2021, Health Insurance and Licensing - Health Care Compliance Brief

Fast Track Urgent Care Confirms 258,411 Individuals Affected by 2021 PracticeMax Ransomware Attack

HIPAA Journal

AUGUST 3, 2022

PracticeMax said it identified suspicious activity within its network on May 1, 2021, and confirmed that ransomware was installed on its network. The two health insurance firms confirmed they had been affected in late February 2022, with PracticeMax publicly reporting the breach in the fall of 2021.

Ransomware

Ransomware Health Insurance Licensing HIPAA

Health Insurance in Aisle 3: Why a Grocery Chain is Working on Medicare

Health Populi

AUGUST 3, 2021

Under the hood of this effort is Hy-Vee Financial Services, a multi-service financial services company with licenses to serve consumers in Illinois, Iowa, Kansas, Minnesota, Missouri, Nebraska, South Dakota and Wisconsin. For more on Hy-Vee’s growing role in health care, see my previous posts on their efforts, Health@Retail.

Health Insurance

Health Insurance Medicare Medicare Licensing

Refuah Health Center Alerts 260K Patients About May 2021 Cyberattack

HIPAA Journal

MAY 16, 2022

According to the April 29, 2022, notification on the healthcare provider’s website, “We recently discovered unauthorized access to our network occurred between May 31, 2021, and June 1, 2021.” The post Refuah Health Center Alerts 260K Patients About May 2021 Cyberattack appeared first on HIPAA Journal.

Health Insurance

Health Insurance Ransomware HIPAA Licensing

U.S. Vision Subsidiary and Florida Addiction Treatment Center Announce 2021 Data Breaches

HIPAA Journal

NOVEMBER 8, 2022

Suspicious activity was detected within its network on May 12, 2021, with the forensic investigation confirming unauthorized individuals had access to its network for a month between April 20, 2021, and May 17, 2021. During that time, the attackers may have viewed or acquired sensitive patient data. The post U.S.

Licensing

Licensing Health Insurance HIPAA

Humana Health Insurance Company To Pay $11.2 Million Settlement to Nurses

The Health Law Firm Blog

JANUARY 2, 2022

is Board Certified by The Florida Bar in Health Law On September 27, 2021, Humana agreed to pay $11.2 million to end claims that the health insurance company denied a group of nurses overtime pay by misclassifying them as exempt employees. By George F. Indest III, J.D., A Wisconsin federal judge approved the.

Health Insurance

Health Insurance Nurses Licensing Doctors

October-December 2021 State Regulatory Developments

New Jersey Healthcare Blog

JANUARY 12, 2022

Below are the most recent health care related regulatory developments as published in the New Jersey Register from October-December 2021: On October 4, 2021, at 53 N.J.R. 103, which declared a Public Health Emergency for the state in response to COVID-19. On October 4, 2021, at 53 N.J.R. See N.J.A.C.

Licensing

Licensing Medicaid Medicaid Nurses

6 Healthcare Providers and Business Associates Report Hacks and Ransomware Attacks

HIPAA Journal

MARCH 10, 2022

Bako Diagnostics (BakoDx), a Georgia-based provider of laboratory services to healthcare providers, has announced it was the victim of a cyberattack that was discovered on December 28, 2021. The files exfiltrated from its systems included the protected health information of patients.

Ransomware

Ransomware Licensing Health Insurance Hospitals

Email Incidents Reported by Ultimate Care, CareOregon Advantage, and University Medical Center Southern Nevada

HIPAA Journal

MARCH 25, 2022

The forensic investigation revealed the email accounts were accessed by unauthorized individuals between April 7, 2021, and June 2, 2021. AHA provided notice about the attack on January 6, 2021. UMC was a victim of a REvil ransomware attack in June 2021 that resulted in the theft of the protected health information of 1.3

Health Insurance

Health Insurance Licensing Ransomware Fraud

Humana Health Insurer To Pay $11.2 Million to End Nurses’ Overtime Suit

The Health Law Firm Blog

NOVEMBER 24, 2021

is Board Certified by The Florida Bar in Health Law On September 27, 2021, Humana agreed to pay $11.2 million to end claims that the health insurance company denied a group of nurses overtime pay by misclassifying them as exempt employees. By George F. Indest III, J.D., A Wisconsin federal judge approved the.

