2021, Health Insurance, HIPAA and Medicaid - Health Care Compliance Brief

Settlement Agreed with Florida Children’s Health Insurance Website Contractor to Resolve False Claims Act Allegations

HIPAA Journal

MARCH 15, 2023

The United States Department of Justice has agreed to settle alleged False Claims Act violations with Jelly Bean Communications Design LLC and manager Jeremy Spinks related to the failure to protect HIPAA-covered data. FHKC is a state-created entity that offers health and dental insurance to children in Florida between the ages of 5 and 18.

Health Insurance

Health Insurance HIPAA Due Diligence Fraud

Refuah Health Center Alerts 260K Patients About May 2021 Cyberattack

HIPAA Journal

MAY 16, 2022

According to the April 29, 2022, notification on the healthcare provider’s website, “We recently discovered unauthorized access to our network occurred between May 31, 2021, and June 1, 2021.” The post Refuah Health Center Alerts 260K Patients About May 2021 Cyberattack appeared first on HIPAA Journal.

Health Insurance

Health Insurance Ransomware HIPAA Licensing

10 Charged Over BEC Scams Targeting Medicare, Medicaid, and Private Insurance Programs

HIPAA Journal

NOVEMBER 21, 2022

million being defrauded from Medicaid, Medicare, and private health insurance programs. According to the FBI, more than $43 billion was lost to these scams between June 2016 and December 2021, and in 2021 alone, the FBI Internet Crime Complaint Center received reports of losses of $2,395,953,296 to BEC scams.

Medicaid

Medicaid Medicaid Medicare Medicare

What is a HIPAA Violation?

HIPAA Journal

DECEMBER 31, 2022

To best answer the question what is a HIPAA violation, it is necessary to explain what HIPAA is, who it applies to, and what constitutes a violation; for although most people believe they know what a HIPAA compliance violation is, evidence suggests otherwise. What is HIPAA and Who Does It Apply To?

HIPAA

HIPAA Due Diligence Compliance Fraud

State of HIPAA – May 2023 Report

HIPAA Journal

MAY 29, 2023

It has been 27 years since President Clinton signed the Health Insurance Portability and Accountability Act (HIPAA) into law, but compliance is still proving a challenge for many HIPAA-regulated entities. The average HIPAA penalty has fallen from $2.6 reduction in total penalties compared to 2018, falling from $28.7

HIPAA

HIPAA Compliance Due Diligence COVID-19

Hackers Gained Access to Files Containing the PHI of 115,670 South Shore Hospital Patients

HIPAA Journal

FEBRUARY 15, 2022

Chicago’s South Shore Hospital has started notifying 115,670 current and former patients about a December 2021 cyberattack on its network. Suspicious activity was identified on its network on December 10, 2021, and prompt action was taken to contain the incident.

Hospitals

Hospitals Health Insurance HIPAA Medicaid

Capital Region Medical Center and Labette Health Announce Potential PHI Breaches

HIPAA Journal

MARCH 14, 2022

Capital Region Medical Center (CRMC) in Jefferson City, MO has recently confirmed patient information was accessed by unauthorized individuals in a December 2021 cyberattack that took its network and phone systems offline for several days. The attack was detected on December 17, 2021, when network systems were disrupted.

Electronic Medical Records

Electronic Medical Records Health Insurance HIPAA Licensing

Email Incidents Reported by Ultimate Care, CareOregon Advantage, and University Medical Center Southern Nevada

HIPAA Journal

MARCH 25, 2022

The forensic investigation revealed the email accounts were accessed by unauthorized individuals between April 7, 2021, and June 2, 2021. AHA provided notice about the attack on January 6, 2021. UMC was a victim of a REvil ransomware attack in June 2021 that resulted in the theft of the protected health information of 1.3

Health Insurance

Health Insurance Licensing Ransomware Fraud

6 Healthcare Providers and Business Associates Report Hacks and Ransomware Attacks

HIPAA Journal

MARCH 10, 2022

Bako Diagnostics (BakoDx), a Georgia-based provider of laboratory services to healthcare providers, has announced it was the victim of a cyberattack that was discovered on December 28, 2021. The files exfiltrated from its systems included the protected health information of patients.

Ransomware

Ransomware Licensing Health Insurance Hospitals

Dental Health Management Solutions Notified Patients About Historic Data Breach

HIPAA Journal

MARCH 6, 2023

Cedar Park, TX-based Dental Health Management Solutions (DHMS), a provider of dental services to the government/military and private patients has recently announced – via its legal counsel – that the protected health information of certain patients was exposed in a 2021 hacking incident.

