A Varonis report found that an average health care organization had 31,000 HIPAA-protected files, financial information and other sensitive files accessible by anyone. Varonis also discovered that the health care sector had the highest average life cycle of a data breach at 329 days compared with other industries.