2022, Electronic Medical Records and Ransomware

June 2022 Healthcare Data Breach Report

HIPAA Journal

JULY 20, 2022

June 2022 saw 70 healthcare data breaches of 500 or more records reported to the Department of Health and Human Services’ Office for Civil Rights (OCR) – two fewer than May and one fewer than June 2021. For the third successive month, the number of exposed or compromised records has increased. Eye Care Leaders ransomware attack.

Electronic Medical Records

Electronic Medical Records Ransomware HIPAA Hospitals

700,000 Patients Affected by Yuma Regional Medical Center Ransomware Attack

HIPAA Journal

JUNE 13, 2022

Yuma Regional Medical Center (YRMC) in Arizona has announced it was the victim of a ransomware attack in April in which the attackers obtained the protected health information of approximately 700,000 current and former patients. YRMC said its electronic medical record system was not accessed.

Ransomware

Ransomware Electronic Medical Records HIPAA Health Insurance

1H 2022 Healthcare Data Breach Report

HIPAA Journal

AUGUST 11, 2022

Between January 1, 2022, and June 30, 2022, 347 healthcare data breaches of 500 or more records were reported to the Department of Health and Human Services’ Office for Civil Rights (OCR) – the same number of data breaches reported in 2H, 2021. The number of healthcare records breached has continued to fall. That is a 9.1%

HIPAA

HIPAA Ransomware Electronic Medical Records Compliance

PHI Potentially Compromised in Ransomware Attacks at MD, TX, and FL Healthcare Providers

HIPAA Journal

NOVEMBER 28, 2022

(HHS) has recently announced that it was the victim of a ransomware attack. The attack was detected on June 20, 2022, and third-party forensics experts were engaged to investigate the incident and determine the scope of the attack. Notifications were sent to affected individuals on November 21, 2022.

Ransomware

Ransomware Electronic Medical Records HIPAA Licensing

Tift Regional Medical Center Patients Notified About August 2022 Cyberattack

HIPAA Journal

AUGUST 15, 2023

Tift Regional Medical Center in Georgia has started notifying 180,142 patients that their personal and protected health information was compromised in a cyberattack that was detected on or around August 16, 2022. A provisional total of 500 records was reported as it was not known at the time how many individuals had been affected.

Ransomware

Ransomware Electronic Medical Records HIPAA Medicaid

Law Enforcement Health Benefits and Oklahoma City Indian Clinic Suffer Ransomware Attacks

HIPAA Journal

MARCH 30, 2022

have confirmed they were recent victims of cyberattacks, both of which involved the use of ransomware. Ransomware Attack Affects 85,282 Law Enforcement Health Benefits Members. LEHB) has recently announced that it was the victim of a ransomware attack that was detected on September 14, 2021. Law Enforcement Health Benefits, Inc.

Ransomware

Ransomware Electronic Medical Records Licensing HIPAA

More than 623,000 Patients Affected by CommonSpirit Health Ransomware Attack

HIPAA Journal

DECEMBER 9, 2022

CommonSpirit Health has confirmed that the protected health information of at least 623,774 patients was exposed and potentially stolen in its October 2022 ransomware attack. The attack was detected on October 2, 2022, with the investigation confirming the attackers had access to parts of its network between September 16 and October 3.

Ransomware

Ransomware Electronic Medical Records HIPAA Hospitals

CommonSpirit Health Facing Class Action Lawsuit over Ransomware Attack and Data Breach

HIPAA Journal

JANUARY 6, 2023

The Chicago, IL-based health system, CommonSpirit Health, is facing a class action lawsuit over its October 2022 ransomware attack. Malicious actors gained access to its IT systems on September 16, 2022, and deployed ransomware on October 2, 2022.

Ransomware

Ransomware Fraud Electronic Medical Records Hospitals

PHI Compromised in 4 Recent Ransomware and Malware Attacks

HIPAA Journal

FEBRUARY 15, 2023

Teijin Automotive Technologies Says Welfare Plan Data Compromised in December Ransomware Attack Teijin Automotive Technologies has recently confirmed the protected health information of 25,464 members of its welfare plan has potentially been accessed and stolen in a December 1, 2022, ransomware attack.

Ransomware

Ransomware Health Insurance Electronic Medical Records HIPAA

November 2022 Healthcare Data Breach Report

HIPAA Journal

DECEMBER 21, 2022

November’s total of 49 breaches of 500 or more records was also well below the 12-month average of 58 breaches a month. 643 healthcare data breaches have been reported to the HHS’ Office for Civil Rights so far in 2022, which makes this year the second worst year to date for healthcare data breaches. Ransomware attack.

