2022, Health Insurance and HIPAA - Health Care Compliance Brief

Webinar: Aug 17, 2022: Do I Need to be HIPAA Compliant?

HIPAA Journal

AUGUST 8, 2022

The Health Insurance Portability and Accountability Act (HIPAA) sets national standards to protect sensitive patient health information and to prevent that information from being disclosed without an individual’s knowledge or consent. Do I Need to be HIPAA Compliant? contact-form-7].

HIPAA

HIPAA Compliance Health Insurance

Webinar: May 19, 2022: 6 Secret Ingredients to HIPAA Compliance

HIPAA Journal

MAY 2, 2022

Achieving and maintaining compliance with all provisions of the Health Insurance Portability and Accountability Act (HIPAA) Rules can be a challenge for healthcare providers, health plans, healthcare clearinghouses, and business associates of HIPAA-covered entities. Thursday, May, 19th, 2022. PT ¦ 2:00 p.m.

HIPAA

HIPAA Compliance Health Insurance

Webinar: Sept 21, 2022: How to Complete Your 2022 Risk Assessment

HIPAA Journal

AUGUST 18, 2022

The Health Insurance Portability and Accountability Act (HIPAA) requires HIPAA-covered entities and their business associates to complete a risk assessment. The risk assessment should not be viewed as a HIPAA compliance checkbox item to avoid financial penalties. Wednesday, September 21, 2022.

HIPAA

HIPAA Compliance Health Insurance

Editorial: Lessons from Biggest HIPAA Breaches of 2022

HIPAA Journal

DECEMBER 23, 2022

It has been another bad year for healthcare data breaches, with some of the biggest HIPAA breaches of 2022 resulting in the impermissible disclosure of well over a million records. In addition to the high number of data breaches, 2022 stands out for the sheer number of healthcare records breached, which currently stands at 49.8

HIPAA

HIPAA Ransomware Health Insurance Compliance

Webinar: July 20, 2022: Compliance vs. Security: Why you Need Both to be HIPAA Compliant

HIPAA Journal

JUNE 20, 2022

Healthcare providers, health plans, healthcare clearinghouses, and business associates of those entities that come into contact with protected health information (PHI) are required to ensure policies, processes, and people are compliant with the Rules of the Health Insurance Portability and Accountability Act (HIPAA).

HIPAA

HIPAA Compliance Health Insurance

3 Reasons Insurance Agents Need to Follow HIPAA

Total HIPAA

MARCH 7, 2023

Health insurance agents became covered under HIPAA with the HITECH Act of 2009. The inclusion of insurance agents was a response to the increasing use of electronic health records and the need to safeguard patients’ medical information.

HIPAA

HIPAA US Department of Health and Human Services Compliance Health Insurance

One Brooklyn Health Notifies Patients About November 2022 Cyberattack

HIPAA Journal

APRIL 21, 2023

One Brooklyn Health System, which operates three hospitals in Brooklyn, NY, has started notifying patients affected by a November 19, 2022, cyberattack. Contact information then needed to be verified to allow breach notification letters to be mailed.

Health Insurance

Health Insurance Licensing HIPAA Hospitals

ICYMI: HIPAA and Social Media IRL

Healthcare Law Blog

FEBRUARY 8, 2023

ICYMI (“in case you missed it”), there is an uptick in enforcement and scrutiny IRL (“in real life”) related to communications through social media and other public platforms by entities subject to the Health Insurance Portability and Accountability Act of 1996 (“HIPAA”).

HIPAA

HIPAA Health Insurance Governance Compliance

What are the Penalties for HIPAA Violations?

HIPAA Journal

DECEMBER 24, 2022

Penalties for HIPAA violations can be issued by the Department of Health and Human Services’ Office for Civil Rights (OCR) and state attorneys general. In addition to financial penalties, covered entities are required to adopt a corrective action plan to bring policies and procedures up to the standards demanded by HIPAA. .

HIPAA

HIPAA Compliance Hospitals COVID-19

State of HIPAA – May 2023 Report

HIPAA Journal

MAY 29, 2023

It has been 27 years since President Clinton signed the Health Insurance Portability and Accountability Act (HIPAA) into law, but compliance is still proving a challenge for many HIPAA-regulated entities. million in 2022. The average HIPAA penalty has fallen from $2.6 million in 2018 to just $1.6

HIPAA

HIPAA Compliance Due Diligence COVID-19

6 HIPAA Regulated Entities Report Phishing Attacks and Unauthorized Email Account Access

HIPAA Journal

NOVEMBER 16, 2022

According to the breach report filed with the Maine Attorney General, it took until October 3, 2022, to confirm that an unauthorized third party had accessed the email system, which included sensitive information of its members. Notification letters were sent to affected individuals on October 31, 2022.

