HIPAA Journal

JANUARY 5, 2023

Back in June 2022 , HIPAA Journal reported on a cyberattack on Fitzgibbon Hospital in Marshall, MO, after being contacted directly by a spokesperson for a threat group called DAIXIN Team, who claimed responsibility for the attack. Howard Memorial Hospital Announces December 2022 Cyberattack.

Ransomware 111

Ransomware Hospitals HIPAA Licensing 111

HIPAA Journal

APRIL 28, 2022

Irvine, CA-based Smile Brands, a provider of support services for dental offices, has recently provided an update on the number of individuals affected by a ransomware attack that was discovered on April 24, 2021. The post Up to 2,592,494 individuals Affected by Smile Brands Ransomware Attack appeared first on HIPAA Journal.

Ransomware 106

Ransomware Health Insurance HIPAA Licensing 106

HIPAA Journal

MARCH 10, 2023

According to the notifications, unauthorized individuals gained access to its network and used ransomware to encrypt files. MFHS said the sophisticated ransomware attack was discovered in April 2022. The post Maternal & Family Health Services Sued Over Ransomware Attack and Data Breach appeared first on HIPAA Journal.

Ransomware 82

Ransomware HIPAA Licensing Health Insurance 82

HIPAA Journal

NOVEMBER 28, 2022

(HHS) has recently announced that it was the victim of a ransomware attack. The attack was detected on June 20, 2022, and third-party forensics experts were engaged to investigate the incident and determine the scope of the attack. Notifications were sent to affected individuals on November 21, 2022.

Ransomware 103

Ransomware Electronic Medical Records HIPAA Licensing 103

HIPAA Journal

MAY 26, 2023

That appears to be the case with two recent cyberattacks, neither of which mention ransomware or confirm that data theft occurred. Since it appears from the claims of the ransomware groups that data has been stolen, affected individuals should ensure they take advantage of those complimentary services. provide more information.

Ransomware 59

Ransomware Health Insurance HIPAA Licensing 59

HIPAA Journal

NOVEMBER 17, 2022

Salud Family Health Provides Update on September 2022 Ransomware Attack. Colorado-based Salud Family Health, a Federal Qualified Health Center (FQHC), has recently provided an update on a September 2022 cyberattack and has confirmed that patient data was potentially stolen.

Ransomware 79

Ransomware Health Insurance Hospitals Fraud 79

HIPAA Journal

SEPTEMBER 14, 2022

Medical Associates of the Lehigh Valley in Pennsylvania (MATLV) has announced that it recently fell victim to a sophisticated ransomware attack on its network. The attack was detected on July 3, 2022, and immediate action was taken to contain the attack and prevent further unauthorized access to its network.

Ransomware 83

Ransomware Licensing HIPAA Health Insurance 83

HIPAA Journal

DECEMBER 23, 2022

It has been another bad year for healthcare data breaches, with some of the biggest HIPAA breaches of 2022 resulting in the impermissible disclosure of well over a million records. In addition to the high number of data breaches, 2022 stands out for the sheer number of healthcare records breached, which currently stands at 49.8

HIPAA 79

HIPAA Ransomware Health Insurance Compliance 79

HIT Consultant

DECEMBER 21, 2022

The key challenges faced by the industry include Data Breaches, Ransomware, Extensive use of Mobile Applications without proper ways to perform Authentication and Authorization and Lack of Healthcare Data Interoperability. Recent Data Breaches: – November 2022: Ransomware Hacker Steals Medibank Data on 9.7m Ransomware.

Ransomware 52

Ransomware HIPAA Health Insurance Governance 52

HIPAA Journal

DECEMBER 29, 2022

The Louisiana healthcare system said suspicious activity was detected by its security team on October 21, 2022, and steps were taken to contain the activity and investigate a potential breach. Southwest Louisiana Health Care System did not disclose the exact nature of the cyberattack, but the Hive ransomware gang claimed responsibility.

Ransomware 93

Ransomware Health Insurance Licensing Medical Billing 93

HIPAA Journal

MARCH 29, 2023

Atlantic General Hospital – Ransomware Attack Atlantic General Hospital (AGH) in Berlin, MD, has recently reported a ransomware attack to the Maine Attorney General that has affected up to 30,704 individuals. OU Health – Stolen Laptop Computer OU Medicine Inc. On December 26, 2022, an employee’s laptop computer was stolen.

Hospitals 96

Hospitals Ransomware Licensing Health Insurance 96

HIPAA Journal

AUGUST 2, 2023

The administrative service provider said suspicious activity was detected within its network in early December 2022, and the forensic investigation confirmed on December 15, 2022, that an unauthorized third party accessed parts of its computer network where personal health information was stored.

