2021, Fraud, Health Insurance and HIPAA - Health Care Compliance Brief

Schneck Medical Center Settles HIPAA Lawsuit with Indiana AG

HIPAA Journal

SEPTEMBER 12, 2023

Seymour, IN-based Schneck Medical Center has settled a lawsuit with the Indiana attorney general, Todd Rokita, over a 2021 ransomware attack and data breach that affected 89,707 Indiana residents.

HIPAA

HIPAA Ransomware Health Insurance Fraud

Settlement Agreed with Florida Children’s Health Insurance Website Contractor to Resolve False Claims Act Allegations

HIPAA Journal

MARCH 15, 2023

The United States Department of Justice has agreed to settle alleged False Claims Act violations with Jelly Bean Communications Design LLC and manager Jeremy Spinks related to the failure to protect HIPAA-covered data. FHKC is a state-created entity that offers health and dental insurance to children in Florida between the ages of 5 and 18.

Health Insurance

Health Insurance HIPAA Due Diligence Fraud

RIPTA, UnitedHealthcare of New England Sued Over 2021 Data Breach

HIPAA Journal

OCTOBER 26, 2022

The American Civil Liberties Union of Rhode Island (ACLU of RI) is taking legal action against the Rhode Island Public Transit Authority (RIPTA) and UnitedHealthcare New England (UHC) over an August 2021 data breach that affected more than 22,000 individuals.

HIPAA

HIPAA Fraud Health Insurance

New York Law Firm Pays $200,000 to State AG to Resolve HIPAA Violations

HIPAA Journal

MARCH 28, 2023

A New York law firm that suffered a LockBit ransomware attack has agreed to pay a financial penalty of $200,000 to the New York Attorney General to resolve alleged violations of New York General Business Law and the Privacy and Security Rules of the Health Insurance Portability and Accountability Act (HIPAA).

HIPAA

HIPAA Ransomware Malpractice Health Insurance

BioPlus Specialty Pharmacy Services Proposes Settlement to Resolve Data Breach Lawsuit

HIPAA Journal

MAY 2, 2024

BioPlus Specialty Pharmacy Services has proposed a settlement to resolve a class action lawsuit that was filed in response to a 2021 data breach that exposed the data of up to 350,000 patients. The post BioPlus Specialty Pharmacy Services Proposes Settlement to Resolve Data Breach Lawsuit appeared first on HIPAA Journal.

Fraud

Fraud HIPAA Health Insurance Compliance

Patient Data Stolen in July 2021 Cyberattack on Chelan Douglas Health District

HIPAA Journal

MARCH 24, 2022

Chelan Douglas Health District in East Wenatchee, WA, has announced it was the victim of a cyberattack in July 2021 in which the personal and protected health information of patients was exfiltrated from its systems. A representative for the health district said this was not a ransomware attack.

Ransomware

Ransomware Fraud Hospitals HIPAA

What is a HIPAA Violation?

HIPAA Journal

DECEMBER 31, 2022

To best answer the question what is a HIPAA violation, it is necessary to explain what HIPAA is, who it applies to, and what constitutes a violation; for although most people believe they know what a HIPAA compliance violation is, evidence suggests otherwise. What is HIPAA and Who Does It Apply To?

HIPAA

HIPAA Due Diligence Compliance Fraud

Planned Parenthood Los Angeles Settles Class Action Data Breach Lawsuit for $6 Million

HIPAA Journal

APRIL 8, 2024

Planned Parenthood Los Angeles, a provider of reproductive healthcare services in Los Angeles County, has proposed a $6 million settlement to resolve all claims related to a 2021 data breach that exposed the personal information of more than 409,437 patients.

Ransomware

Ransomware HIPAA Health Insurance Fraud

San Andreas Regional Center Agrees to Settle 2021 Ransomware Attack Lawsuit

HIPAA Journal

JANUARY 31, 2023

Affected individuals were notified about the cyberattack in August 2021 and were offered complimentary credit monitoring and identity theft protection services. Claims of up to $2,500 will be accepted for documented extraordinary losses due to identity theft and fraud. A lawsuit – Lopez, et al.

