2022, Governance, Health Insurance and HIPAA - Health Care Compliance Brief

Rehmann Confirmed as HIPAA Compliant

HIPAA Journal

FEBRUARY 14, 2023

The Troy, MI-based fully integrated professional advisory and asset management firm, Rehmann, has recently been confirmed as being in full compliance with the federally mandated standards of the Health Insurance Portability and Accountability Act (HIPAA) and the HITECH Act.

HIPAA

HIPAA Compliance Health Insurance Governance

ICYMI: HIPAA and Social Media IRL

Healthcare Law Blog

FEBRUARY 8, 2023

ICYMI (“in case you missed it”), there is an uptick in enforcement and scrutiny IRL (“in real life”) related to communications through social media and other public platforms by entities subject to the Health Insurance Portability and Accountability Act of 1996 (“HIPAA”).

HIPAA

HIPAA Health Insurance Governance Compliance

Alvaria Confirms November 2022 Hive Ransomware Attack

HIPAA Journal

JUNE 8, 2023

Alvaria explained that the ransomware attack occurred on November 28, 2022, and steps were immediately taken to contain the attack and prevent further unauthorized access to its network. The post Alvaria Confirms November 2022 Hive Ransomware Attack appeared first on HIPAA Journal.

Ransomware

Ransomware Fraud HIPAA Health Insurance

Physician-Led Advocacy for the Future of Reproductive Health Care

Bill of Health

DECEMBER 12, 2022

The American Medical Association (AMA) recently adopted new policies aimed at protecting access to reproductive health care and reducing government interference in medical practice. The AMA is governed by a House of Delegates (HOD), in addition to executive management and a board of trustees. By Katie Gu.

Governance

Governance Public Health HIPAA Doctors

4 Data Security Challenges for Healthcare Organizations in 2022

HIT Consultant

DECEMBER 21, 2022

In addition, Healthcare software providers and organizations must comply with HIPAA (Health Insurance Portability and Accountability Act). Recent Data Breaches: – November 2022: Ransomware Hacker Steals Medibank Data on 9.7m – September 2022: American Airlines Discloses Data Breach. Ransomware.

Ransomware

Ransomware HIPAA Health Insurance Governance

657 Healthcare Providers Affected by Ransomware Attack on Professional Finance Company

HIPAA Journal

JULY 4, 2022

According to the PFC website, the company is one of the nation’s leading debt recovery agencies, and its client list includes many healthcare providers, retailers, financial organizations, and government agencies. Third-party forensics specialists were engaged to investigate the breach and provide assistance with securing its environment.

Ransomware

Ransomware HIPAA Health Insurance Governance

Pre-Pandemic HIPAA Compliant Telehealth Regulations Are Coming Back

MedTrainer

AUGUST 15, 2022

HIPAA has placed many restrictions on telehealth services. Telehealth Compliance and HIPAA: What You Need to Know. First, let’s take a brief look at HIPAA as a refresher. The Health Insurance Portability and Accountability Act (HIPAA) exists to provide regulations and best practices for sharing sensitive healthcare data.

HIPAA

HIPAA Telemedicine COVID-19 Compliance

Hacking and IT Incidents Affect 563,000 Patients and Health Plan Members

HIPAA Journal

DECEMBER 1, 2022

The extent to which protected health information has been compromised is not yet known. Notifications were issued on November 14, 2022. According to the STAR substitute breach notice, the breach was detected in September 2022. California Health Insurance Agency Suffers Data Breach Affecting 14,600 Patients.

Health Insurance

Health Insurance Ransomware HIPAA Governance

Rethinking culture in healthcare cybersecurity strategy

Healthcare It News

JULY 31, 2023

Liederman has been in the trenches working to figure out how to set up network gates so skilled clinicians and other valuable healthcare staff – employees who may have simply lapsed in judgment – are helped to stop themselves from breaching HIPAA.

Ransomware

Ransomware Health Insurance HIPAA Governance

Email Account Breaches Reported by Legacy Hospice, Live Oak Surgery Center, University of Miami Health

HIPAA Journal

JANUARY 9, 2023

Legacy Operating Company, an Alabama-based operator of Legacy Hospice facilities in Alabama, Arkansas, Louisiana, Mississippi, Missouri, Oklahoma, and Tennessee, has confirmed that an unauthorized third party gained access to a limited number of employee email accounts on February 11, 2022, and between April 7, 2022, and April 21, 2022.