Licensing 71

Licensing Electronic Medical Records Ransomware Health Insurance 71

HIPAA Journal

SEPTEMBER 12, 2023

Seymour, IN-based Schneck Medical Center has settled a lawsuit with the Indiana attorney general, Todd Rokita, over a 2021 ransomware attack and data breach that affected 89,707 Indiana residents. Schneck Medical Center Compensates Patients for Losses Schneck Medical Center has also recently settled a consolidated class action lawsuit for $1.3

HIPAA 85

HIPAA Ransomware Health Insurance Fraud 85

HIPAA Journal

JUNE 8, 2023

Names, addresses, Social Security numbers, and health insurance were impermissibly disclosed. Telligen subcontracted part of that work to Independent Living Systems (ILS), where the data breach occurred in June and July 2022. The protected health information of approximately 20,800 Medicaid members was compromised in the attack.

Medicaid 80

Medicaid Medicaid Ransomware Health Insurance 80

HIPAA Journal

MAY 17, 2022

The Manchester, NH-based medical equipment company, NuLife Med LLC, has recently announced it was the victim of a cyberattack in March 2022. Suspicious network activity was detected on or around March 11, 2022, and steps were immediately taken to prevent further unauthorized network access.

Health Insurance 94

Health Insurance Licensing Ransomware HIPAA 94

HIPAA Journal

OCTOBER 4, 2022

The Neurology Center of Nevada (NCNV), in Henderson, NV, has confirmed a data security event was detected on July 17, 2022, which rendered certain computer systems inaccessible. Northern California Fertility Medical Center Notifies Patients About Attempted Ransomware Attack.

Ransomware 93

Ransomware Health Insurance HIPAA Licensing 93

HIPAA Journal

MAY 24, 2022

In March 2022, Partnership HealthPlan of California (PHC) announced that third-party forensic specialists had been engaged to help restore the functionality of its IT systems following a cyberattack. According to the notification, the cyberattack was detected on or around March 19, 2022.

Ransomware 131

Ransomware Licensing HIPAA Health Insurance 131

HIPAA Journal

APRIL 13, 2022

The Philadelphia, PA-based national human services nonprofit organization, Resources for Human Development (RHD), has recently confirmed that a hard drive containing the protected health information of 46,673 individuals has been stolen. The theft occurred on or around January 27, 2022, and was discovered by RHD on February 16, 2022.

Ransomware 111

Ransomware Licensing HIPAA Health Insurance 111

HIPAA Journal

OCTOBER 7, 2022

The email account breach was detected on July 8, 2022, and the account was immediately secured. The files related to invoices sent to CSI Health Care provider customers which were most likely obtained to support the BEC scam. Trillium Health Email Account Breach Exposes PHI of 3,200 Patients.

Ransomware 96

Ransomware Health Insurance HIPAA Licensing 96

HIPAA Journal

MARCH 25, 2022

Notification letters were sent to affected individuals on February 22, 2022. AHA discovered the email breach in early September 2021 and determined on December 2, 2021, that files containing the protected health information of its healthcare provider clients had been accessed. AHA provided notice about the attack on January 6, 2021.

Health Insurance 104

Health Insurance Licensing Ransomware Fraud 104

HIPAA Journal

JUNE 24, 2022

A phishing incident has been reported by Charlotte, NC-based Atrium Health that exposed the protected health information of 6,695 patients who used its home health service, Atrium Health at Home. On April 7, 2022, an employee responded to a phishing email and disclosed credentials for an email and messaging account.

Ransomware 114

Ransomware Licensing HIPAA Health Insurance 114

HIPAA Journal

MARCH 21, 2022

On March 17, 2022, Dallas, TX-based JDC Healthcare Management, which runs more than 70 Jefferson Dental & Orthodontics practices throughout the state of Texas, reported a security breach to the Office of the Attorney General of Texas that has affected more than 1 million Texans. Wheeling Health Right Inc. Suffers Ransomware Attack.

Ransomware 96

Ransomware Licensing HIPAA Health Insurance 96

HIPAA Journal

APRIL 14, 2023

The Iowa Department of Health and Human Services (DHHS) has confirmed that the personal information of 20,800 Iowans who receive Medicaid was exposed in a cyberattack at a subcontractor of one of its business associates between June 30, 2022, and July 5, 2022. Ransomware was not used in the attack, but files were stolen.

Medicaid 91

Medicaid Medicaid Ransomware HIPAA 91

HIPAA Journal

AUGUST 23, 2022

The compromised system contained medical information on all individuals who had been tested for COVID-19 between June 2020 and January 2022, including staff members, visitors, and other individuals, although not inmates. Some of the exposed data included Social Security Numbers, driver’s license numbers, and trust account information.

COVID-19 85

COVID-19 Ransomware Licensing HIPAA 85

HIPAA Journal

JUNE 8, 2023

The breach was detected on December 21, 2022, when suspicious activity was identified within its network. The forensic investigation confirmed its systems had been accessed by an unauthorized individual between December 5, 2022, and December 21, 2022, and files had been downloaded. It is unclear if the two incidents are linked.