Ransomware

Ransomware Fraud Health Insurance HIPAA

Editorial: Lessons from Biggest HIPAA Breaches of 2022

HIPAA Journal

DECEMBER 23, 2022

It has been another bad year for healthcare data breaches, with some of the biggest HIPAA breaches of 2022 resulting in the impermissible disclosure of well over a million records. The Biggest HIPAA Breaches of 2022. The 12 biggest HIPAA breaches of 2022 affected almost 22.66 million patients and health plan members.

HIPAA

HIPAA Ransomware Health Insurance Compliance

6 HIPAA Regulated Entities Report Phishing Attacks and Unauthorized Email Account Access

HIPAA Journal

NOVEMBER 16, 2022

Unauthorized individuals have gained access to the email system of the Administrative Fund of the Detectives’ Endowment Association of the Police Department of the City of New York (NYCDEA) and potentially viewed or obtained the protected health information of 21,544 individuals.

HIPAA

HIPAA Licensing Health Insurance Fraud

HHS Issues HIPAA Guidance on Remote Communication Technologies for Audio-Only Telehealth

Health Care Law Brief

JUNE 24, 2022

The Department of Health and Human Services (“HHS”), Office for Civil Rights (“OCR”), recently issued new regulatory guidance relating to covered entities’ HIPAA-compliant use of remote communication technologies for audio-only telehealth services. The new HIPAA guidance affects covered entities in four key ways.

HIPAA

HIPAA Fraud Compliance COVID-19

Michigan Law Firm and Medical Imaging Companies Confirm Breaches of Patient Information

HIPAA Journal

SEPTEMBER 8, 2022

The Michigan law firm, Warner Norcross and Judd LLP, has issued notification letters to 255,160 individuals advising them about an October 2021 security breach in which files containing their personal and protected health information were potentially accessed and exfiltrated from its systems.

Fraud

Fraud Health Insurance Ransomware HIPAA

Email Incidents Reported by Ultimate Care, CareOregon Advantage, and University Medical Center Southern Nevada

HIPAA Journal

MARCH 25, 2022

The forensic investigation revealed the email accounts were accessed by unauthorized individuals between April 7, 2021, and June 2, 2021. AHA provided notice about the attack on January 6, 2021. UMC was a victim of a REvil ransomware attack in June 2021 that resulted in the theft of the protected health information of 1.3

Health Insurance

Health Insurance Licensing Ransomware Fraud

SuperCare Health Sued Over 318,000-Record Data Breach

HIPAA Journal

APRIL 15, 2022

The incident involved the exposure and potential theft of the protected health information of 318,400 patients, including names, addresses, birth dates patient account numbers, medical record numbers, health insurance information, testing, diagnostic, treatment, and claims information.

Electronic Medical Records

Electronic Medical Records HIPAA Health Insurance Fraud

Mon Health Faces Class Action Lawsuit Over 493K Record Data Breach

HIPAA Journal

OCTOBER 6, 2022

Mon Health is facing a class action lawsuit over a hacking incident that allowed unauthorized individuals to gain access to its network for an 11-day period in December 2021. The lawsuit, which names Monongalia Health Systems Inc. and affiliated hospitals, Monongalia County General Hospital Co.,

HIPAA

HIPAA Fraud Hospitals Health Insurance

Ransomware Attack Triggers Multiple Lawsuits Against Harvard Pilgrim Healthcare & Point32Health

HIPAA Journal

JUNE 13, 2023

Point32Health is the second largest insurer in Massachusetts and serves more than 2.4 Point32Health was formed following the merger of Harvard Pilgrim Health Care and Tufts Health Plan in 2021. Harvard Pilgrim Health Care Inc. Harvard Pilgrim Health Care, Inc. million customers. and Point32Health, Inc.