Electronic Medical Records

Electronic Medical Records HIPAA Licensing Nurses

Patient Data Likely Lost Due to Cyberattack on Mercy Medical Center – Clinton

HIPAA Journal

JUNE 8, 2023

According to the May 22, 2023, breach notice, the incidents occurred in 2021. PVOC discovered on March 3, 2022, that malware had been installed on the servers of the vendors between November 13, 2021, and November 15, 2021. The group says files are being prepared for publication.

Ransomware

Ransomware HIPAA Licensing Health Insurance

Radiology Associates of Albuquerque Notifies Patients About Security Breach That Started in December 2020

HIPAA Journal

OCTOBER 17, 2022

RAA said suspicious activity was detected within its environment in August 2021. The forensic investigation confirmed that unauthorized individuals had access to certain systems between July 22, 2021, and August 3, 2021, and copied files from its network that contained patient data.

Licensing

Licensing HIPAA Health Insurance Medicaid

Navigating the Intersection of Payment Integrity and Provider Relations in Healthcare

Innovaare Compliance

MARCH 24, 2024

According to the National Health Care Anti-Fraud Association, the financial losses due to healthcare fraud are estimated to be in the billions of dollars annually. The Centers for Medicare & Medicaid Services (CMS) reported that in the fiscal year 2020, they recovered $3.1 billion in healthcare fraud judgments and settlements.

Fraud

Fraud Health Insurance Compliance Medicaid

Anesthesia, Eye Care, and Telehealth Providers Announce Third-Party Data Breaches

HIPAA Journal

NOVEMBER 3, 2022

Last month, HIPAA Journal reported that 13 providers of anesthesia services to hospitals had been affected by the breach. Massengale Eye Care in Moore, OK, has recently announced that the protected health information of up to 15,000 patients has been compromised in a data breach at its EHR vendor, Eye Care Leaders.

HIPAA

HIPAA Health Insurance Licensing Medicaid

Is Your Organization HITECH Compliant?

AIHC

NOVEMBER 6, 2023

The focus of this article is to “connect the dots” between Health Insurance Portability & Accountability Act (HIPAA) and HITECH regarding privacy and security of electronically protected health information (ePHI). However, your organization should not address only “HIPAA” or only “HITECH”. What is “HITECH”?

HIPAA

HIPAA Compliance Governance Health Insurance

Resources for Human Development, WellStar Health & Central Vermont Eye Care Announce Data Breaches

HIPAA Journal

APRIL 13, 2022

Wellstar Health learned about the security breach on February 7, 2022, with the forensic investigation confirming that the breach was limited to two email accounts. The email accounts were discovered to have been compromised between December 6, 2021, and January 3, 2022. No other systems were compromised.

Ransomware

Ransomware Licensing HIPAA Health Insurance

SAC Health Theft Incident and Multiple Ransomware Attacks Reported

HIPAA Journal

MAY 25, 2022

The Bryan County Ambulance Authority in Oklahoma has recently started notifying 14,273 patients about the exposure and potential theft of some of their protected health information. According to the notification letters, the attack was detected on November 24, 2021, when files on its systems were encrypted.

Ransomware

Ransomware Fraud HIPAA Licensing

Data Breaches Reported by WV and CO Healthcare Providers and NJ Medical Billing Administrator

HIPAA Journal

APRIL 8, 2022

Advanced Medical Practice Management Sends Notification Letters About July 2021 Cyberattack and Data Theft Incident. AMPM identified suspicious activity related to files within its IT environment on August 5, 2021, and immediately secured its network.

Medical Billing

Medical Billing Licensing Health Insurance Medicaid

Is Your Organization HITECH Compliant?

AIHC

NOVEMBER 6, 2023

The focus of this article is to “connect the dots” between Health Insurance Portability & Accountability Act (HIPAA) and HITECH regarding privacy and security of electronically protected health information (ePHI). However, your organization should not address only “HIPAA” or only “HITECH”. What is “HITECH”?

HIPAA

HIPAA Compliance Governance Health Insurance

Apria Healthcare Breach Affects Up to 1.8 Million Individuals

HIPAA Journal

MAY 23, 2023

Apria was alerted about unauthorized access to some of its systems on September 1, 2021. The investigation confirmed its systems were accessed by an unauthorized individual between April 5, 2019, and May 7, 2019, and again from August 27, 2021, to October 10, 2021. Million Individuals appeared first on HIPAA Journal.

Licensing

Licensing Health Insurance Medicaid Medicaid

Editorial: Why Do Criminals Target Medical Records

HIPAA Journal

OCTOBER 14, 2022

Data compiled by HIPAA Journal from breach reports submitted to the HHS’ Office for Civil Rights (OCR) show the number of data breaches reported by HIPAA-regulated entities continues to increase every year. 2021 saw 714 data breaches of 500 or more records reported to the OCR – an 11% increase from the previous year.