Health Insurance

Health Insurance Nurses Licensing Doctors

SuperCare Proposes $2.25 Million Settlement to Resolve Data Breach Lawsuit

HIPAA Journal

MAY 11, 2023

million settlement to resolve a class action lawsuit filed in response to a 2021 hacking incident in which the protected health information of 318,379 patients was compromised. The Californian home care service provider, SuperCare, has proposed a $2.25

HIPAA

HIPAA Health Insurance Licensing Hospitals

15,000 Patients Affected by Philadelphia FIGHT Community Health Centers Cyberattack

HIPAA Journal

FEBRUARY 16, 2022

Philadelphia FIGHT Community Health Centers has recently announced it was the victim of a cyberattack on November 30, 2021. The information potentially compromised in the attack included names, dates of birth, Social Security numbers, medical diagnoses, treatment information, and health insurance information.

Electronic Medical Records

Electronic Medical Records Health Insurance Licensing HIPAA

Capital Region Medical Center and Labette Health Announce Potential PHI Breaches

HIPAA Journal

MARCH 14, 2022

Capital Region Medical Center (CRMC) in Jefferson City, MO has recently confirmed patient information was accessed by unauthorized individuals in a December 2021 cyberattack that took its network and phone systems offline for several days. The attack was detected on December 17, 2021, when network systems were disrupted.

Electronic Medical Records

Electronic Medical Records Health Insurance HIPAA Licensing

SQA Regulatory Surveillance Summary 4 | Monthly Update 2021

SQA

JUNE 10, 2021

SQA Regulatory Surveillance Summary #4, 2021. Brazilian Regulators Update Economic Monitoring Requirements for Some Medical Devices, 26 March 2021. The new regulation takes effect on 01 April 2021. ANVISA: The Advances of 2020 in Regulatory Quality Improvement, 31 March 2021.

FDA

FDA COVID-19 COVID-19 Vaccine Compliance

Humana Agrees To Pay $11.2 Million to End Nurses’ Overtime Suit

The Health Law Firm Blog

MARCH 26, 2024

is Board Certified by The Florida Bar in Health Law On September 27, 2021, Humana agreed to pay $11.2 million to end claims that the health insurance company denied a group of nurses overtime pay by misclassifying them as exempt employees. By George F. Indest III, J.D., A Wisconsin federal judge approved the [.]

Nurses

Nurses Health Insurance Licensing Doctors

Healthcare Organizations Report Email Compromises, Hacking Incidents and Other ePHI Exposures

HIPAA Journal

MARCH 4, 2022

Miami Lakes, FL-based Catholic Health Services has discovered the email accounts of three Catholic Hospice employees have been accessed by unauthorized individuals. Crossroads Health in Ohio has experienced a cyberattack that disrupted some of its IT systems. Bible Fellowship Church Homes, Inc.

Health Insurance

Health Insurance Licensing HIPAA

Schneck Medical Center Settles HIPAA Lawsuit with Indiana AG

HIPAA Journal

SEPTEMBER 12, 2023

Seymour, IN-based Schneck Medical Center has settled a lawsuit with the Indiana attorney general, Todd Rokita, over a 2021 ransomware attack and data breach that affected 89,707 Indiana residents.

HIPAA

HIPAA Ransomware Health Insurance Fraud

PHI of Over 500,000 Individuals Potentially Compromised in 4 Security Incidents

HIPAA Journal

MARCH 9, 2022

The Birmingham, AL-based multi-specialty clinic, Norwood Clinic, has recently started notifying 228,103 individuals that some of their protected health information was accessed in a cyberattack that was detected on October 22, 2021. The review was concluded on February 2, 2022, and affected customers were updated on February 14, 2022.