Ransomware

Ransomware Fraud Health Insurance HIPAA

Advent Health Partners Proposes $500,000 Settlement to Resolve Class Action Data Breach Lawsuit

HIPAA Journal

FEBRUARY 16, 2023

The Nashville, TN-based health system, Advent Health Partners, has proposed a $500,000 settlement to resolve claims related to a September 2021 data breach involving the protected health information of 61,072 patients. Advent Health Partners detected a breach of its email environment in early September 2021.

HIPAA

HIPAA Fraud Licensing Health Insurance

Navigating the Intersection of Payment Integrity and Provider Relations in Healthcare

Innovaare Compliance

MARCH 24, 2024

The Importance of Payment Integrity Payment integrity is crucial for health plans to control costs, reduce fraud, waste, and abuse (FWA), and ensure the accuracy of healthcare payments. billion in healthcare fraud judgments and settlements. billion in healthcare fraud judgments and settlements.

Fraud

Fraud Health Insurance Compliance Medicaid

Umass Memorial Health Proposes $1.2 Million Settlement to Resolve Data Breach Lawsuit

HIPAA Journal

FEBRUARY 14, 2023

Hackers gained access to Umass Memorial Health’s email environment between June 24, 2020 and January 7, 2021, as a result of responses to phishing emails. Claims may also be submitted for extraordinary losses up to a maximum of $5,000, which can include documented, unreimbursed losses to fraud and identity theft.

Fraud

Fraud Licensing Health Insurance HIPAA

Class Action Data Breach Lawsuit Settled by Morley Companies

HIPAA Journal

DECEMBER 27, 2022

On or around August 1, 2021, Morley Companies, a Saignaw, MI-based provider of business services, suffered a cyberattack in which hackers gained access to parts of its network. The post Class Action Data Breach Lawsuit Settled by Morley Companies appeared first on HIPAA Journal. A fund of $4.3

Fraud

Fraud HIPAA Health Insurance

First Choice Community Healthcare and Arlington Skin Notify Patients About Cyberattacks

HIPAA Journal

AUGUST 5, 2022

The cyberattack was discovered by VPN Solutions on or around October 31, 2021, and the forensic investigation confirmed that the information potentially compromised in the attack included names, addresses, dates of birth, diagnostic and treatment information, health insurance information, and Social Security numbers.

Electronic Medical Records

Electronic Medical Records Health Insurance Fraud HIPAA

Michigan Law Firm and Texas Medical Imaging Company Confirm Breaches of Patient Information

HIPAA Journal

SEPTEMBER 8, 2022

The Michigan law firm, Warner Norcross and Judd LLP, has issued notification letters to 255,160 individuals advising them about an October 2021 security breach in which files containing their personal and protected health information were potentially accessed and exfiltrated from its systems.

Fraud

Fraud Health Insurance Ransomware HIPAA

Electromed Proposes $825,000 Class Action Data Breach Settlement

HIPAA Journal

FEBRUARY 15, 2023

The medical device manufacturer Electromed has proposed a $850,000 settlement to resolve claims related to a June 2021 ransomware attack and data breach involving the protected health information of 47,200 individuals. The post Electromed Proposes $825,000 Class Action Data Breach Settlement appeared first on HIPAA Journal.

Ransomware

Ransomware Fraud Licensing Health Insurance

Humana Members Impacted by Choice Health Data Breach

HIPAA Journal

SEPTEMBER 29, 2022

Choice Health worked with its service provider to ensure the database was secured and additional data security measures have been implemented to prevent similar occurrences in the future. The post Humana Members Impacted by Choice Health Data Breach appeared first on HIPAA Journal.

Health Insurance

Health Insurance Medicare Medicare Fraud

Rehoboth McKinley Christian Health Care Patients to Be Compensated Up to $4,000 for Data Breach

HIPAA Journal

JANUARY 16, 2023

A settlement proposed by Rehoboth McKinley Christian Health Care Services to resolve claims related to February 2021 cyberattack has been approved by a New Mexico federal judge. Patients were notified about the data breach in May 2021. In June 2021, a lawsuit – Charlie et al. District Court Judge Steven C.