Ransomware

Ransomware HIPAA Health Insurance Hospitals

Data Breach Affects 120,000 Priority Health Plan Members

HIPAA Journal

AUGUST 12, 2022

The Michigan-based health plan provider, Priority Health, has confirmed that it has been affected by a data breach at a business associate, the law firm Warner Norcross & Judd (WNJ). WNJ identified suspicious network activity on October 22, 2021. The breach has been covered in more detail in this post.

Licensing

Licensing Health Insurance HIPAA Medicaid

St. Luke’s Health Reports Third Party Data Breach

HIPAA Journal

NOVEMBER 7, 2022

Luke’s Health has recently notified 16,906 patients that some of their protected health information has been exposed in a security incident at a vendor that provides consulting services. On November 5, 2021, the email accounts of two employees of Adelanto Healthcare Ventures (AHCV) were accessed by an unauthorized individual.

Electronic Medical Records

Electronic Medical Records Ransomware HIPAA Licensing

Digital Health in the Metaverse: Three Legal Considerations

Healthcare Law Blog

MAY 31, 2022

The FTC’s increasing interest in health information that sits outside of HHS/OCR’s reach is likely to only expand in light of health-related metaverse use cases. The healthcare system in the United States is governed by an expansive network of state and federal laws, including the aforementioned HIPAA regulations. 1, 2021). [2]

FDA

FDA HIPAA Medicare Medicare

Is Sharing EHR Passwords a Problem?

AIHC

NOVEMBER 3, 2021

To obtain more information about mitigating the risk of a HIPAA violation, please consult with legal counsel or a HIPAA Security Consultant. With the advancement of technology, the emergence of advanced cyber threats has escalated, which hinders the privacy and security of health information systems such as EHRs.

HIPAA

HIPAA Compliance Electronic Medical Records Governance

Why Data Analytics are Critical in a Value-Based Care (VBC) Environment

AIHC

NOVEMBER 29, 2023

Health Care from a Global Perspective, 2022: Accelerating Spending, Worsening Outcomes indicates that in 2021 the U.S. percent of the gross domestic product (GDP) on healthcare, which was almost two times the average of other high-income countries, while the health outcomes in the U.S. Why this Trend of Value-Based Care?

Medicare

Medicare Medicare Medicaid Medicaid

CMS Issues a New “Advancing Interoperability and Improving Prior Authorization Processes” Proposed Rule

C&M Health Law

DECEMBER 23, 2022

The below summary does not focus on the Medicaid and Children’s Health Insurance Program (CHIP) Fee for Service (FFS) proposals. Most of the Proposed Rule’s provisions will be effective on January 1, 2026. The deadline to submit comments is March 13, 2023. Our initial takeaways are summarized below.

Medicare

Medicare Medicare Medicaid Medicaid

Why Data Analytics are Critical in a Value-Based Care (VBC) Environment

AIHC

NOVEMBER 29, 2023

Health Care from a Global Perspective, 2022: Accelerating Spending, Worsening Outcomes indicates that in 2021 the U.S. percent of the gross domestic product (GDP) on healthcare, which was almost two times the average of other high-income countries, while the health outcomes in the U.S. Why this Trend of Value-Based Care?

Medicare

Medicare Medicare Medicaid Medicaid

Lawsuits Increasing Following HIPAA Breaches

Compliancy Group

MAY 27, 2022

Almost as surely as summer follows spring, lawsuits follow breaches of protected health information. Here’s a roundup of recent HIPAA breach lawsuits and settlements. Lawsuits Increasing Following HIPAA Breaches – Facts and Figures. Let’s Simplify Compliance HIPAA and cybersecurity go hand-in-hand.

HIPAA

HIPAA Ransomware Compliance Hospitals

Health Care In the COVID-19 Era – PwC Finds Self-Rationing of Care and Meds Especially for Chronic Care

Health Populi

MAY 20, 2020

Payors, both commercial and public sector (Medicare, Medicaid), have relaxed rules and regulations for telehealth across platforms (from purpose-built telemedicine programs to HIPAA-relaxed approvals for using FaceTime, Zoom, and other commercial channels), and have various plans to pay for virtual care visits between clinicians and patients.

COVID-19

COVID-19 Telemedicine Hospitals Doctors

Health Provider News – November 4, 2022

Hall Render

NOVEMBER 4, 2022

CVS Health, Walgreens each to settle all opioid cases for $5B. HHS releases video on documenting recognized HIPAA security practices. Feds approve program for rural Arkansas health care but it will cost local taxpayers more. Governor Hutchinson Announces Expansion To Rural Health Services With ARHOME Medicaid Program.