HIPAA

HIPAA Licensing Health Insurance Fraud

Editorial: The Three Pillars of HIPAA Compliance

HIPAA Journal

FEBRUARY 10, 2023

Achieving compliance with the Rules of the Health Insurance Portability and Accountability Act (HIPAA) can be a challenge for healthcare organizations and their business associates. One of the biggest challenges for compliance professionals is interpreting the HIPAA Rules and applying those requirements to their organization.

HIPAA

HIPAA Compliance Compliance Officers Health Insurance

Ransomware Attack at Fitzgibbon Hospital Affects 112,000 Patients

HIPAA Journal

JANUARY 5, 2023

Back in June 2022 , HIPAA Journal reported on a cyberattack on Fitzgibbon Hospital in Marshall, MO, after being contacted directly by a spokesperson for a threat group called DAIXIN Team, who claimed responsibility for the attack. Howard Memorial Hospital Announces December 2022 Cyberattack.

Ransomware

Ransomware Hospitals HIPAA Licensing

Updated Pennsylvania Breach of Personal Information Notification Act Now in Effect

HIPAA Journal

MAY 23, 2023

the 2022 update to the Pennsylvania Breach of Personal Information Notification Act (BPINA) is now in effect. The update broadened the definition of personal information to include medical information, health insurance information, and usernames in combination with a password or security question/answer that allows an account to be accessed.

Health Insurance

Health Insurance HIPAA

Washington Attorney General Sues Plastic Surgery Provider for HIPAA Violations and Falsely Inflating Online Ratings

HIPAA Journal

JANUARY 6, 2023

Washington Attorney General Bob Ferguson is suing a plastic surgery provider for falsely inflating online ratings, bribing, and threatening patients, and alleges the actions of the practice violated the Health Insurance Portability and Accountability Act (HIPAA) Rules. The lawsuit was filed in the U.S.

HIPAA

HIPAA Health Insurance Compliance

OCR Settles Another HIPAA Right of Access Investigation Regarding Personal Representative

Hall Render

DECEMBER 22, 2022

On December 15, 2022, the Office for Civil Rights (“OCR”) at the U.S. Department of Health and Human Services (“HHS”) settled its investigation of a potential Health Insurance Portability and Accountability Act (“HIPAA”) violation by a primary care provider in Florida. Your primary Hall Render contact.

HIPAA

HIPAA Compliance Health Insurance

Fitzgibbon Hospital, Diskriter, Christiana Spine Center Suffer Ransomware Attacks

HIPAA Journal

JUNE 29, 2022

On June 25, 2022, a spokesperson for a threat group called DAIXIN Team contacted HIPAA Journal to share information about a ransomware attack and data theft incident at Fitzgibbon Hospital in Marshall, Missouri. DAIXIN Team was previously not known to HIPAA Journal and appears to be a new ransomware group.

Ransomware

Ransomware Hospitals HIPAA Health Insurance

PHI Exposed in Data Incidents at Anthem, WellMed Medical Management and CareOregon

HIPAA Journal

OCTOBER 7, 2022

Anthem has confirmed that the protected health information of certain plan members has been compromised in a data breach at its vendor, Choice Health. Choice Health was provided with the data of plan members to perform its contracted duties. CareOregon Reports August 2022 Mailing Error.

HIPAA

HIPAA Health Insurance Medicaid Medicaid

More Than 4 Million Individuals Affected by Cyberattack on Independent Living Systems

HIPAA Journal

MARCH 15, 2023

According to the breach notification, ILS identified suspicious activity within its computer systems on July 5, 2022. Assisted by third-party cybersecurity experts, ILS determined that unauthorized individuals accessed its network between June 30, 2022, and July 5, 2022, and acquired files containing sensitive data.

HIPAA

HIPAA Health Insurance Medicaid Medicaid

Privacy Breaches Reported by Blue Shield of California and VA Medical Center

HIPAA Journal

DECEMBER 23, 2022

A spreadsheet containing plan members’ names, phone numbers, email addresses, addresses, Social Security numbers, and/or Taxpayer ID numbers was emailed from the employee’s work account to a personal email address on June 17, 2022. HIPAA Journal has not been able to confirm how many individuals have been affected. The Louis A.

HIPAA

HIPAA Health Insurance

PHI of 521,000 Individuals Compromised in Security Breach at Morley Companies

HIPAA Journal

FEBRUARY 16, 2022

A comprehensive review was conducted of all files on its systems that could have been accessed by the attackers, and Morley Companies then started collecting contact information for those individuals to allow notification letters to be sent.