Licensing

Licensing HIPAA Health Insurance Governance

Medusa Ransomware Group Leaks Data Stolen from American Renal Associates

HIPAA Journal

APRIL 8, 2024

The leaked data includes patient names, dates of birth, phone numbers, email addresses, medical records, Social Security numbers, copies of passports and driver’s licenses, health insurance information, and company data. The investigation uncovered evidence of unauthorized access to files that contained patient information.

Ransomware

Ransomware Health Insurance Licensing HIPAA

Up to 170,450 Patients Affected by Cyberattack on the Chattanooga Heart Institute

HIPAA Journal

AUGUST 2, 2023

The administrative service provider said suspicious activity was detected within its network in early December 2022, and the forensic investigation confirmed on December 15, 2022, that an unauthorized third party accessed parts of its computer network where personal health information was stored.

Licensing

Licensing Electronic Medical Records Ransomware Health Insurance

Up to 2,592,494 individuals Affected by Smile Brands Ransomware Attack

HIPAA Journal

APRIL 28, 2022

The attackers gained access to parts of its system on April 23, 2021, that housed files that contained individuals protected health information, including names, addresses, telephone numbers, dates of birth, Social Security numbers, financial information, government-issued ID numbers, and health information.

Ransomware

Ransomware Health Insurance HIPAA Licensing

Data Breaches Reported by New Jersey Brain and Spine, Highmark Inc. and Dialyze Direct

HIPAA Journal

MARCH 23, 2022

Notification letters were sent to affected individuals on March 10, 2022. According to a March 10, 2022 data breach notice, Dialyze Direct said it discovered on February 14, 2022, that an unauthorized individual had gained access to an employee email account between January 21, 2021, and March 4, 2021. Highmark Inc.,

HIPAA

HIPAA Licensing Health Insurance Governance

Dental Health Management Solutions Notified Patients About Historic Data Breach

HIPAA Journal

MARCH 6, 2023

Cedar Park, TX-based Dental Health Management Solutions (DHMS), a provider of dental services to the government/military and private patients has recently announced – via its legal counsel – that the protected health information of certain patients was exposed in a 2021 hacking incident.

Electronic Medical Records

Electronic Medical Records HIPAA Licensing Nurses

Lake Charles Memorial Health System Cyberattack Affects Almost 270,000 Patients

HIPAA Journal

DECEMBER 29, 2022

The Louisiana healthcare system said suspicious activity was detected by its security team on October 21, 2022, and steps were taken to contain the activity and investigate a potential breach. The Palm Springs, FL-based federally qualified health center, FoundCare Inc., Some Social Security numbers were also compromised.

Ransomware

Ransomware Health Insurance Licensing Medical Billing

Data Breaches Reported by University Pediatric Dentistry, OrthoNebraska, Michigan Avenue Immediate Care

HIPAA Journal

JULY 5, 2022

The email system was immediately secured when the breach was detected with the forensic investigation confirming that two email accounts had been accessed by an unauthorized third party between January 12, 2022, and January 19, 2022. A limited number of patients also had financial account information exposed.

Licensing

Licensing Electronic Medical Records Health Insurance Hospitals

Interoperability: How Hospitals Share Healthcare Data Can Cost Lives, We Can All Do Better

HIT Consultant

APRIL 22, 2024

Since 1996, when the Health Insurance Portability and Accountability Act (HIPAA) became law, there have been good advances in patient data interoperability, but as a whole, the industry has not embraced them. This drove the use of Electronic Health Record systems (EHRs) in acute care hospitals to 84 percent by 2015.

Hospitals

Hospitals Electronic Medical Records Governance Health Insurance

Data Breach of Four Californian Medical Groups Leaves 3.3 Patients Vulnerable

Compliancy Group

MARCH 27, 2023

The Cyberattack The aforementioned cyberattack took place on December 1, 2022. On December 2, 2022, access to several servers was blocked after hackers obtained access to the Computer systems of the medical groups. Make Sure You’re HIPAA Compliant HIPAA and cybersecurity go hand-in-hand. Find Out More! Please Wait.

HIPAA

HIPAA Compliance Health Insurance Governance

One Brooklyn Health Dealing with Ongoing Cyber Incident

HIPAA Journal

DECEMBER 1, 2022

Mena Regional Health System (MRHS) in Arkansas announced on November 22, 2022, that an unauthorized third party gained access to its network and exfiltrated files containing the protected health information of 84,814 patients. That process commenced on November 22, 2022.

Electronic Medical Records

Electronic Medical Records Hospitals Health Insurance HIPAA

Guarding Patient Privacy in the Age of AI Healthcare

HIT Consultant

NOVEMBER 27, 2023

Kevin Kirkwood, Deputy CISO, LogRhythm 2022 research from Morning Consult reveals that the healthcare field in particular has witnessed substantial enhancements in medical diagnoses, mental health evaluations, and the expeditious discovery of treatment options following the implementation of artificial intelligence (AI).