Fraud

Fraud Health Insurance HIPAA Hospitals

Logan Health Proposes $4.3 Million Settlement to Resolve Class Action Data Breach Lawsuit

HIPAA Journal

JANUARY 25, 2023

Logan Health has agreed to settle a class action lawsuit related to a 2021 hacking incident that exposed the protected health information of 213,543 individuals. Under the terms of the settlement, Logan Health has agreed to create a fund of $4.3 The post Logan Health Proposes $4.3

Medical Billing

Medical Billing Fraud HIPAA Health Insurance

Healthback Holdings Email Security Breach Affects 21,000 Individuals

HIPAA Journal

AUGUST 4, 2022

A third-party cybersecurity firm was engaged to assist with the investigation and confirmed that a limited number of employee email accounts had been accessed by an unauthorized third party between October 5, 2021, and May 15, 2022, as a result of responses to phishing emails. OrthoArizona Notifies Patients About October 2021 Cyberattack.

Health Insurance

Health Insurance Fraud HIPAA

Avem Health Partners and Emory Healthcare Notify Patients About Data Breaches

HIPAA Journal

DECEMBER 19, 2022

A review of the files on the compromised servers confirmed that protected health information such as patient names, dates of birth, Social Security numbers, driver’s license numbers, health insurance information, and diagnosis and treatment information had been exposed. The DOL and the U.S.

Fraud

Fraud Licensing HIPAA Health Insurance

Spokane Regional Health District Announces Second Phishing Attack in 3 Months

HIPAA Journal

APRIL 1, 2022

On January 24, 2022, SRHD announced that an employee email account had been compromised on December 21, 2021. Buffalo, NY-based Ciox Health provides health information management services to healthcare providers and insurers. CMMHC identified potentially malicious activity in its email environment on October 21, 2021.

Fraud

Fraud HIPAA Licensing Health Insurance

10 Charged Over BEC Scams Targeting Medicare, Medicaid, and Private Insurance Programs

HIPAA Journal

NOVEMBER 21, 2022

million being defrauded from Medicaid, Medicare, and private health insurance programs. According to the FBI, more than $43 billion was lost to these scams between June 2016 and December 2021, and in 2021 alone, the FBI Internet Crime Complaint Center received reports of losses of $2,395,953,296 to BEC scams.

Medicaid

Medicaid Medicaid Medicare Medicare

Multiple Lawsuits Filed Against Arkansas Hospitals Over Data Breaches

HIPAA Journal

MARCH 21, 2023

MRHS discovered unauthorized access to its computer systems on November 8, 2022, and determined hackers had exfiltrated files from its systems more than a year earlier on October 30, 2021. The lawsuits allege the victims of these breaches now face a substantial risk of fraud, identity theft, and other misuses of their personal data.

Hospitals

Hospitals Fraud Health Insurance HIPAA

$3 Million Settlement Proposed to Resolve 20/20 Eye Care Network Data Breach Lawsuit

HIPAA Journal

FEBRUARY 13, 2023

iCare Acquisitions has proposed a $3 million settlement to resolve claims from individuals affected by a 2021 data breach that affected almost 3.3 million 20/20 Eye Care Network and 20/20 Hearing Care Network health plan members. was filed in the U.S The final approval hearing has been scheduled for June 22, 2023.

HIPAA

HIPAA Fraud Health Insurance

2022 Healthcare Data Breach Report

HIPAA Journal

JANUARY 24, 2023

million records in 2021 to 51.9 The theft of protected health information places patients and health plan members at risk of identity theft and fraud, but by far the biggest concern is the threat to patient safety. Scripps Health suffered a data breach of 1.2 million records in 2021 due to a ransomware attack.

Ransomware

Ransomware HIPAA Hospitals Fraud

COVID-19 Vaccination Statuses of 500,000 VA Employees have been Impermissibly Disclosed

HIPAA Journal

DECEMBER 7, 2022

Urology of Greater Atlanta Notifies Almost 80,000 Patients About August 2021 Data Breach. Urology of Greater Atlanta has now confirmed that it was the victim of a cyberattack that was detected on August 29, 2021. The VA concluded that there was a low risk of misuse of that information.

