data was organized into a structured format, categorized by the type of breach, severity, and affected institutions, setting the foundation for the subsequent steps in our project.
06/24 - 12/24
​Notification and Grace Period
"Sounding the Alarm"
Entries Submitted
0
During this period, we will focus on informing all affected hospitals about the data breaches. This process will be conducted with the assistance of CERTs (Computer Emergency Response Teams) and other national organizations. Each hospital will be provided with detailed information about the specific breaches affecting them, along with recommendations for immediate security measures.
​
Following the notification, we will establish a six-month grace period to allow the affected institutions sufficient time to address the identified vulnerabilities and implement the recommended security measures. This grace period will ensure that hospitals can enhance their data security and protect patient information before the public disclosure of our findings.
​
This step is crucial in promoting responsible disclosure and collaboration, allowing hospitals to improve their security posture while maintaining trust and confidentiality.
Data Submissions to CERTs
To all CERTs: We only send data after initial contact and establishing an encrypted connection, never unsolicited.
01/25
Publication of Research Results
"Sharing the Insights"
During this phase, we will focus on the publication of the research results from the MedGuard Project. After the six-month grace period, the findings will be compiled and analyzed to produce a comprehensive report on the data breaches.
​
The final report will include detailed insights into the patterns and trends identified during the data analysis and case studies of the most significant breaches. The report will also provide actionable recommendations for improving data security in medical institutions.
​
Our goal in publishing these results is to contribute to the broader cybersecurity community by sharing valuable knowledge and lessons learned. By doing so, we aim to help other medical institutions and organizations enhance their security practices, prevent future breaches, and protect sensitive patient information.