US Department of Health and Human Services

US Department of Health and Human Services COVID-19 Nurses Nursing Homes

Cyberattacks Reported by Independent Case Management & Conifer Health Solutions

HIPAA Journal

AUGUST 18, 2022

Little Rock, AR-based Independent Case Management (ICM), a provider of home and community-based support for individuals with intellectual and developmental disabilities, has recently notified 3,307 individuals that some of their protected health information may have been stolen in a ransomware attack.

Ransomware

Ransomware HIPAA Health Insurance Medicaid

Email Breaches Reported by Cardiac Imaging Associates & Centerstone of Tennessee

HIPAA Journal

OCTOBER 11, 2022

The investigation confirmed that several employee email accounts had been accessed by an unknown actor between November 4, 2021, and February 14, 2022. Those email accounts were discovered to contain the personal and protected health information of current and former Centerstone clients.

Licensing

Licensing HIPAA Health Insurance Medicaid

Crowell & Moring and Crowell Health Solutions Host a Forum to Discuss Trends in Value-Based Care and Health Technology Innovation

C&M Health Law

NOVEMBER 3, 2022

It will be interesting to observe the future of value-based care at a time when health care organizations are navigating high inflation and workforce shortages,” said Senior Counsel and Crowell Health Solutions COO and Managing Director Janet Walker, who facilitated the first discussion. Jackson Women’s Health Organization.

COVID-19

COVID-19 HIPAA Health Insurance Medicaid

The Most Common HIPAA Violations You Should Avoid

HIPAA Journal

JANUARY 2, 2023

The settlements pursued by the Department of Health and Human Services’ Office for Civil Rights (OCR) are for egregious violations of HIPAA Rules. Settlements are also pursued to highlight common HIPAA violations to raise awareness of the need to comply with specific aspects of HIPAA Rules.

HIPAA

HIPAA Compliance Hospitals Medicare

What Will Expiration of the Public Health Emergency and National Emergency Mean for Employers?

Hall Render

MAY 2, 2023

Department of Labor (“DOL”), the Department of Health and Human Services (“HHS”) and the Department of Treasury (collectively, “the Agencies”) issued guidance, including Disaster Relief Notice 2021-01 , to provide relief for employee benefit plans, plan participants and beneficiaries.

Public Health

Public Health COVID-19 COVID-19 Vaccine ACA

What Are THE 3 Major Things Addressed in the HIPAA Law?

HIPAA Journal

MARCH 30, 2022

Articles discussing the 3 major things addressed in the HIPAA law often tend to focus on the Administrative, Physical, and Technical Safeguards of the Security Rule. However, although the Safeguards of the Security Rule are 3 things in the HIPAA law, they are not THE 3 major things addressed in the HIPAA law. The Need to Reform.

HIPAA

HIPAA Fraud Health Insurance Health Care Reform

Health Provider News

Hall Render

OCTOBER 27, 2023

Here’s why Grady Health System recognized as health care I.T. Million Health Care Fraud Conspiracy in Idaho Orthopedic activity in the 5 most underserved states St. with historic building purchase MICHIGAN Bronson raises capital campaign goal to $4.5M

US Department of Health and Human Services

US Department of Health and Human Services Nurses Nursing Homes Hospitals

Health Provider News – September 23, 2022

Hall Render

SEPTEMBER 23, 2022

Senators Seek HHS Update to HIPAA, FBI Warns About Legacy Devices. Workers’ comp insurers fight Florida’s hospital payment plan. A federal judge schedules a hearing on Florida’s Medicaid transgender rule. Baptist Health’s Boulenger to be first new CEO in 36 years. Alabama hospital CEO resigns.

COVID-19

COVID-19 Nurses Nursing Homes Hospitals

Health Provider News – April 15, 2022

Hall Render

APRIL 15, 2022

HHS reveals strategy on social determinants of health. HHS extends COVID-19 public health emergency for another 90 days. HHS Seeks Input on Critical HIPAA Enforcement Considerations. Illinois lawmakers OK bill to drive $700M into Medicaid-funded nursing homes to boost care. UI Health Care names new chief quality officer.

COVID-19

COVID-19 Nursing Homes Nurses Hospitals

Health Provider News

Hall Render

FEBRUARY 24, 2023

Dunleavy adds $9M to budget to address food stamp, Medicaid backlog New study provides snapshot of increase in maternal deaths in Alaska Mental Health Trust Grants $1.6M NATIONAL Addressing Staff Burnout In Healthcare Design Amazon completes $3.9B Can Hospitals Change in Time to Keep Them?