Electronic Medical Records

Electronic Medical Records Health Insurance Ransomware HIPAA

Cyberattack on SuperCare Health Affects 318,000 Patients

HIPAA Journal

APRIL 7, 2022

SuperCare Health, a Downey, CA-based post-acute, in-home respiratory care provider serving the Western United States, has recently started notifying 318,379 patients that some of their protected health information has been exposed and potentially accessed by unauthorized individuals in a cyberattack that occurred in July 2021.

Licensing

Licensing HIPAA Health Insurance Hospitals

Data Breaches Reported by University Pediatric Dentistry, OrthoNebraska, Michigan Avenue Immediate Care

HIPAA Journal

JULY 5, 2022

Individuals who had their Social Security numbers or driver’s license numbers exposed have been offered complimentary credit monitoring and identity theft protection services. The breach occurred in early December 2021 and was detected when the account was used to send spam emails.

Licensing

Licensing Electronic Medical Records Health Insurance Hospitals

6 HIPAA Regulated Entities Report Phishing Attacks and Unauthorized Email Account Access

HIPAA Journal

NOVEMBER 16, 2022

Unauthorized individuals have gained access to the email system of the Administrative Fund of the Detectives’ Endowment Association of the Police Department of the City of New York (NYCDEA) and potentially viewed or obtained the protected health information of 21,544 individuals.

HIPAA

HIPAA Licensing Health Insurance Fraud

Up to 2,592,494 individuals Affected by Smile Brands Ransomware Attack

HIPAA Journal

APRIL 28, 2022

Irvine, CA-based Smile Brands, a provider of support services for dental offices, has recently provided an update on the number of individuals affected by a ransomware attack that was discovered on April 24, 2021. The initial notice to the Maine attorney general was submitted on October 8, 2021.

Ransomware

Ransomware Health Insurance HIPAA Licensing

Patient Information Compromised at Phoenixville Hospital, Family Practice Center, and Southwest Health Center

HIPAA Journal

JULY 11, 2022

According to the hospital operator, Tower Health, the unauthorized access was discovered during a routine audit of medical record access logs. Some of the accessed records included partial Social Security numbers and health insurance information. Family Practice Center Reports October 2021 Hacking Incident.

Hospitals

Hospitals HIPAA Health Insurance Licensing

Michigan Law Firm and Medical Imaging Companies Confirm Breaches of Patient Information

HIPAA Journal

SEPTEMBER 8, 2022

The Michigan law firm, Warner Norcross and Judd LLP, has issued notification letters to 255,160 individuals advising them about an October 2021 security breach in which files containing their personal and protected health information were potentially accessed and exfiltrated from its systems.

Fraud

Fraud Health Insurance Ransomware HIPAA

Umass Memorial Health Proposes $1.2 Million Settlement to Resolve Data Breach Lawsuit

HIPAA Journal

FEBRUARY 14, 2023

Hackers gained access to Umass Memorial Health’s email environment between June 24, 2020 and January 7, 2021, as a result of responses to phishing emails. The breach affected almost 3,000 Massachusetts residents and was reported to the HHS’ Office for Civil Rights as affecting 209,048 individuals.

Fraud

Fraud Licensing Health Insurance HIPAA

Cyberattacks Reported by Schneck Medical Center, NuLife Med, & FPS Medical Center

HIPAA Journal

MAY 17, 2022

The review of the files revealed they mostly contained protected health information such as names, addresses, medical information, and/or health insurance information. Notification letters have now been sent to the 28,024 patients whose protected health information has potentially been compromised.

Health Insurance

Health Insurance Licensing Ransomware HIPAA

Email Account Breaches Reported by Newman Regional Health and Contra Costa County

HIPAA Journal

APRIL 18, 2022

NRH explained on its website that a limited number of employee email accounts were accessed by unauthorized individuals over a period of 10 months in 2021 between January 26, 2021, and November 23, 2021. The types of information exposed included names, Social Security numbers, driver’s license numbers, state-issued I.D.