Ransomware

Ransomware HIPAA Electronic Medical Records Doctors

August 2022 Healthcare Data Breach Report

HIPAA Journal

SEPTEMBER 19, 2022

For the third successive month, the number of healthcare data breaches reported to the Department of Health and Human Services’ Office for Civil Rights has fallen, with 49 breaches of 500 or more records reported in August– well below the 12-month average of 58 breaches per month. Largest Healthcare Data Breaches Reported in August 2022.

Ransomware

Ransomware HIPAA Electronic Medical Records Compliance

CommonSpirit Health Confirms System Outages Caused by Ransomware Attack

HIPAA Journal

OCTOBER 13, 2022

On October 3, 2022, CommonSpirit Health experienced a data security incident that forced it to take systems offline, including its electronic medical record (EHR) and other critical IT systems. Ransomware Attack Confirmed. That has now been confirmed by CommonSpirit Health.

Ransomware

Ransomware Electronic Medical Records HIPAA Hospitals

Eye Care Leaders Breach: Ransomware Attack Claims New Victims

Compliancy Group

JUNE 29, 2022

In early December of 2021, Eye Care Leaders (Eye Care), an electronic medical record vendor supplying business associate services to eye care providers across the country, discovered it had incurred a data breach. Eye Care’s myCare Integrity solution was hacked via a ransomware attack on December 4, 2021. .

Ransomware

Ransomware Electronic Medical Records HIPAA Compliance

Key Cybersecurity Defenses for the Healthcare Sector

Healthcare IT Today

OCTOBER 4, 2023

In 2022, as cyberattacks globally rose by 38% year-on-year, healthcare became the third-most-attacked industry (behind government and education), recording an increase of 74% and reporting up to 1,463 incidents per week. The following is a guest article by Sam Manjarres, Sr.

Ransomware

Ransomware Electronic Medical Records Telemedicine HIPAA

Up to 170,450 Patients Affected by Cyberattack on the Chattanooga Heart Institute

HIPAA Journal

AUGUST 2, 2023

The administrative service provider said suspicious activity was detected within its network in early December 2022, and the forensic investigation confirmed on December 15, 2022, that an unauthorized third party accessed parts of its computer network where personal health information was stored.

Licensing

Licensing Electronic Medical Records Ransomware Health Insurance

Another Lawsuit Filed Against Connexin Software Over 2.2 Million-Record Data Breach

HIPAA Journal

FEBRUARY 14, 2023

Another lawsuit has been filed against Connexin Software over its August 2022 ransomware attack and data breach, which affected more than 2.2 Connexin Software does business as Office Practicum and is a provider of electronic medical records and practice management software for pediatric practices.

Electronic Medical Records

Electronic Medical Records Ransomware HIPAA Fraud

Cyberattack and Data Destruction Reported by First Street Family Health

HIPAA Journal

AUGUST 31, 2022

This method of attack is becoming more common, where data is stolen, deleted, and then threats are issued to publish or sell the data if payment is not made to the attackers, but files are not encrypted using ransomware. The unauthorized access was blocked on July 16.

Electronic Medical Records

Electronic Medical Records Ransomware HIPAA Health Insurance

Updates on Cyberattacks on Goodman Campbell Brain and Spine and Behavioral Health Group

HIPAA Journal

AUGUST 8, 2022

Carmel, IN-based Goodman Campbell Brain and Spine has started notifying 363,000 current and former patients that some of their protected health information was stolen prior to data being encrypted with ransomware and some of the stolen data has been published on the gang’s dark web data leak site.

Ransomware

Ransomware Electronic Medical Records HIPAA Licensing

59% Year-over-year Increase in Exploitable Vulnerabilities in Medical Devices

HIPAA Journal

AUGUST 11, 2023

A joint research project by Health-ISAC, Finite State, and Securin has revealed exploitable vulnerabilities in medical devices have increased by almost 60% since 2022. The researchers identified almost 1,000 vulnerabilities in 966 medical products, which is a 59% year-over-year increase from 2022.

Electronic Medical Records

Electronic Medical Records Ransomware Fraud HIPAA

St. Luke’s Health Reports Third Party Data Breach

HIPAA Journal

NOVEMBER 7, 2022

Luke’s Health was notified about the breach on September 1, 2022. Luke’s Health is currently recovering from a ransomware attack on its parent company, CommonSpirit Health, that occurred more than a month ago. The unauthorized system access occurred on or around August 16, 2022.