Nursing Homes

Nursing Homes COVID-19 Nurses Hospitals

Top Healthcare Policy Developments in 2023; Register for Crowell Health Solutions Webinar

C&M Health Law

DECEMBER 13, 2022

Most recently, the OCR issued a bulletin to outline the obligations of Health Insurance Portability and Accountability Act of 1996 (HIPAA) on regulated entities when using online tracking technologies and notably includes several examples focused on protecting reproductive health information.

COVID-19

COVID-19 Medicare Medicare Hospitals

Health Provider News – November 18, 2022

Hall Render

NOVEMBER 18, 2022

Alabama Medicaid Agency expands covered visits for cancer patients after cancer center push. After leading Alaska Health Department, Adam Crum named state’s Revenue commissioner. Patient advocacy group wants Elevance Health to overturn health insurance claims denials. Health systems make a play for women.

COVID-19

COVID-19 Nursing Homes Nurses Hospitals

HIPAA Updates and HIPAA Changes in 2023

HIPAA Journal

JANUARY 9, 2023

The Health Insurance Portability and Accountability Act was signed into law in 1996 and while there have been some significant HIPAA updates over the last two decades, the last set of major HIPAA updates occurred in 2013 with the introduction of the HIPAA Omnibus Final Rule. HIPAA Changes in 2023.

HIPAA

HIPAA COVID-19 COVID-19 Vaccine Compliance

Settlement Agreed with Florida Children’s Health Insurance Website Contractor to Resolve False Claims Act Allegations

Refuah Health Center Alerts 260K Patients About May 2021 Cyberattack

Trending Sources

10 Charged Over BEC Scams Targeting Medicare, Medicaid, and Private Insurance Programs

What is a HIPAA Violation?

State of HIPAA – May 2023 Report

Hackers Gained Access to Files Containing the PHI of 115,670 South Shore Hospital Patients

Capital Region Medical Center and Labette Health Announce Potential PHI Breaches

Email Incidents Reported by Ultimate Care, CareOregon Advantage, and University Medical Center Southern Nevada

6 Healthcare Providers and Business Associates Report Hacks and Ransomware Attacks

Dental Health Management Solutions Notified Patients About Historic Data Breach

Patient Data Likely Lost Due to Cyberattack on Mercy Medical Center – Clinton

Radiology Associates of Albuquerque Notifies Patients About Security Breach That Started in December 2020

Navigating the Intersection of Payment Integrity and Provider Relations in Healthcare

Anesthesia, Eye Care, and Telehealth Providers Announce Third-Party Data Breaches

Is Your Organization HITECH Compliant?

Resources for Human Development, WellStar Health & Central Vermont Eye Care Announce Data Breaches

SAC Health Theft Incident and Multiple Ransomware Attacks Reported

Data Breaches Reported by WV and CO Healthcare Providers and NJ Medical Billing Administrator

Is Your Organization HITECH Compliant?

Apria Healthcare Breach Affects Up to 1.8 Million Individuals

Editorial: Why Do Criminals Target Medical Records

Data Breach Affects 120,000 Priority Health Plan Members

St. Luke’s Health Reports Third Party Data Breach

Digital Health in the Metaverse: Three Legal Considerations

Is Sharing EHR Passwords a Problem?

Why Data Analytics are Critical in a Value-Based Care (VBC) Environment

CMS Issues a New “Advancing Interoperability and Improving Prior Authorization Processes” Proposed Rule

Why Data Analytics are Critical in a Value-Based Care (VBC) Environment

Lawsuits Increasing Following HIPAA Breaches

Health Care In the COVID-19 Era – PwC Finds Self-Rationing of Care and Meds Especially for Chronic Care

Health Provider News – November 4, 2022

Cyberattacks Reported by Independent Case Management & Conifer Health Solutions

Email Breaches Reported by Cardiac Imaging Associates & Centerstone of Tennessee

Crowell & Moring and Crowell Health Solutions Host a Forum to Discuss Trends in Value-Based Care and Health Technology Innovation

The Most Common HIPAA Violations You Should Avoid

What Will Expiration of the Public Health Emergency and National Emergency Mean for Employers?

What Are THE 3 Major Things Addressed in the HIPAA Law?

Health Provider News

Health Provider News – September 23, 2022

Health Provider News – April 15, 2022

Health Provider News

Top Healthcare Policy Developments in 2023; Register for Crowell Health Solutions Webinar

Health Provider News – November 18, 2022

HIPAA Updates and HIPAA Changes in 2023

Stay Connected