HIPAA Journal

MARCH 1, 2022

Ransomware attacks have recently been reported by four healthcare providers across the country, which have collectively resulted in the exposure and potential theft of the protected health information of more than 49,000 individuals. 2021, and successfully encrypted files on its network and servers. Jax Spine & Pain Centers.

Ransomware 135

Ransomware Licensing HIPAA Health Insurance 135

HIPAA Journal

MARCH 10, 2022

Bako Diagnostics (BakoDx), a Georgia-based provider of laboratory services to healthcare providers, has announced it was the victim of a cyberattack that was discovered on December 28, 2021. The files exfiltrated from its systems included the protected health information of patients.

Ransomware 123

Ransomware Licensing Health Insurance Hospitals 123

HIPAA Journal

APRIL 28, 2022

Irvine, CA-based Smile Brands, a provider of support services for dental offices, has recently provided an update on the number of individuals affected by a ransomware attack that was discovered on April 24, 2021. The initial notice to the Maine attorney general was submitted on October 8, 2021.

Ransomware 106

Ransomware Health Insurance HIPAA Licensing 106

HIPAA Journal

MARCH 30, 2022

Oklahoma City Indian Clinic and Law Enforcement Health Benefits Inc. have confirmed they were recent victims of cyberattacks, both of which involved the use of ransomware. Ransomware Attack Affects 85,282 Law Enforcement Health Benefits Members. Law Enforcement Health Benefits, Inc.

Ransomware 126

Ransomware Electronic Medical Records Licensing HIPAA 126

HIPAA Journal

MARCH 10, 2023

According to the notifications, unauthorized individuals gained access to its network and used ransomware to encrypt files. MFHS said the sophisticated ransomware attack was discovered in April 2022. The post Maternal & Family Health Services Sued Over Ransomware Attack and Data Breach appeared first on HIPAA Journal.

Ransomware 82

Ransomware HIPAA Licensing Health Insurance 82

HIPAA Journal

APRIL 1, 2022

Partnership Health Plan of California Recovering from Suspected Ransomware Attack. The Fairfield, CA-based nonprofit managed care health plan, Partnership Health Plan of California (PHC), has suffered a cyberattack that has taken its IT systems out of action for more than a week. That claim has since been removed.

Ransomware 98

Ransomware HIPAA Health Insurance 98

Compliancy Group

FEBRUARY 14, 2022

A ransomware hack of Morley Companies Inc. The provider of business process outsourcing and meeting solutions to dozens of Fortune 500 companies revealed the ransomware hacking incident in a filing with the Office of the Maine Attorney General and a post on their website. Details of Morley Companies Ransomware Hack. Learn More!

Ransomware 52

Ransomware HIPAA Health Insurance Compliance 52

HIPAA Journal

MAY 16, 2022

According to the April 29, 2022, notification on the healthcare provider’s website, “We recently discovered unauthorized access to our network occurred between May 31, 2021, and June 1, 2021.” The post Refuah Health Center Alerts 260K Patients About May 2021 Cyberattack appeared first on HIPAA Journal.

Health Insurance 103

Health Insurance Ransomware HIPAA Licensing 103

HIPAA Journal

MARCH 11, 2022

Protenus has released its 2022 Breach Barometer Report which confirms 2021 was a particularly bad year for healthcare industry data breaches, with more than 50 million healthcare records exposed or compromised in 2021. There were 111 insider incidents in 2021, similar to the 110 incidents in 2019, which is a 26% decrease from 2020.

HIPAA 106

HIPAA Ransomware Health Insurance 106

HIPAA Journal

DECEMBER 23, 2022

It has been another bad year for healthcare data breaches, with some of the biggest HIPAA breaches of 2022 resulting in the impermissible disclosure of well over a million records. The Biggest HIPAA Breaches of 2022. The 12 biggest HIPAA breaches of 2022 affected almost 22.66 million patients and health plan members.

HIPAA 79

HIPAA Ransomware Health Insurance Compliance 79

HIPAA Journal

MARCH 24, 2022

Chelan Douglas Health District in East Wenatchee, WA, has announced it was the victim of a cyberattack in July 2021 in which the personal and protected health information of patients was exfiltrated from its systems. A representative for the health district said this was not a ransomware attack.

Ransomware 122

Ransomware Fraud Hospitals HIPAA 122

Compliancy Group

JUNE 29, 2022

In early December of 2021, Eye Care Leaders (Eye Care), an electronic medical record vendor supplying business associate services to eye care providers across the country, discovered it had incurred a data breach. Eye Care’s myCare Integrity solution was hacked via a ransomware attack on December 4, 2021. . Email addresses.

