Download, Health Insurance, HIPAA and Licensing

PHI Exposed in Data Incidents at Anthem, WellMed Medical Management and CareOregon

HIPAA Journal

OCTOBER 7, 2022

On August 5, 2022, Anthem discovered that an unauthorized individual had gained access to a database and downloaded files containing plan members’ protected health information, including names, addresses, dates of birth, phone numbers, email addresses, Medicare ID numbers, and Medicaid ID numbers.

HIPAA

HIPAA Health Insurance Medicaid Medicaid

Cyberattacks Reported by Bienville Orthopaedic Specialists and Just Kids Dental

HIPAA Journal

SEPTEMBER 8, 2023

For patients, the affected information included name, address, email, phone number(s), birth date, Social Security number, driver’s license number, health insurance policy information, treatment information including radiographic images, medical record number, account number, and health conditions.

Licensing

Licensing Ransomware Health Insurance HIPAA

November 8, 2023, Healthcare Data Breach Round-Up

HIPAA Journal

NOVEMBER 8, 2023

Third-party forensics experts were engaged to investigate the breach and determined that its systems were compromised between September 1, 2023, and September 5, 2023, and during that time, files were exfiltrated that contained personal and protected health information.

Ransomware

Ransomware Licensing Health Insurance HIPAA

Cyberattacks Reported by Schneck Medical Center, NuLife Med, & FPS Medical Center

HIPAA Journal

MAY 17, 2022

The review of the files revealed they mostly contained protected health information such as names, addresses, medical information, and/or health insurance information. Notification letters have now been sent to the 28,024 patients whose protected health information has potentially been compromised.

Health Insurance

Health Insurance Licensing Ransomware HIPAA

Everything You Need To Know About NPI Numbers

Verisys

NOVEMBER 8, 2023

CMS.gov The Administrative Simplification provisions of the Health Insurance Portability and Accountability Act of 1996 (HIPAA) required the creation of a standard, unique health identifier for healthcare providers, which the NPI satisfies. Why Are NPI Numbers Necessary? Complete instructions are found on the CMS website.

Fraud

Fraud HIPAA Medicare Medicare

700,000 Highly Sensitive School Records Exposed Online

HIPAA Journal

JULY 31, 2023

The vulnerability was immediately addressed; however, the forensic investigation revealed hackers had exploited the vulnerability on May 28, 2023, and downloaded files from the system. The post 700,000 Highly Sensitive School Records Exposed Online appeared first on HIPAA Journal.

Health Insurance

Health Insurance Hospitals HIPAA Licensing

6 Healthcare Providers and Business Associates Report Hacks and Ransomware Attacks

HIPAA Journal

MARCH 10, 2022

The files exfiltrated from its systems included the protected health information of patients. Individuals whose Social Security number, driver’s license, state identification number, or financial account information may have been involved have been offered complimentary credit monitoring services.

Ransomware

Ransomware Licensing Health Insurance Hospitals

Email Account Breaches Reported by Newman Regional Health and Contra Costa County

HIPAA Journal

APRIL 18, 2022

The types of information exposed included names, Social Security numbers, driver’s license numbers, state-issued I.D. numbers, financial account numbers, passport numbers, medical information, and/or health insurance information.

Licensing

Licensing HIPAA Health Insurance Hospitals

GNC Offers “Free Healthcare” — Telehealth, Generic Meds, and Loyalty in the Retail Health Ecosystem

Health Populi

JULY 24, 2023

Based on GNC’s website FAQ fine print, telehealth consultations are conducted with licensed physicians board-certified in the U.S. Health Populi’s Hot Points: That’s a lot of “free” for $39.99 in any one’s definition of value-based health care — most especially, a consumer’s.

Health Insurance

Health Insurance Medical Billing Licensing HIPAA

Patient Data Compromised in 5 Hacking Incidents, Ransomware Attacks, and Break-ins

HIPAA Journal

NOVEMBER 17, 2022

New York-Presbyterian Hospital has recently announced that unauthorized individuals gained access to one of its servers and attempted to download sensitive data. The security system detected the intrusion on September 8, 2022, and successfully blocked the attempted download. The electronic record system was unaffected.

Ransomware

Ransomware Health Insurance Hospitals Fraud

Spokane Regional Health District Announces Second Phishing Attack in 3 Months

HIPAA Journal

APRIL 1, 2022

Last week, SRHD confirmed that the email account contained the protected health information of 1,260 individuals. That information may have been ‘previewed’ by an unauthorized individual, although no evidence was found to suggest information had been accessed or downloaded.

Fraud

Fraud HIPAA Licensing Health Insurance

JDC Healthcare Management Data Breach Affects More than 1 Million Texans

HIPAA Journal

MARCH 21, 2022

As previously reported on this site, JDC Healthcare Management detected malware within its IT network on or around August 9, 2021, with the forensic investigation into the security breach confirming the malware was downloaded onto its systems on July 27, 2021. Further information on the data breach has now been obtained.

Ransomware

Ransomware Licensing HIPAA Health Insurance

Four Healthcare Providers Hit with Ransomware Attacks

HIPAA Journal

MARCH 1, 2022

Around 4 GB of data was uploaded to the leak site and the files contained a selection of data including scanned driver’s licenses, patient records, insurance billing information, and other PHI. La Posada said “a software virus” was downloaded onto its systems that prevented staff from accessing files and email.

Ransomware

Ransomware Licensing HIPAA Health Insurance

COVID-19 Vaccination Statuses of 500,000 VA Employees have been Impermissibly Disclosed

HIPAA Journal

DECEMBER 7, 2022

In some cases, Social Security numbers, driver’s license numbers, or financial account information, were also exposed. Salud Family Health said impacted employees and patients have been offered free credit monitoring and identity fraud protection services.