Compliance

Compliance Regulatory Compliance HIPAA Health Insurance

Multiple Data Breaches Reported by Iowa Medicaid and South Jersey Behavioral Health Resources

HIPAA Journal

JUNE 8, 2023

Names, addresses, Social Security numbers, and health insurance were impermissibly disclosed. Telligen subcontracted part of that work to Independent Living Systems (ILS), where the data breach occurred in June and July 2022. The protected health information of approximately 20,800 Medicaid members was compromised in the attack.

Medicaid

Medicaid Medicaid Ransomware Health Insurance

Is Your Organization HITECH Compliant?

AIHC

NOVEMBER 6, 2023

The focus of this article is to “connect the dots” between Health Insurance Portability & Accountability Act (HIPAA) and HITECH regarding privacy and security of electronically protected health information (ePHI). However, your organization should not address only “HIPAA” or only “HITECH”. What is “HITECH”?

HIPAA

HIPAA Compliance Governance Health Insurance

Main Line Women’s Healthcare Employee Terminated for Photographing Patient Records

HIPAA Journal

OCTOBER 25, 2022

When the HIPAA violation was detected, the employee was immediately suspended and an internal investigation was launched to determine the extent of the privacy breach and the types of information that had been obtained. The review of the records was completed on September 7, 2022, and notification letters were sent on October 10.

HIPAA

HIPAA Health Insurance Governance

COVID-19 Vaccination Statuses of 500,000 VA Employees have been Impermissibly Disclosed

HIPAA Journal

DECEMBER 7, 2022

In October 2022, Urology of Greater Atlanta in Georgia reported a data breach to the HHS’ Office for Civil Rights that had affected 79,795 patients. The intrusion was detected on September 5, 2022, and third-party computer specialists were engaged to investigate the nature and scope of the breach.

COVID-19 Vaccine

COVID-19 Vaccine COVID-19 Department of Veterans Affairs Licensing

San Diego Family Care Agrees to $1 Million Settlement to Resolve Class Action Data Breach Lawsuit

HIPAA Journal

JUNE 16, 2022

The compromised data included names, Social Security numbers, government identification numbers, financial account numbers, dates of birth, medical diagnosis or treatment information, health insurance information, and client identification numbers.

Ransomware

Ransomware Health Insurance HIPAA Governance

Is Your Organization HITECH Compliant?

AIHC

NOVEMBER 6, 2023

The focus of this article is to “connect the dots” between Health Insurance Portability & Accountability Act (HIPAA) and HITECH regarding privacy and security of electronically protected health information (ePHI). However, your organization should not address only “HIPAA” or only “HITECH”. What is “HITECH”?

HIPAA

HIPAA Compliance Governance Health Insurance

HHS Releases Guidance on HIPAA and Information Related to Reproductive Health Care

Hall Render

JULY 11, 2022

On June 29, 2022, the Office for Civil Rights (“OCR”) in the U.S. Department of Health & Human Services (“HHS”) released a notice and guidance on the Health Insurance Portability and Accountability Act of 1996 (“HIPAA”) and the protection of patient information relating to reproductive health care (the “Notice”).

HIPAA

HIPAA Health Insurance Public Health Governance

10 Charged Over BEC Scams Targeting Medicare, Medicaid, and Private Insurance Programs

HIPAA Journal

NOVEMBER 21, 2022

million being defrauded from Medicaid, Medicare, and private health insurance programs. Five state Medicaid programs, two Medicare Administrative Contractors, and two private health insurers were tricked into changing the bank account details for payments. He was sentenced to 4 years in jail on September 15, 2022.

Medicaid

Medicaid Medicaid Medicare Medicare

Norton Healthcare Facing Class Action Lawsuit Over BlackCat Cyberattack

HIPAA Journal

JULY 27, 2023

The stolen information included names, addresses, email addresses, dates of birth, Social Security numbers, government identification ID numbers, driver’s license numbers, payment/financial institution information, health insurance providers, medical treatment information, medical diagnoses, medications, medical images, and lab test results.

