article thumbnail

DOJ Settles Civil Cyber Fraud Initiative Case with CHS and Imposes a $930,000 Penalty

HIPAA Journal

This is the first settlement to be reached under the DOJ Civil Cyber Fraud Initiative, which was launched in 2021. CHS staff scanned medical records for the EMR system but saved scanned copies of some of the records on an internal network drive, which could be accessed by non-clinical staff, including Iraqi nationals employed at the site. “We

Fraud 106
article thumbnail

First Choice Community Healthcare and Arlington Skin Notify Patients About Cyberattacks

HIPAA Journal

Arlington Skin Notifies 17,468 Patients About Electronic Medical Record Data Breach. VPN Solutions managed the electronic medical records of patients of Arlington Skin via the Allscripts practice management solution and electronic medical records platform. Dr. Michelle A.

Insiders

Sign Up for our Newsletter

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

article thumbnail

LifeBridge Health Agrees to $9.5 Million Settlement to Resolve 2016 Data Breach Claims

HIPAA Journal

In March 2018, LifeBridge Health discovered a malware infection that provided unauthorized individuals with access to a server that hosted its electronic medical records, patient registration, and billing systems. The breach investigation determined the initial intrusion occurred 18 months previously in September 2016.

article thumbnail

2 DOJ Cyber Fraud Initiative Cases Net Almost $10 Million

Compliancy Group

Department of Justice’s (DOJ) Civil Cyber Fraud Initiative (CCFI). Details of DOJ Cyber Fraud Initiative Settlements. Close CHS had previously submitted contract claims to the State Department for the cost of a secure electronic medical record (EMR) system to store all patients’ medical records.

Fraud 52
article thumbnail

SuperCare Health Sued Over 318,000-Record Data Breach

HIPAA Journal

The plaintiff said she was notified that unauthorized individuals accessed her information, which included her electronic medical records, but was not offered adequate credit monitoring and identity theft protection services or appropriate compensation for the harm caused.

article thumbnail

CommonSpirit Health Facing Class Action Lawsuit over Ransomware Attack and Data Breach

HIPAA Journal

The attack forced the shutdown of its electronic medical record system and caused considerable disruption over several weeks, with the catholic health system having to cancel many appointments. Lawsuits often fail when they are based solely on an elevated risk of identity theft and fraud.

article thumbnail

Red Flag Rules in Healthcare: What Compliance Officers Need to Know

Compliancy Group

Maintaining healthcare compliance includes being vigilant for warning signs of potential waste, abuse, and fraud due to identity theft. Healthcare red flag rules help your organization protect your patients, staff, and financial security from potential medical identity theft.