Electronic Medical Records

Electronic Medical Records Ransomware HIPAA Licensing

PHI of Over 500,000 Individuals Potentially Compromised in 4 Security Incidents

HIPAA Journal

MARCH 9, 2022

Over 500,000 individuals have been affected by cyberattacks on Norwood Clinic, PracticeMax, Central Indiana Orthopedics, and an unauthorized electronic medical record incident at Ascension Michigan. The review was concluded on February 2, 2022, and affected customers were updated on February 14, 2022.

Electronic Medical Records

Electronic Medical Records Health Insurance Ransomware HIPAA

Security Breaches in Healthcare in 2023

HIPAA Journal

JANUARY 31, 2024

2023 was the worst-ever year for breached healthcare records with breached records increasing by 156% from 2022 to 133,068,542 breached records, beating the previous record of 113 million records set in 2015. In 2023, an average of 373,788 healthcare records were breached every day.

Ransomware

Ransomware HIPAA Hospitals Compliance

HC3 Warns of Risk of Web Application Attacks on Healthcare Organizations

HIPAA Journal

JULY 25, 2022

Web applications have grown in popularity in healthcare in recent years and are used for patient portals, electronic medical record systems, scheduling appointments, accessing test results, patient monitoring, online pharmacies, dental CAD systems, inventory management, and more.

Electronic Medical Records

Electronic Medical Records Ransomware COVID-19 HIPAA

Cyberattacks Reported by Wolfe Clinic, Reiter Affiliated Companies, & SERV Behavioral Health System

HIPAA Journal

SEPTEMBER 28, 2022

in Iowa has recently confirmed that it was affected by the data breach at the electronic medical record provider, Eye Care Leaders. Wolfe Clinic used the myCare Integrity medical records platform, which was accessed by an unauthorized party on or around December 4, 2021, who deleted databases and system configuration files.

Electronic Medical Records

Electronic Medical Records Ransomware Fraud HIPAA

Healthcare Organizations Failing to Assess and Mitigate Supply Chain Risks

HIPAA Journal

JANUARY 12, 2023

Cybercriminals have been increasingly attacking healthcare vendors because they are a much less secure part of the supply chain and in 2022, many of the largest healthcare data breaches reported involved vendors. million patients, to name but a few. million patients, to name but a few.

Electronic Medical Records

Electronic Medical Records Ransomware Fraud HIPAA

Data Breaches Reported by Allegheny Health Network, St. Luke’s Health System, & Goldsboro Podiatry

HIPAA Journal

AUGUST 2, 2022

The breach occurred in May 2022 at Kaye-Smith, the health system’s billing vendor, and affected patients that were billed that month. The breach was discovered in June 2022 and was reported to St. Luke’s Health System on July 6, 2022. Goldsboro Podiatry was notified about the attack on May 20, 2022.

Electronic Medical Records

Electronic Medical Records Ransomware HIPAA Licensing

Protected Health Information Exposed in 5 Recent Hacking Incidents

HIPAA Journal

MARCH 16, 2023

Florida Medical Clinic, NorthStar Emergency Medical Services, Denver Public Schools, Wichita Urology Group, and The Bone & Joint Clinic have recently reported hacking incidents and the exposure and potential theft of protected health information. 95% of the compromised files only included an individual’s name.

Electronic Medical Records

Electronic Medical Records Health Insurance Ransomware HIPAA

Healthcare Remains Top Target in 2022 ITRC Breach Report

Compliancy Group

JANUARY 25, 2023

At least 344 organizations in the healthcare industry suffered data breaches in 2022, according to a just-released report from the Identity Theft Research Center® (ITRC). Close Supply chain attacks outstripped malware attacks in 2022, with 115 instances affecting 1,743 organizations and at least 10 million people. Find Out More!

HIPAA

HIPAA Electronic Medical Records Due Diligence Compliance

Tallahassee Memorial Healthcare: Patient Data Stolen in Cyberattack

HIPAA Journal

APRIL 5, 2023

Cyberattacks such as this often involve ransomware, although it is unclear if ransomware was used in this attack. TMH confirmed that its electronic medical record system was not accessed in the attack. TMH did not share further information on the exact nature of the attack.