HIPAA

HIPAA Health Insurance

70,000 Valle del Sol Community Health Patients Affected by Cyberattack

HIPAA Journal

OCTOBER 17, 2022

Valle de Sol did not state in its notification letters when hackers gained access to its network, or for how long they had access, but did confirm that the unauthorized activity was detected on January 25, 2022. A comprehensive review was conducted of all files that may have been accessed, which was completed on July 18, 2022.

Health Insurance

Health Insurance Licensing Fraud HIPAA

Data Theft Incidents Reported at Choice Health, MCG Health, & Goodman Campbell Brain and Spine

HIPAA Journal

JUNE 15, 2022

The South Carolina-based health insurance company, Choice Health, now part of Alight Solutions, has recently announced that the protected health information of some of its members has been obtained by an unauthorized individual. MCG Health Announces Data Theft Incident.

Ransomware

Ransomware Health Insurance Fraud HIPAA

Round Up of Recent Hacking Incidents and Email Account Breaches

HIPAA Journal

JANUARY 13, 2023

The attack was detected on November 7, 2022, and steps were taken to contain the attack and secure its systems. Notification letters were mailed to affected individuals on January 6, 2022. Notifications were mailed to affected individuals on December 30, 2022. Quality Behavioral Health – Hacked Network Server.

Health Insurance

Health Insurance Licensing HIPAA Hospitals

Pre-Pandemic HIPAA Compliant Telehealth Regulations Are Coming Back

MedTrainer

AUGUST 15, 2022

HIPAA has placed many restrictions on telehealth services. Telehealth Compliance and HIPAA: What You Need to Know. First, let’s take a brief look at HIPAA as a refresher. The Health Insurance Portability and Accountability Act (HIPAA) exists to provide regulations and best practices for sharing sensitive healthcare data.

HIPAA

HIPAA Telemedicine COVID-19 Compliance

Website Tracking Technology Breach Affects 54,000 New York Presbyterian Hospital Patients

HIPAA Journal

MARCH 31, 2023

Atlantic Dialysis Management Services – Ransomware Attack Atlantic Dialysis Management Services in New York has recently reported a cyberattack to the HHS’ Office for Civil Rights that was discovered on June 9, 2022. According to the HIPAA business associate, no evidence of misuse of patient data was identified.

Hospitals

Hospitals Ransomware HIPAA Health Insurance

Did COVID Lead to a Lower HIPAA Fine?

Compliancy Group

AUGUST 19, 2022

On Friday afternoon, July 15, 2022, the Department of Health and Human Services Office for Civil Rights announced 11 enforcement actions against healthcare providers across the country for alleged violations of the HIPAA Privacy Rule right of access provisions. Let’s Simplify Compliance Avoid HIPAA violation fines.

HIPAA

HIPAA COVID-19 Compliance Health Insurance

Parker-Hannifin Cyberattack Affects Almost 120,000 Health Plan Members

HIPAA Journal

MAY 19, 2022

Suspicious activity was detected within its IT environment on March 14, 2022. The forensic investigation confirmed its systems were accessed by unauthorized individuals between March 11, 2022, and March 14, 2022. The breach has been reported to the HHS’ Office for Civil Rights as affecting 119,513 group health plan members.

COVID-19

COVID-19 Health Insurance HIPAA Licensing

Humana Members Impacted by Choice Health Data Breach

HIPAA Journal

SEPTEMBER 29, 2022

Humana has recently announced that the protected health information of 22,767 individuals has potentially been compromised in a security incident and data breach at one of its business associates – Choice Health – which Human used to sell Medicare products on its behalf.

Health Insurance

Health Insurance Medicare Medicare Fraud

Healthcare Organizations Report Email Compromises, Hacking Incidents and Other ePHI Exposures

HIPAA Journal

MARCH 4, 2022

Crossroads Health in Ohio has experienced a cyberattack that disrupted some of its IT systems. The security incident was detected on January 18, 2022, with the subsequent investigation confirming unauthorized individuals had access to its systems between November 18, 2021, and January 18, 2022.

Health Insurance

Health Insurance Licensing HIPAA

Independent Living Systems Sued Over 4 Million-Record Data Breach

HIPAA Journal

MARCH 21, 2023

ILS Identified the breach in July 2022 and determined unauthorized individuals had access to its network between June 30, 2022, and July 5, 2022. The post Independent Living Systems Sued Over 4 Million-Record Data Breach appeared first on HIPAA Journal. The lawsuit was filed by Joseph G.