Licensing

Licensing HIPAA Health Insurance Hospitals

SuperCare Health Sued Over 318,000-Record Data Breach

HIPAA Journal

APRIL 15, 2022

The incident involved the exposure and potential theft of the protected health information of 318,400 patients, including names, addresses, birth dates patient account numbers, medical record numbers, health insurance information, testing, diagnostic, treatment, and claims information.

Electronic Medical Records

Electronic Medical Records HIPAA Health Insurance Fraud

6 HIPAA-Regulated Entities Report Email Account Breaches and the Exposure of PHI

HIPAA Journal

MAY 2, 2022

Notification letters were mailed on February 22, 2022, and complimentary credit monitoring and identity protection services have been offered to individuals whose Social Security number or driver’s license number was exposed. Los Angeles County Department of Mental Health, California. Valley View Hospital, Colorado.

HIPAA

HIPAA Health Insurance Licensing Hospitals

Advent Health Partners Proposes $500,000 Settlement to Resolve Class Action Data Breach Lawsuit

HIPAA Journal

FEBRUARY 16, 2023

The Nashville, TN-based health system, Advent Health Partners, has proposed a $500,000 settlement to resolve claims related to a September 2021 data breach involving the protected health information of 61,072 patients. Advent Health Partners detected a breach of its email environment in early September 2021.

HIPAA

HIPAA Fraud Licensing Health Insurance

Electromed Proposes $825,000 Class Action Data Breach Settlement

HIPAA Journal

FEBRUARY 15, 2023

The medical device manufacturer Electromed has proposed a $850,000 settlement to resolve claims related to a June 2021 ransomware attack and data breach involving the protected health information of 47,200 individuals.

Ransomware

Ransomware Fraud Licensing Health Insurance

Email Accounts Compromised at BJC HealthCare & Cooper University Health Care

HIPAA Journal

MAY 31, 2022

A limited number of patients also had their health insurance information, driver’s license numbers, and/or Social Security numbers exposed. Camden, NJ-based Cooper University Health Care announced on May 25, 2022, that the email account of an employee was accessed by an unauthorized individual on November 24, 2021.

Licensing

Licensing HIPAA Health Insurance

Radiology Associates of Albuquerque Notifies Patients About Security Breach That Started in December 2020

HIPAA Journal

OCTOBER 17, 2022

RAA said suspicious activity was detected within its environment in August 2021. The forensic investigation confirmed that unauthorized individuals had access to certain systems between July 22, 2021, and August 3, 2021, and copied files from its network that contained patient data.

Licensing

Licensing HIPAA Health Insurance Medicaid

Dental Health Management Solutions Notified Patients About Historic Data Breach

HIPAA Journal

MARCH 6, 2023

Cedar Park, TX-based Dental Health Management Solutions (DHMS), a provider of dental services to the government/military and private patients has recently announced – via its legal counsel – that the protected health information of certain patients was exposed in a 2021 hacking incident.

Electronic Medical Records

Electronic Medical Records HIPAA Licensing Nurses

JDC Healthcare Management Data Breach Affects More than 1 Million Texans

HIPAA Journal

MARCH 21, 2022

As previously reported on this site, JDC Healthcare Management detected malware within its IT network on or around August 9, 2021, with the forensic investigation into the security breach confirming the malware was downloaded onto its systems on July 27, 2021. Further information on the data breach has now been obtained.

Ransomware

Ransomware Licensing HIPAA Health Insurance

3 Email Security Incidents Reported That Affect More Than 111,000 Patients

HIPAA Journal

MARCH 9, 2022

Assisted by a third-party cybersecurity company, Montrose Regional Health discovered multiple employee email accounts had been accessed by unauthorized individuals between August 2, 2021, and October 26, 2021. Montrose Regional Health said it found no evidence of misuse of any of the information stored in the email accounts.