Ransomware

Ransomware Electronic Medical Records Health Insurance HIPAA

PHI of Almost 34,000 Patients Potentially Compromised in Michigan Medicine Phishing Attack

HIPAA Journal

OCTOBER 28, 2022

Michigan Medicine said it was targeted in a phishing campaign between August 15 and August 23, 2022, and four email accounts were compromised. The review of the email accounts was completed on October 17, 2022, and notification letters have now been mailed. Vincent’s Coastal Cardiology Brunswick Suffers Ransomware Attack.

Ransomware

Ransomware Electronic Medical Records HIPAA Health Insurance

Logan Health Medical Center Cyberattack Affects More Than 213,000 Patients

HIPAA Journal

FEBRUARY 23, 2022

Third-party forensic investigators were retained to conduct an investigation to determine the nature and scope of the attack and on January 5, 2022, it was confirmed that certain files on its systems that contained patient information had been accessed. At no point did the attack affect the quality of patient care.

Electronic Medical Records

Electronic Medical Records HIPAA Health Insurance Medical Billing

Health Provider News – June 3, 2022

Hall Render

JUNE 3, 2022

Ransomware spurs weeks, months of IT downtime. Delaware physician group latest spine practice to suffer ransomware attack. NCH Healthcare System switching vendor for electronic medical records in early June. Valley doctor, pharmacy, volunteer among 2022 ‘Health Heroes’ ILLINOIS. MASSACHUSETTS.

COVID-19

COVID-19 Nursing Homes US Department of Health and Human Services Nurses

Health Provider News

Hall Render

APRIL 7, 2023

5 moves to know Most hospital websites routinely transfer patient data via tracking tools Nonprofit hospitals that pay board members linked to less charity care Nurses, federal lawmakers push for staffing ratio legislation Reports of serious adverse events rose in 2022: Joint Commission Doctors are drowning in paperwork. on revenue of $2.1B

US Department of Health and Human Services

US Department of Health and Human Services Nursing Homes COVID-19 Nurses

Health Care Compliance Brief

June 2022 Healthcare Data Breach Report

700,000 Patients Affected by Yuma Regional Medical Center Ransomware Attack

Trending Sources

1H 2022 Healthcare Data Breach Report

PHI Potentially Compromised in Ransomware Attacks at MD, TX, and FL Healthcare Providers

Tift Regional Medical Center Patients Notified About August 2022 Cyberattack

Law Enforcement Health Benefits and Oklahoma City Indian Clinic Suffer Ransomware Attacks

More than 623,000 Patients Affected by CommonSpirit Health Ransomware Attack

CommonSpirit Health Facing Class Action Lawsuit over Ransomware Attack and Data Breach

PHI Compromised in 4 Recent Ransomware and Malware Attacks

November 2022 Healthcare Data Breach Report

August 2022 Healthcare Data Breach Report

CommonSpirit Health Confirms System Outages Caused by Ransomware Attack

Eye Care Leaders Breach: Ransomware Attack Claims New Victims

Key Cybersecurity Defenses for the Healthcare Sector

Up to 170,450 Patients Affected by Cyberattack on the Chattanooga Heart Institute

Another Lawsuit Filed Against Connexin Software Over 2.2 Million-Record Data Breach

Cyberattack and Data Destruction Reported by First Street Family Health

Updates on Cyberattacks on Goodman Campbell Brain and Spine and Behavioral Health Group

59% Year-over-year Increase in Exploitable Vulnerabilities in Medical Devices

St. Luke’s Health Reports Third Party Data Breach

PHI of Over 500,000 Individuals Potentially Compromised in 4 Security Incidents

Security Breaches in Healthcare in 2023

HC3 Warns of Risk of Web Application Attacks on Healthcare Organizations

Cyberattacks Reported by Wolfe Clinic, Reiter Affiliated Companies, & SERV Behavioral Health System

Healthcare Organizations Failing to Assess and Mitigate Supply Chain Risks

Data Breaches Reported by Allegheny Health Network, St. Luke’s Health System, & Goldsboro Podiatry

Protected Health Information Exposed in 5 Recent Hacking Incidents

Healthcare Remains Top Target in 2022 ITRC Breach Report

Tallahassee Memorial Healthcare: Patient Data Stolen in Cyberattack

PHI of Almost 34,000 Patients Potentially Compromised in Michigan Medicine Phishing Attack

Logan Health Medical Center Cyberattack Affects More Than 213,000 Patients

Health Provider News – June 3, 2022

Health Provider News

Stay Connected