Fraud

Fraud Health Insurance Medicaid Medicaid

Unsecured Database Exposed 16,000+ Children’s Records

HIPAA Journal

NOVEMBER 29, 2022

South Walton Fire District in Florida has recently announced that it was the victim of a ransomware attack in late May 2022. The investigation and subsequent verification of contact information for affected individuals were completed in October 2022. South Walton Fire District Ransomware Attack Affects Up to 25,331 Individuals.

Ransomware

Ransomware HIPAA Health Insurance

877,500 Individuals Affected by Ransomware Attack on Prosthetics & Orthotics Provider

HIPAA Journal

NOVEMBER 23, 2022

The attack occurred between January 26 and January 28, 2022, and while the attack was detected by the firm’s endpoint security solution shortly after the ransomware was executed, it was not possible to prevent the encryption of certain files on its network.

Ransomware

Ransomware Fraud Licensing HIPAA

Physicians Business Office Reports Data Breach Affecting 196,573 Individuals

HIPAA Journal

SEPTEMBER 30, 2022

Physicians Business Office (PBO), a Parkersburg, WV-based provider of medical practice management and administrative services, has recently disclosed a security incident that occurred in April 2022. That process was completed on September 16, 2022, and notification letters were sent shortly thereafter.

Licensing

Licensing HIPAA Health Insurance

Ransomware Attack on New York Billing Company Affects 942K Individuals

HIPAA Journal

AUGUST 17, 2022

According to the breach notification sent to the California Attorney General, Practice Resources was the victim of a ransomware attack on April 12, 2022. Brownsville, TX-based Valley Baptist Medical Center has recently started notifying certain patients that some of their protected health information has been exposed and potentially stolen.

Ransomware

Ransomware HIPAA Hospitals Health Insurance

Phishing Attack on Washington Therapist Exposes Patients’ PHI

HIPAA Journal

JANUARY 19, 2023

RSM was contacted by a person who claimed to be an Iolo employee who said he was aware that RSM’s computer had been hacked and requested access to clean the computer of viruses and malware. Notifications were sent to affected individuals on December 29, 2022.

HIPAA

HIPAA Health Insurance

Up to 170,450 Patients Affected by Cyberattack on the Chattanooga Heart Institute

HIPAA Journal

AUGUST 2, 2023

The administrative service provider said suspicious activity was detected within its network in early December 2022, and the forensic investigation confirmed on December 15, 2022, that an unauthorized third party accessed parts of its computer network where personal health information was stored.

Licensing

Licensing Electronic Medical Records Ransomware Health Insurance

326,278 Aetna ACE Members Affected by Ransomware Attack at Mailing Vendor

HIPAA Journal

AUGUST 3, 2022

The health insurer Aetna ACE is one of the latest healthcare organizations to announce it has been affected by a ransomware attack on a mailing vendor, which involved the protected health information of 326,278 plan members. The ransomware attack affected OneTouchPoint, which provides printing and mailing services for U.S.

Ransomware

Ransomware HIPAA Health Insurance

Data Breaches Reported by University Urology and McPherson Hospital

HIPAA Journal

MAY 10, 2023

Contact information was then verified, and notification letters were sent on May 1, 2023. McPherson Hospital – Ransomware Attack McPherson Hospital in Kansas has recently issued notification letters to 19,020 patients to alert them about a July 2022 ransomware attack. The unauthorized access was traced to a former employee.

Hospitals

Hospitals Ransomware Health Insurance Fraud

Lubbock Heart & Surgical Hospital and NorthStar Healthcare Consulting Disclose Cyberattacks

HIPAA Journal

SEPTEMBER 22, 2022

The cyberattack was detected by the hospital on July 12, 2022, and immediate action was taken to contain the incident and prevent further unauthorized access, and forensics experts were engaged to determine the nature and scope of the attack. Notification letters were sent to the 23,379 affected individuals on September 9, 2022.

Hospitals

Hospitals HIPAA Health Insurance Medicaid

Logan Health Facing Class Action Lawsuit Over Data Breach

HIPAA Journal

MARCH 11, 2022

The data breach in question was reported by Logan Health in February 2022, with its investigation confirming unauthorized individuals had access to its system between November 18, 2021, and November 22, 2021. The post Logan Health Facing Class Action Lawsuit Over Data Breach appeared first on HIPAA Journal.

HIPAA

HIPAA Health Insurance Medical Billing Fraud

Data Breaches Reported by The Hutchinson Clinic & 90 Degree Benefits

HIPAA Journal

FEBRUARY 27, 2023

The Hutchinson Clinic Reports December 2022 Hacking Incident The Hutchinson, KS-based healthcare provider, The Hutchinson Clinic, has recently announced that hackers accessed its network between December 19, 2022, and December 22, 2022, and during that time, files containing patient data may have been accessed and stolen.