Health Insurance

Health Insurance Licensing Hospitals HIPAA

New York AG Settles Data Breach Investigation of U.S. Radiology Specialists for $450,000

HIPAA Journal

NOVEMBER 9, 2023

Radiology Specialists into a large data breach that was reported in 2021 to determine whether it was caused by a failure to comply with the Health Insurance Portability and Accountability Act (HIPAA) and state laws. On January 22, 2021, SonicWall alerted its customers about a coordinated cyberattack on its internal systems.

HIPAA

HIPAA Health Insurance Licensing Compliance

Parker-Hannifin Cyberattack Affects Almost 120,000 Health Plan Members

HIPAA Journal

MAY 19, 2022

A comprehensive review of the affected files confirmed they contained information such as names, birth dates, addresses, Social Security numbers, driver’s license numbers, passport numbers, financial account information such as bank account and routing numbers, and online account usernames and passwords.

COVID-19

COVID-19 Health Insurance Licensing HIPAA

COVID-19 Vaccination Statuses of 500,000 VA Employees have been Impermissibly Disclosed

HIPAA Journal

DECEMBER 7, 2022

Urology of Greater Atlanta Notifies Almost 80,000 Patients About August 2021 Data Breach. Urology of Greater Atlanta has now confirmed that it was the victim of a cyberattack that was detected on August 29, 2021. In some cases, Social Security numbers, driver’s license numbers, or financial account information, were also exposed.

COVID-19 Vaccine

COVID-19 Vaccine COVID-19 Department of Veterans Affairs Licensing

Healthcare Data Breaches Continue to Rise

Healthcare Compliance Blog

MARCH 17, 2022

In the first incident, in October 2021, an Alabama clinic’s cyberattack affected over 228,000 individuals. The cyberattack resulted in unauthorized data access of patient names, contact information, driver’s license numbers, Social Security numbers, birth dates, health insurance policy numbers, and limited health information.

Licensing

Licensing Health Insurance COVID-19 HIPAA

SuperCare Health Hack Affects 300K Patients

Compliancy Group

APRIL 11, 2022

In one of the largest breaches reported in 2022 so far, SuperCare Health suffered a hacking incident affecting 318,379 patients. The network intrusion was initially detected on July 27, 2021. However, it took SuperCare Health until February 2022 to discover the incident had potentially compromised that patient information.

US Department of Health and Human Services

US Department of Health and Human Services HIPAA Compliance Licensing

Spokane Regional Health District Announces Second Phishing Attack in 3 Months

HIPAA Journal

APRIL 1, 2022

On January 24, 2022, SRHD announced that an employee email account had been compromised on December 21, 2021. Buffalo, NY-based Ciox Health provides health information management services to healthcare providers and insurers. CMMHC identified potentially malicious activity in its email environment on October 21, 2021.

Fraud

Fraud HIPAA Licensing Health Insurance

PHI of 10,000 Individuals Exposed Due to Houston Health Department Portal Glitch

HIPAA Journal

MARCH 1, 2022

Priority Health Confirms Breach of Member Portal Accounts. The Michigan health insurer Priority Health has recently announced a breach of several member portal accounts. According to a recent breach notice, the security breach was detected on December 16, 2021.

COVID-19

COVID-19 Health Insurance HIPAA Licensing

Michigan Law Firm and Texas Medical Imaging Company Confirm Breaches of Patient Information

HIPAA Journal

SEPTEMBER 8, 2022

The Michigan law firm, Warner Norcross and Judd LLP, has issued notification letters to 255,160 individuals advising them about an October 2021 security breach in which files containing their personal and protected health information were potentially accessed and exfiltrated from its systems.

Fraud

Fraud Health Insurance Ransomware HIPAA

Data Breaches Reported by New Jersey Brain and Spine, Highmark Inc. and Dialyze Direct

HIPAA Journal

MARCH 23, 2022

New Jersey Brain and Spine (NJBS) has recently announced it was the victim of a cyberattack on or around November 16, 2021, that encrypted data on its network. NJBS said it immediately took steps to secure its network and engaged a computer forensic firm to investigate the security breach.