Ransomware 78

Ransomware Hospitals Medical Billing HIPAA 78

HIPAA Journal

MAY 16, 2022

Refuah Health Center in New York has recently started notifying 260,740 patients about a security breach that occurred almost a year ago. According to the April 29, 2022, notification on the healthcare provider’s website, “We recently discovered unauthorized access to our network occurred between May 31, 2021, and June 1, 2021.”

Health Insurance 103

Health Insurance Ransomware HIPAA Licensing 103

HIPAA Journal

AUGUST 8, 2022

Carmel, IN-based Goodman Campbell Brain and Spine has started notifying 363,000 current and former patients that some of their protected health information was stolen prior to data being encrypted with ransomware and some of the stolen data has been published on the gang’s dark web data leak site.

Ransomware 89

Ransomware Electronic Medical Records HIPAA Licensing 89

HIPAA Journal

DECEMBER 2, 2022

San Juan Regional Medical Center stated at the time that this was a malware, rather than a ransomware attack. Those losses include reimbursement of out-of-pocket expenses, compensation for fees for credit reports, credit monitoring, or other identity-theft insurance products purchased after October 13, 2022, compensation at $17.50

Licensing 85

Licensing HIPAA Ransomware Health Insurance 85

HIPAA Journal

JUNE 8, 2023

Mercy Medical Center did not state whether ransomware was involved but said data had to be restored from backups and some data has likely been lost. PVOC discovered on March 3, 2022, that malware had been installed on the servers of the vendors between November 13, 2021, and November 15, 2021.

Ransomware 93

Ransomware HIPAA Licensing Health Insurance 93

HIPAA Journal

APRIL 25, 2023

Santa Clara Family Health Plan Confirmed as Victim of Clop GoAnywhere Hack Santa Clara Family Health Plan has confirmed the 276,993-record data breach reported to the HHS’ Office for Civil Rights on March 30, 2023, was due to the hacking of Fortra’s GoAnywhere MFT solution by the Clop ransomware group.

Health Insurance 81

Health Insurance Public Health Ransomware Fraud 81

HIPAA Journal

MARCH 9, 2022

The investigation confirmed that an unauthorized individual gained access to a server that housed patient information such as names, contact information, birth dates, Social Security numbers, driver’s license numbers, limited health information, and/or health insurance policy numbers.

Electronic Medical Records 113

Electronic Medical Records Health Insurance Ransomware HIPAA 113

HIPAA Journal

SEPTEMBER 28, 2022

Wolfe Clinic said names, addresses, birth dates, Social Security numbers, diagnostic information, and health insurance information were potentially compromised. Reiter Affiliated Companies Reports June 2022 Cyberattack. The attack was detected on July 4, 2022, when certain systems were made unavailable. million patients.

Electronic Medical Records 73

Electronic Medical Records Ransomware Fraud HIPAA 73

HIPAA Journal

JULY 27, 2023

Norton Healthcare has only disclosed limited information about the attack; however, the BlackCat ransomware group announced that it was behind the cyberattack and leaked some of the data stolen from Norton Healthcare on its data leak site. On July 21, 2023, a class action lawsuit was filed in U.S.

Ransomware 52

Ransomware Fraud Licensing Health Insurance 52

HIPAA Journal

DECEMBER 12, 2022

Receivables Performance Management (RPM) in Lynnwood, WA, a business associate of several HIPAA-covered entities, has recently started notifying individuals affected by a 2021 ransomware attack. A security incident was detected on November 10, 2022, and prompt action was taken to isolate and shut down its systems.

HIPAA 107

HIPAA Hospitals Ransomware Licensing 107

HIPAA Journal

MARCH 16, 2023

Florida Medical Clinic, NorthStar Emergency Medical Services, Denver Public Schools, Wichita Urology Group, and The Bone & Joint Clinic have recently reported hacking incidents and the exposure and potential theft of protected health information. The breach notice did not state when the attackers first gained access to its network.

Electronic Medical Records 62

Electronic Medical Records Health Insurance Ransomware HIPAA 62

HIPAA Journal

NOVEMBER 7, 2022

Luke’s Health was notified about the breach on September 1, 2022. Luke’s Health is currently recovering from a ransomware attack on its parent company, CommonSpirit Health, that occurred more than a month ago. The unauthorized system access occurred on or around August 16, 2022.

Electronic Medical Records 75

Electronic Medical Records Ransomware HIPAA Licensing 75

Hall Render

SEPTEMBER 16, 2022

Census: 7% of people in Illinois lack health insurance. Health care industry in Nebraska ‘thankful’ after licensing backlog averted. Getting rural Nebraskans mental health care remains a challenge. New Hampshire could put up $15 million to spur development of new mental health hospital. NEW JERSEY.

US Department of Health and Human Services 40

US Department of Health and Human Services COVID-19 Nurses Nursing Homes 40