Ransomware

Ransomware Fraud Licensing Health Insurance

RFID in Healthcare: Navigating Security & Privacy Regulations

Healthcare IT Today

AUGUST 21, 2023

billion in 2022, RFID in the global healthcare market is projected to grow at a CAGR of 17.85% from 2023 to 2030. Health Insurance Portability and Accountability Act (HIPAA) is another significant regulation that can impact RFID in healthcare applications. Valued at USD 3.95

HIPAA

HIPAA Regulatory Compliance Hospitals FDA

Healthcare Sees 60% YoY Increase in Cyberattacks

HIPAA Journal

NOVEMBER 17, 2022

There was a global increase in cyberattacks in Q3, 2022, with attacks rising by 28% compared to the corresponding period last year. Education was the most extensively targeted sector in Q3, experiencing an 18% rise in attacks, followed by government/military which saw a 20% increase.

Ransomware

Ransomware Governance Health Insurance HIPAA

Office of Civil Rights Publishes Guidance on Use of Audio-Only Telehealth Services

Healthcare Law Blog

JUNE 20, 2022

In effect, a covered health care provider seeking to use audio or video communication technology to provide telehealth services during the public health emergency could do so with greater flexibility. Background of HIPAA. HIPAA does not mandate a specific method to complete this verification.

HIPAA

HIPAA COVID-19 Public Health Compliance

HLTH22 Day 1 News Summary: Google, Maven, Highmark, LG, Others

HIT Consultant

NOVEMBER 14, 2022

Highmark Health, Google Cloud , and League unveiled their collaboration on an interoperable, digital health platform that makes it simple for individuals to navigate healthcare and connect to the right tools and resources when and where they need them. Twilio, Healthfirst Launch CDP for Health Plans and Providers.

Doctors

Doctors Health Insurance Hospitals HIPAA

How Healthcare Can Manage Compliance with Fine-Grained Protection

Healthcare IT Today

JANUARY 2, 2024

In the same step, the number of regulations governing the sector has grown in complexity, which stems from movements including the HIPAA Right of Access Initiative and fallout from the reversal of federally protected abortion access.

Compliance

Compliance US Department of Health and Human Services HIPAA Health Insurance

Part 2: Who Regulates Healthcare AI?

AIHC

JUNE 14, 2023

We recommend watching the introduction video: [link] For healthcare HIPAA covered entities, NIST is likely a familiar organization to you. The initial draft of the AI RMF was published March 17, 2022 and a second draft on August 18, 2022. NIST published prior documents related to AI. Parts 160 and 164, Subparts A, C, and E).

FDA

FDA HIPAA Compliance Regulatory Compliance

Digital Health in the Metaverse: Three Legal Considerations

Healthcare Law Blog

MAY 31, 2022

The FTC’s increasing interest in health information that sits outside of HHS/OCR’s reach is likely to only expand in light of health-related metaverse use cases. In response to the growth of the metaverse and digital health generally, the FDA has been working to expand its guidance in the area. Healthcare Laws. 1, 2021). [2]

FDA

FDA HIPAA Medicare Medicare

Introduction to Telebehavioral Health

AIHC

SEPTEMBER 5, 2023

Terminology used for the various forms of telehealth technology are summarized below which applies to both general and behavioral health care use. Not all forms of technology are recognized as services which can be reimbursed by health insurance. The Office for Civil Rights (OCR) is the HIPAA enforcement agency.

COVID-19

COVID-19 Telemedicine Compliance Informed Consent

Is the Violation Right of Access or Information Blocking? Part 1 of 2

AIHC

MARCH 14, 2023

an AIHC member and Volunteer on the CEU Education Committee The right of access and information blocking are both related to the access and exchange of health information, but they are different in several key ways. HIPAA Privacy/Security and Compliance Officers and Health Information Management professionals need to know the difference.

HIPAA

HIPAA Malpractice Compliance Compliance Officers

5 Key Challenges Preventing Innovation in Digital Health

HIT Consultant

AUGUST 21, 2023

Artificial intelligence, digital health apps and virtual care platforms, among other technologies, provide solutions that are both cost and labor effective and seek to reduce the pressures being placed on the healthcare sector. from 2023 to 2030. million patients affected by data breaches in 2021 alone.

FDA

FDA Telemedicine Health Insurance Hospitals

Editorial: Lessons for American Healthcare Providers from the Australian Medibank Health Record Breach

HIPAA Journal

NOVEMBER 18, 2022

One attack that has made the headlines – the cyberattack on the Australian health insurer, Medibank Private Ltd – confirms the global nature of the current cyber war, which healthcare organizations around the world are struggling to win. On October 13, 2022, Medibank detected suspicious activity within its network.

Ransomware

Ransomware Health Insurance HIPAA Governance

ChatGPT And Healthcare Privacy Risks

Healthcare Law Blog

MARCH 8, 2023

Since its launch in November 2022, ChatGPT (“GPT” stands for Generative Pre-trained Transformer), a type of artificial intelligence model, has gained over a million users. ChatGPT is used by entities in a wide variety of industries.