COVID-19 Vaccine

COVID-19 Vaccine COVID-19 Department of Veterans Affairs Licensing

SAC Health Theft Incident and Multiple Ransomware Attacks Reported

HIPAA Journal

MAY 25, 2022

SAC Health said it is unaware of any actual or attempted misuse of patient data as a result of the break-in; however, as a precaution against identity theft and fraud, affected individuals have been offered complimentary credit monitoring services. Notification letters were sent to those individuals on May 3, 2022.

Ransomware

Ransomware Fraud HIPAA Licensing

Editorial: Why Do Criminals Target Medical Records

HIPAA Journal

OCTOBER 14, 2022

Data compiled by HIPAA Journal from breach reports submitted to the HHS’ Office for Civil Rights (OCR) show the number of data breaches reported by HIPAA-regulated entities continues to increase every year. 2021 saw 714 data breaches of 500 or more records reported to the OCR – an 11% increase from the previous year.

Ransomware

Ransomware HIPAA Health Insurance Hospitals

Cyberattacks Reported by Wolfe Clinic, Reiter Affiliated Companies, & SERV Behavioral Health System

HIPAA Journal

SEPTEMBER 28, 2022

The attack exposed the protected health information of 542,776 current and former Wolfe Clinic patients. Wolfe Clinic used the myCare Integrity medical records platform, which was accessed by an unauthorized party on or around December 4, 2021, who deleted databases and system configuration files.

Electronic Medical Records

Electronic Medical Records Ransomware Fraud HIPAA

Forefront Dermatology Proposes $3.75 Million Settlement to Resolve Ransomware Lawsuit

HIPAA Journal

NOVEMBER 21, 2022

The Wisconsin-based dermatology practice, Forefront Dermatology, has agreed to settle a class action lawsuit filed on behalf of patients whose protected health information (PHI) was compromised in a ransomware attack in late May 2021. Million Settlement to Resolve Ransomware Lawsuit appeared first on HIPAA Journal.

Ransomware

Ransomware Fraud HIPAA Licensing

Oklahoma Institute of Allergy Asthma and Immunology Halts Operations After Cyberattack

HIPAA Journal

MAY 18, 2023

The information exposed included names, addresses, dates of birth, Social Security numbers, health insurance information, diagnoses/conditions, medications, test results, and procedure information. Asian Health Services did not find any evidence to indicate patient data had been compromised but the possibility could not be ruled out.

Ransomware

Ransomware Fraud HIPAA Health Insurance

Healthy Data Management: How IT Assists Healthcare Institutions

Healthcare IT Today

DECEMBER 15, 2023

In Europe, this is GDPR (General Data Protection Regulation), in America, it’s HIPAA (Health Insurance Portability and Accountability Act). AWS solutions require software compatible with HIPAA standards. Currently, ChatGPT does not meet HIPAA standards.

Electronic Medical Records

Electronic Medical Records Doctors HIPAA Hospitals

Healthy Data Management: How IT Assists Healthcare Institutions

HIT Consultant

DECEMBER 18, 2023

In Europe, this is GDPR (General Data Protection Regulation), in America, it’s HIPAA (Health Insurance Portability and Accountability Act). AWS solutions require software compatible with HIPAA standards. Google Cloud Platform The storage operates by HIPAA standards. Pros: Scalable for different needs.

Electronic Medical Records

Electronic Medical Records Doctors HIPAA Pharmaceutical Industry

2021 HIPAA “Wall of Shame” Healthcare Data Breaches Up 7.5%

Compliancy Group

JANUARY 25, 2022

With at least six weeks before final numbers are in, the Department of Health and Human Services HIPAA Breach Reporting Tool website is reporting 713 major healthcare data breaches in 2021, an increase of more than 7.5 By the Numbers: Major Healthcare Data Breaches Increase in 2021. million records in 2021.