HIPAA

HIPAA Licensing Health Insurance Governance

Fast Track Urgent Care Confirms 258,411 Individuals Affected by 2021 PracticeMax Ransomware Attack

Health Insurance in Aisle 3: Why a Grocery Chain is Working on Medicare

Trending Sources

Refuah Health Center Alerts 260K Patients About May 2021 Cyberattack

U.S. Vision Subsidiary and Florida Addiction Treatment Center Announce 2021 Data Breaches

Humana Health Insurance Company To Pay $11.2 Million Settlement to Nurses

October-December 2021 State Regulatory Developments

6 Healthcare Providers and Business Associates Report Hacks and Ransomware Attacks

Email Incidents Reported by Ultimate Care, CareOregon Advantage, and University Medical Center Southern Nevada

Humana Health Insurer To Pay $11.2 Million to End Nurses’ Overtime Suit

SuperCare Proposes $2.25 Million Settlement to Resolve Data Breach Lawsuit

15,000 Patients Affected by Philadelphia FIGHT Community Health Centers Cyberattack

Capital Region Medical Center and Labette Health Announce Potential PHI Breaches

SQA Regulatory Surveillance Summary 4 | Monthly Update 2021

Humana Agrees To Pay $11.2 Million to End Nurses’ Overtime Suit

Healthcare Organizations Report Email Compromises, Hacking Incidents and Other ePHI Exposures

Schneck Medical Center Settles HIPAA Lawsuit with Indiana AG

PHI of Over 500,000 Individuals Potentially Compromised in 4 Security Incidents

Cyberattack on SuperCare Health Affects 318,000 Patients

Data Breaches Reported by University Pediatric Dentistry, OrthoNebraska, Michigan Avenue Immediate Care

6 HIPAA Regulated Entities Report Phishing Attacks and Unauthorized Email Account Access

Up to 2,592,494 individuals Affected by Smile Brands Ransomware Attack

Patient Information Compromised at Phoenixville Hospital, Family Practice Center, and Southwest Health Center

Michigan Law Firm and Medical Imaging Companies Confirm Breaches of Patient Information

Umass Memorial Health Proposes $1.2 Million Settlement to Resolve Data Breach Lawsuit

Cyberattacks Reported by Schneck Medical Center, NuLife Med, & FPS Medical Center

Email Account Breaches Reported by Newman Regional Health and Contra Costa County

SuperCare Health Sued Over 318,000-Record Data Breach

6 HIPAA-Regulated Entities Report Email Account Breaches and the Exposure of PHI

Advent Health Partners Proposes $500,000 Settlement to Resolve Class Action Data Breach Lawsuit

Electromed Proposes $825,000 Class Action Data Breach Settlement

Email Accounts Compromised at BJC HealthCare & Cooper University Health Care

Radiology Associates of Albuquerque Notifies Patients About Security Breach That Started in December 2020

Dental Health Management Solutions Notified Patients About Historic Data Breach

JDC Healthcare Management Data Breach Affects More than 1 Million Texans

3 Email Security Incidents Reported That Affect More Than 111,000 Patients

New York AG Settles Data Breach Investigation of U.S. Radiology Specialists for $450,000

Parker-Hannifin Cyberattack Affects Almost 120,000 Health Plan Members

COVID-19 Vaccination Statuses of 500,000 VA Employees have been Impermissibly Disclosed

Healthcare Data Breaches Continue to Rise

SuperCare Health Hack Affects 300K Patients

Spokane Regional Health District Announces Second Phishing Attack in 3 Months

PHI of 10,000 Individuals Exposed Due to Houston Health Department Portal Glitch

Michigan Law Firm and Texas Medical Imaging Company Confirm Breaches of Patient Information

Data Breaches Reported by New Jersey Brain and Spine, Highmark Inc. and Dialyze Direct

Stay Connected