HIPAA

HIPAA Licensing Compliance Health Insurance

Security and Compliance Oversight Will Reduce Business Communication Risk for Healthcare in 2023

HIT Consultant

JANUARY 3, 2023

Department of Health and Human Services Office of Information Security noted in a 2022 report on health sector cybersecurity, that threat actors continue to evolve and become more sophisticated and effective in their attacks. Compliance with regulations is nothing new for the industry.

Compliance

Compliance Ransomware Fraud Regulatory Compliance

July 2022 Semi-Annual Health IT Market Review

HIT Consultant

JULY 28, 2022

2022 ushered in Act III of the market’s latest transitionary period: The Post-Inflation Era. Act I: Pre-COVID (Pre-2020) Act II: Post-COVID (2020 – 2021) Act III: Post-Inflation (2022 – ?). The amount of investment going into Health IT is nearly half the Post-COVID peak, but still 27% higher than Pre-COVID levels.

US Department of Health and Human Services

US Department of Health and Human Services COVID-19 Health Insurance Telemedicine

Rehmann Confirmed as HIPAA Compliant

ICYMI: HIPAA and Social Media IRL

Trending Sources

Alvaria Confirms November 2022 Hive Ransomware Attack

Physician-Led Advocacy for the Future of Reproductive Health Care

4 Data Security Challenges for Healthcare Organizations in 2022

657 Healthcare Providers Affected by Ransomware Attack on Professional Finance Company

Pre-Pandemic HIPAA Compliant Telehealth Regulations Are Coming Back

Hacking and IT Incidents Affect 563,000 Patients and Health Plan Members

Rethinking culture in healthcare cybersecurity strategy

Email Account Breaches Reported by Legacy Hospice, Live Oak Surgery Center, University of Miami Health

Medusa Ransomware Group Leaks Data Stolen from American Renal Associates

Up to 170,450 Patients Affected by Cyberattack on the Chattanooga Heart Institute

Up to 2,592,494 individuals Affected by Smile Brands Ransomware Attack

Data Breaches Reported by New Jersey Brain and Spine, Highmark Inc. and Dialyze Direct

Dental Health Management Solutions Notified Patients About Historic Data Breach

Lake Charles Memorial Health System Cyberattack Affects Almost 270,000 Patients

Data Breaches Reported by University Pediatric Dentistry, OrthoNebraska, Michigan Avenue Immediate Care

Interoperability: How Hospitals Share Healthcare Data Can Cost Lives, We Can All Do Better

Data Breach of Four Californian Medical Groups Leaves 3.3 Patients Vulnerable

One Brooklyn Health Dealing with Ongoing Cyber Incident

Guarding Patient Privacy in the Age of AI Healthcare

Multiple Data Breaches Reported by Iowa Medicaid and South Jersey Behavioral Health Resources

Is Your Organization HITECH Compliant?

Main Line Women’s Healthcare Employee Terminated for Photographing Patient Records

COVID-19 Vaccination Statuses of 500,000 VA Employees have been Impermissibly Disclosed

San Diego Family Care Agrees to $1 Million Settlement to Resolve Class Action Data Breach Lawsuit

Is Your Organization HITECH Compliant?

HHS Releases Guidance on HIPAA and Information Related to Reproductive Health Care

10 Charged Over BEC Scams Targeting Medicare, Medicaid, and Private Insurance Programs

Norton Healthcare Facing Class Action Lawsuit Over BlackCat Cyberattack

RFID in Healthcare: Navigating Security & Privacy Regulations

Healthcare Sees 60% YoY Increase in Cyberattacks

Office of Civil Rights Publishes Guidance on Use of Audio-Only Telehealth Services

HLTH22 Day 1 News Summary: Google, Maven, Highmark, LG, Others

How Healthcare Can Manage Compliance with Fine-Grained Protection

Part 2: Who Regulates Healthcare AI?

Digital Health in the Metaverse: Three Legal Considerations

Introduction to Telebehavioral Health

Is the Violation Right of Access or Information Blocking? Part 1 of 2

5 Key Challenges Preventing Innovation in Digital Health

Editorial: Lessons for American Healthcare Providers from the Australian Medibank Health Record Breach

ChatGPT And Healthcare Privacy Risks

Security and Compliance Oversight Will Reduce Business Communication Risk for Healthcare in 2023

July 2022 Semi-Annual Health IT Market Review

Stay Connected