COVID-19 Vaccine

COVID-19 Vaccine COVID-19 Department of Veterans Affairs Licensing

At Least 32 Providers Affected by Ciox Vendor Email Breach

Compliancy Group

JANUARY 6, 2022

Sensitive files containing PHI including patient names, provider names, dates of birth, and/or dates of service may have been downloaded from emails and attachments by the threat actor. Breach notification is required as part of complete HIPAA compliance. They have also been working with providers to notify affected individuals.

HIPAA

HIPAA Electronic Medical Records Compliance Hospitals

Peachtree Orthopedics Suffers Data Theft and Extortion Incident

HIPAA Journal

JUNE 8, 2023

The forensic investigation confirmed its systems had been accessed by an unauthorized individual between December 5, 2022, and December 21, 2022, and files had been downloaded. The post Peachtree Orthopedics Suffers Data Theft and Extortion Incident appeared first on HIPAA Journal.

Ransomware

Ransomware Hospitals Medical Billing HIPAA

What is Required for Home Health Aide Training?

MedTrainer

FEBRUARY 27, 2024

The Bureau of Labor Statistics defines a home health aide as a professional who “monitors the condition of people with disabilities or chronic illnesses and helps them with daily living activities.” Home health aides should review requirements for their specific state to remain in compliance.

Compliance

Compliance HIPAA Fraud Licensing

Who Is Responsible For Compliance In Healthcare?

MedTrainer

MARCH 28, 2024

Licensing and credentialing were introduced to regulate healthcare professionals and ensure minimum standards of care. Clinical & Administrative Departments Adheres to regulations and guidelines within their specific licensing boards and department policies and procedures. Automated escalation speeds up resolution.

Compliance

Compliance Compliance Officers Licensing Regulatory Compliance

Up to 184,000 Clients of Lutheran Social Services of Illinois Impacted by Ransomware Attack

HIPAA Journal

JANUARY 27, 2023

The data potentially accessed included names, birth dates, Social Security numbers, financial information, driver’s license numbers, biometric information, diagnosis and treatment information, and health insurance information. This coincides with the 60-day reporting deadline of the HIPAA Breach Notification Rule.

Ransomware

Ransomware HIPAA Fraud Hospitals

Email Account Breaches Reported by Allaire Healthcare Group and Platinum Hospitalists

HIPAA Journal

JUNE 9, 2022

The forensic investigation found no evidence to suggest any of that information was viewed or downloaded, and no reports have been received of any instances of actual or attempted misuse of the data. The post Email Account Breaches Reported by Allaire Healthcare Group and Platinum Hospitalists appeared first on HIPAA Journal.

Licensing

Licensing HIPAA Health Insurance Hospitals

Everything You Need To Know About NPI Numbers

Verisys

FEBRUARY 1, 2022

An NPI number is shared with other providers, employers, health plans, and payers for billing purposes. CMS.gov’s Administrative Simplification provisions of the Health Insurance Portability and Accountability Act of 1996 ( HIPAA ) mandated the adoption of a standard, unique health identifier for each healthcare provider.

Fraud

Fraud Medicare Medicare HIPAA

The Most Common HIPAA Violations You Should Avoid

HIPAA Journal

JANUARY 2, 2023

The settlements pursued by the Department of Health and Human Services’ Office for Civil Rights (OCR) are for egregious violations of HIPAA Rules. Settlements are also pursued to highlight common HIPAA violations to raise awareness of the need to comply with specific aspects of HIPAA Rules.

HIPAA

HIPAA Compliance Hospitals Medicare

How to Become HIPAA Compliant

HIPAA Journal

APRIL 15, 2023

How to become HIPAA compliant is one of the biggest challenges for many businesses operating in the healthcare and health insurance industries. What is HIPAA Compliance? What is HIPAA Compliance? Not every business operating in the healthcare and health insurance industries is required to become HIPAA compliant.

HIPAA

HIPAA Compliance Due Diligence Health Insurance

Health Care Compliance Brief

PHI Exposed in Data Incidents at Anthem, WellMed Medical Management and CareOregon

Cyberattacks Reported by Bienville Orthopaedic Specialists and Just Kids Dental

Trending Sources

November 8, 2023, Healthcare Data Breach Round-Up

Cyberattacks Reported by Schneck Medical Center, NuLife Med, & FPS Medical Center

Everything You Need To Know About NPI Numbers

700,000 Highly Sensitive School Records Exposed Online

6 Healthcare Providers and Business Associates Report Hacks and Ransomware Attacks

Email Account Breaches Reported by Newman Regional Health and Contra Costa County

GNC Offers “Free Healthcare” — Telehealth, Generic Meds, and Loyalty in the Retail Health Ecosystem

Patient Data Compromised in 5 Hacking Incidents, Ransomware Attacks, and Break-ins

Spokane Regional Health District Announces Second Phishing Attack in 3 Months

JDC Healthcare Management Data Breach Affects More than 1 Million Texans

Four Healthcare Providers Hit with Ransomware Attacks

COVID-19 Vaccination Statuses of 500,000 VA Employees have been Impermissibly Disclosed

At Least 32 Providers Affected by Ciox Vendor Email Breach

Peachtree Orthopedics Suffers Data Theft and Extortion Incident

What is Required for Home Health Aide Training?

Who Is Responsible For Compliance In Healthcare?

Up to 184,000 Clients of Lutheran Social Services of Illinois Impacted by Ransomware Attack

Email Account Breaches Reported by Allaire Healthcare Group and Platinum Hospitalists

Everything You Need To Know About NPI Numbers

The Most Common HIPAA Violations You Should Avoid

How to Become HIPAA Compliant

Stay Connected