Ransomware 98

Ransomware Electronic Medical Records HIPAA Compliance 98

HIPAA Journal

FEBRUARY 24, 2022

Two HIPAA-regulated entities have recently started notifying individuals whose protected health information was potentially compromised in cyberattacks that occurred more than 12 months ago, including one where it took 18 months to notify affected individuals that their protected health information had been accessed and potentially acquired.

HIPAA 101

HIPAA Ransomware Health Insurance 101

HIPAA Journal

NOVEMBER 28, 2022

(HHS) has recently announced that it was the victim of a ransomware attack. The investigation revealed an unauthorized third party first accessed its systems on June 10, 2022, several days prior to using ransomware to encrypt files. Ransomware Attack Affects Patients of Disability Services of the Southwest.

Ransomware 103

Ransomware Electronic Medical Records HIPAA Licensing 103

HIPAA Journal

MARCH 23, 2023

Associates in Dermatology, a network of dermatology clinics in Indiana, Kentucky, and New York, has started notifying patients that some of their protected health information has been exposed in a ransomware attack on one of its business associates.

Ransomware 68

Ransomware Electronic Medical Records Records Management HIPAA 68

HIPAA Journal

NOVEMBER 21, 2022

The Wisconsin-based dermatology practice, Forefront Dermatology, has agreed to settle a class action lawsuit filed on behalf of patients whose protected health information (PHI) was compromised in a ransomware attack in late May 2021. Million Settlement to Resolve Ransomware Lawsuit appeared first on HIPAA Journal.

Ransomware 62

Ransomware Fraud HIPAA Licensing 62

HIPAA Journal

JANUARY 24, 2023

million records in 2021 to 51.9 The theft of protected health information places patients and health plan members at risk of identity theft and fraud, but by far the biggest concern is the threat to patient safety. Scripps Health suffered a data breach of 1.2 million records in 2021 due to a ransomware attack.

Ransomware 113

Ransomware HIPAA Hospitals Fraud 113

HIPAA Journal

DECEMBER 1, 2022

Stanley Street Treatment and Resources Discloses October 2021 Data Breach. STAR), has recently announced a data breach that occurred more than a year ago in October 2021. An unauthorized individual was found to have gained access to its network and downloaded files containing the protected health information of 45,785 patients.

Health Insurance 98

Health Insurance Ransomware HIPAA Governance 98

HIPAA Journal

FEBRUARY 15, 2023

The medical device manufacturer Electromed has proposed a $850,000 settlement to resolve claims related to a June 2021 ransomware attack and data breach involving the protected health information of 47,200 individuals. The post Electromed Proposes $825,000 Class Action Data Breach Settlement appeared first on HIPAA Journal.

Ransomware 81

Ransomware Fraud Licensing Health Insurance 81

HIPAA Journal

MARCH 25, 2022

The forensic investigation revealed the email accounts were accessed by unauthorized individuals between April 7, 2021, and June 2, 2021. AHA provided notice about the attack on January 6, 2021. UMC was a victim of a REvil ransomware attack in June 2021 that resulted in the theft of the protected health information of 1.3

Health Insurance 104

Health Insurance Licensing Ransomware Fraud 104

HIPAA Journal

JUNE 8, 2023

Mercy Medical Center did not state whether ransomware was involved but said data had to be restored from backups and some data has likely been lost. According to the May 22, 2023, breach notice, the incidents occurred in 2021. Additional technical steps are being taken to try to recreate the lost data it was not possible to restore.

Ransomware 93

Ransomware HIPAA Licensing Health Insurance 93

HIPAA Journal

NOVEMBER 17, 2022

Healthcare was the third most targeted sector with an average of 1,426 attacks per month, but saw the second highest percentage increase in attacks, increasing by 60% from 2021. This was despite an 8% global fall in ransomware attacks in Q3. The post Healthcare Sees 60% YoY Increase in Cyberattacks appeared first on HIPAA Journal.

Ransomware 70

Ransomware Governance Health Insurance HIPAA 70

HIPAA Journal

AUGUST 31, 2022

This method of attack is becoming more common, where data is stolen, deleted, and then threats are issued to publish or sell the data if payment is not made to the attackers, but files are not encrypted using ransomware. Northeast Rehabilitation Hospital Network Notifies Patients About 2021 Cyberattack.

Electronic Medical Records 106

Electronic Medical Records Ransomware HIPAA Health Insurance 106

HIPAA Journal

DECEMBER 13, 2022

Two healthcare organizations in Massachusetts have chosen to settle class action lawsuits that were filed by patients whose protected health information was stolen in cyberattacks. Claims can also be submitted for documented extraordinary losses incurred between February 9 and February 14, 2021, up to a maximum of $5,000.

Hospitals 88

Hospitals Ransomware HIPAA Health Insurance 88

HIPAA Journal

MARCH 9, 2022

The Birmingham, AL-based multi-specialty clinic, Norwood Clinic, has recently started notifying 228,103 individuals that some of their protected health information was accessed in a cyberattack that was detected on October 22, 2021. The review was concluded on February 2, 2022, and affected customers were updated on February 14, 2022.