HIPAA

HIPAA Ransomware Governance Fraud

Digital Health in the Metaverse: Three Legal Considerations

Healthcare Law Blog

MAY 31, 2022

The FTC’s increasing interest in health information that sits outside of HHS/OCR’s reach is likely to only expand in light of health-related metaverse use cases. The healthcare system in the United States is governed by an expansive network of state and federal laws, including the aforementioned HIPAA regulations. 1, 2021). [2]

FDA

FDA HIPAA Medicare Medicare

Schneck Medical Center Settles HIPAA Lawsuit with Indiana AG

Settlement Agreed with Florida Children’s Health Insurance Website Contractor to Resolve False Claims Act Allegations

Trending Sources

RIPTA, UnitedHealthcare of New England Sued Over 2021 Data Breach

New York Law Firm Pays $200,000 to State AG to Resolve HIPAA Violations

BioPlus Specialty Pharmacy Services Proposes Settlement to Resolve Data Breach Lawsuit

Patient Data Stolen in July 2021 Cyberattack on Chelan Douglas Health District

What is a HIPAA Violation?

Planned Parenthood Los Angeles Settles Class Action Data Breach Lawsuit for $6 Million

San Andreas Regional Center Agrees to Settle 2021 Ransomware Attack Lawsuit

Editorial: Lessons from Biggest HIPAA Breaches of 2022

6 HIPAA Regulated Entities Report Phishing Attacks and Unauthorized Email Account Access

HHS Issues HIPAA Guidance on Remote Communication Technologies for Audio-Only Telehealth

Michigan Law Firm and Medical Imaging Companies Confirm Breaches of Patient Information

Email Incidents Reported by Ultimate Care, CareOregon Advantage, and University Medical Center Southern Nevada

SuperCare Health Sued Over 318,000-Record Data Breach

Mon Health Faces Class Action Lawsuit Over 493K Record Data Breach

Ransomware Attack Triggers Multiple Lawsuits Against Harvard Pilgrim Healthcare & Point32Health

Advent Health Partners Proposes $500,000 Settlement to Resolve Class Action Data Breach Lawsuit

Navigating the Intersection of Payment Integrity and Provider Relations in Healthcare

Umass Memorial Health Proposes $1.2 Million Settlement to Resolve Data Breach Lawsuit

Class Action Data Breach Lawsuit Settled by Morley Companies

First Choice Community Healthcare and Arlington Skin Notify Patients About Cyberattacks

Michigan Law Firm and Texas Medical Imaging Company Confirm Breaches of Patient Information

Electromed Proposes $825,000 Class Action Data Breach Settlement

Humana Members Impacted by Choice Health Data Breach

Rehoboth McKinley Christian Health Care Patients to Be Compensated Up to $4,000 for Data Breach

Logan Health Proposes $4.3 Million Settlement to Resolve Class Action Data Breach Lawsuit

Healthback Holdings Email Security Breach Affects 21,000 Individuals

Avem Health Partners and Emory Healthcare Notify Patients About Data Breaches

Spokane Regional Health District Announces Second Phishing Attack in 3 Months

10 Charged Over BEC Scams Targeting Medicare, Medicaid, and Private Insurance Programs

Multiple Lawsuits Filed Against Arkansas Hospitals Over Data Breaches

$3 Million Settlement Proposed to Resolve 20/20 Eye Care Network Data Breach Lawsuit

2022 Healthcare Data Breach Report

COVID-19 Vaccination Statuses of 500,000 VA Employees have been Impermissibly Disclosed

SAC Health Theft Incident and Multiple Ransomware Attacks Reported

Editorial: Why Do Criminals Target Medical Records

Cyberattacks Reported by Wolfe Clinic, Reiter Affiliated Companies, & SERV Behavioral Health System

Forefront Dermatology Proposes $3.75 Million Settlement to Resolve Ransomware Lawsuit

Oklahoma Institute of Allergy Asthma and Immunology Halts Operations After Cyberattack

Healthy Data Management: How IT Assists Healthcare Institutions

Healthy Data Management: How IT Assists Healthcare Institutions

2021 HIPAA “Wall of Shame” Healthcare Data Breaches Up 7.5%

Digital Health in the Metaverse: Three Legal Considerations

Stay Connected