Licensing

Licensing HIPAA Health Insurance

Data Breaches Reported by University Pediatric Dentistry, OrthoNebraska, Michigan Avenue Immediate Care

HIPAA Journal

JULY 5, 2022

The email system was immediately secured when the breach was detected with the forensic investigation confirming that two email accounts had been accessed by an unauthorized third party between January 12, 2022, and January 19, 2022. A limited number of patients also had financial account information exposed.

Licensing

Licensing Electronic Medical Records Health Insurance Hospitals

Healthcare Data Potentially Compromised in 5 Hacking Incidents

HIPAA Journal

MAY 2, 2023

NYSARC Columbia County Chapter Notifies Individuals About July 2022 Ransomware Attack NYSARC Columbia County Chapter (COARC) has started notifying certain individuals that some of their protected health information has potentially been obtained by unauthorized individuals in a July 2022 ransomware attack.

Ransomware

Ransomware Licensing Health Insurance HIPAA

Webinar: Aug 17, 2022: Do I Need to be HIPAA Compliant?

Webinar: May 19, 2022: 6 Secret Ingredients to HIPAA Compliance

Trending Sources

Webinar: Sept 21, 2022: How to Complete Your 2022 Risk Assessment

Editorial: Lessons from Biggest HIPAA Breaches of 2022

Webinar: July 20, 2022: Compliance vs. Security: Why you Need Both to be HIPAA Compliant

3 Reasons Insurance Agents Need to Follow HIPAA

One Brooklyn Health Notifies Patients About November 2022 Cyberattack

ICYMI: HIPAA and Social Media IRL

What are the Penalties for HIPAA Violations?

State of HIPAA – May 2023 Report

6 HIPAA Regulated Entities Report Phishing Attacks and Unauthorized Email Account Access

Editorial: The Three Pillars of HIPAA Compliance

Ransomware Attack at Fitzgibbon Hospital Affects 112,000 Patients

Updated Pennsylvania Breach of Personal Information Notification Act Now in Effect

Washington Attorney General Sues Plastic Surgery Provider for HIPAA Violations and Falsely Inflating Online Ratings

OCR Settles Another HIPAA Right of Access Investigation Regarding Personal Representative

Fitzgibbon Hospital, Diskriter, Christiana Spine Center Suffer Ransomware Attacks

PHI Exposed in Data Incidents at Anthem, WellMed Medical Management and CareOregon

More Than 4 Million Individuals Affected by Cyberattack on Independent Living Systems

Privacy Breaches Reported by Blue Shield of California and VA Medical Center

PHI of 521,000 Individuals Compromised in Security Breach at Morley Companies

70,000 Valle del Sol Community Health Patients Affected by Cyberattack

Data Theft Incidents Reported at Choice Health, MCG Health, & Goodman Campbell Brain and Spine

Round Up of Recent Hacking Incidents and Email Account Breaches

Pre-Pandemic HIPAA Compliant Telehealth Regulations Are Coming Back

Website Tracking Technology Breach Affects 54,000 New York Presbyterian Hospital Patients

Did COVID Lead to a Lower HIPAA Fine?

Parker-Hannifin Cyberattack Affects Almost 120,000 Health Plan Members

Humana Members Impacted by Choice Health Data Breach

Healthcare Organizations Report Email Compromises, Hacking Incidents and Other ePHI Exposures

Independent Living Systems Sued Over 4 Million-Record Data Breach

Unsecured Database Exposed 16,000+ Children’s Records

877,500 Individuals Affected by Ransomware Attack on Prosthetics & Orthotics Provider

Physicians Business Office Reports Data Breach Affecting 196,573 Individuals

Ransomware Attack on New York Billing Company Affects 942K Individuals

Phishing Attack on Washington Therapist Exposes Patients’ PHI

Up to 170,450 Patients Affected by Cyberattack on the Chattanooga Heart Institute

326,278 Aetna ACE Members Affected by Ransomware Attack at Mailing Vendor

Data Breaches Reported by University Urology and McPherson Hospital

Lubbock Heart & Surgical Hospital and NorthStar Healthcare Consulting Disclose Cyberattacks

Logan Health Facing Class Action Lawsuit Over Data Breach

Data Breaches Reported by The Hutchinson Clinic & 90 Degree Benefits

Data Breaches Reported by University Pediatric Dentistry, OrthoNebraska, Michigan Avenue Immediate Care

Healthcare Data Potentially Compromised in 5 Hacking Incidents

Stay Connected