Electronic Medical Records 113

Electronic Medical Records Health Insurance Ransomware HIPAA 113

Compliancy Group

MARCH 23, 2023

A class-action lawsuit stemming from a February 2023 healthcare data breach in Pennsylvania further illustrates the need for an effective HIPAA compliance strategy, including data security and controls. Make Sure You’re HIPAA Compliant HIPAA and cybersecurity go hand-in-hand. Attorney’s Office. Find Out More!

Ransomware 52

Ransomware HIPAA Compliance Hospitals 52

HIPAA Journal

SEPTEMBER 8, 2022

The Michigan law firm, Warner Norcross and Judd LLP, has issued notification letters to 255,160 individuals advising them about an October 2021 security breach in which files containing their personal and protected health information were potentially accessed and exfiltrated from its systems.

Fraud 94

Fraud Health Insurance Ransomware HIPAA 94

HIPAA Journal

APRIL 13, 2023

Nonstop Administration and Insurance Services Reports Unauthorized Data Access Nonstop Administration and Insurance Services (NAIS), an administrator of health insurance benefits for employer groups, has recently announced that the protected health information of employees of its clients has been exposed.

Ransomware 81

Ransomware Health Insurance HIPAA 81

HIPAA Journal

AUGUST 8, 2022

Carmel, IN-based Goodman Campbell Brain and Spine has started notifying 363,000 current and former patients that some of their protected health information was stolen prior to data being encrypted with ransomware and some of the stolen data has been published on the gang’s dark web data leak site.

Ransomware 89

Ransomware Electronic Medical Records HIPAA Licensing 89

HIPAA Journal

OCTOBER 14, 2022

Data compiled by HIPAA Journal from breach reports submitted to the HHS’ Office for Civil Rights (OCR) show the number of data breaches reported by HIPAA-regulated entities continues to increase every year. 2021 saw 714 data breaches of 500 or more records reported to the OCR – an 11% increase from the previous year.

Ransomware 108

Ransomware HIPAA Health Insurance Hospitals 108

HIPAA Journal

JUNE 16, 2022

San Diego Family Care, a Californian provider of medical, dental, & mental health services, has agreed to settle a class action lawsuit filed by patients affected by a data breach in 2020. The security breach occurred in December 2020 at a technology provider and business associate, Netgain Technologies, and involved ransomware.

Ransomware 85

Ransomware Health Insurance HIPAA Governance 85

HIPAA Journal

DECEMBER 12, 2022

Receivables Performance Management (RPM) in Lynnwood, WA, a business associate of several HIPAA-covered entities, has recently started notifying individuals affected by a 2021 ransomware attack. The incident was detected on May 12, 2021, with the investigation confirming its systems were first breached on April 8, 2021.

HIPAA 107

HIPAA Hospitals Ransomware Licensing 107

HIPAA Journal

MARCH 21, 2022

As previously reported on this site, JDC Healthcare Management detected malware within its IT network on or around August 9, 2021, with the forensic investigation into the security breach confirming the malware was downloaded onto its systems on July 27, 2021. Wheeling Health Right Inc. Suffers Ransomware Attack.

Ransomware 96

Ransomware Licensing HIPAA Health Insurance 96

HIPAA Journal

AUGUST 25, 2022

The preliminary investigation has confirmed that the files contained names, addresses, Social Security numbers, birth dates, medical history information, medical diagnosis information, treatment information, medical record numbers, and health insurance information. It is currently unclear how many individuals have been affected.

Hospitals 82

Hospitals Ransomware HIPAA Health Insurance 82

HIPAA Journal

APRIL 13, 2022

LockBit Ransomware Gang Claims Data Stolen from Tague Family Practice. The LockBit ransomware gang claims to have gained access to the systems of Tague Family Practice in St. Louis, MO, and exfiltrated sensitive data, some of which contained patients’ personal and protected health information.

Ransomware 111

Ransomware Licensing HIPAA Health Insurance 111

HIPAA Journal

SEPTEMBER 8, 2022

The Michigan law firm, Warner Norcross and Judd LLP, has issued notification letters to 255,160 individuals advising them about an October 2021 security breach in which files containing their personal and protected health information were potentially accessed and exfiltrated from its systems.

Fraud 69

Fraud Health Insurance Ransomware HIPAA 69

HIT Consultant

DECEMBER 21, 2022

The key challenges faced by the industry include Data Breaches, Ransomware, Extensive use of Mobile Applications without proper ways to perform Authentication and Authorization and Lack of Healthcare Data Interoperability. million in 2021. Recent Data Breaches: – November 2022: Ransomware Hacker Steals Medibank Data on 9.7m

Ransomware 52

Ransomware HIPAA Health Insurance Governance 52