HIPAA Journal

APRIL 5, 2023

Montgomery General Hospital in West Virginia has suffered a cyberattack that saw unauthorized individuals gain access to its IT systems on or around February 28, 2023, and deploy ransomware on or around March 1, 2023. The post Montgomery General Hospital Suffers Ransomware Attack and Data Leak appeared first on HIPAA Journal.

Ransomware 102

Ransomware Hospitals Electronic Medical Records HIPAA 102

HIPAA Journal

JULY 20, 2022

There were 31 reported breaches of 10,000 or more healthcare records in June – the same number as May 2022 – two of which affected more than 1.2 Several healthcare providers submitted breach reports in June 2022 due to the ransomware attack on the HIPAA business associate, Eye Care Leaders. Eye Care Leaders ransomware attack.

Electronic Medical Records 112

Electronic Medical Records Ransomware HIPAA Hospitals 112

HIPAA Journal

NOVEMBER 28, 2022

(HHS) has recently announced that it was the victim of a ransomware attack. The investigation revealed an unauthorized third party first accessed its systems on June 10, 2022, several days prior to using ransomware to encrypt files. Ransomware Attack Affects Patients of Disability Services of the Southwest.

Ransomware 109

Ransomware Electronic Medical Records HIPAA Licensing 109

HIPAA Journal

DECEMBER 9, 2022

CommonSpirit Health has confirmed that the protected health information of at least 623,774 patients was exposed and potentially stolen in its October 2022 ransomware attack. The post More than 623,000 Patients Affected by CommonSpirit Health Ransomware Attack appeared first on HIPAA Journal.

Ransomware 102

Ransomware Electronic Medical Records HIPAA Hospitals 102

HIPAA Journal

JANUARY 6, 2023

The Chicago, IL-based health system, CommonSpirit Health, is facing a class action lawsuit over its October 2022 ransomware attack. Malicious actors gained access to its IT systems on September 16, 2022, and deployed ransomware on October 2, 2022.

Ransomware 102

Ransomware Fraud Electronic Medical Records Hospitals 102

HIPAA Journal

AUGUST 11, 2022

One notable breach is a ransomware attack on the HIPAA business associate, Professional Finance Company. That one breach alone affected 657 HIPAA-covered entities, and only a few of those entities have reported the breach so far. Ransomware attack on EHR provider (Eye Care Leaders). Baptist Medical Center.

HIPAA 132

HIPAA Ransomware Electronic Medical Records Compliance 132

HIPAA Journal

APRIL 27, 2025

HIPAA violation cases are compliance investigations that result from a data breach being notified to the Department of Health and Human Services’ (HHS) Office for Civil Rights (OCR) or a privacy complaint being submitted to OCR via the complaints portal. There are many different types of HIPAA violation cases.

HIPAA 85

HIPAA Ransomware Hospitals Compliance 85

Compliancy Group

JUNE 29, 2022

In early December of 2021, Eye Care Leaders (Eye Care), an electronic medical record vendor supplying business associate services to eye care providers across the country, discovered it had incurred a data breach. Eye Care’s myCare Integrity solution was hacked via a ransomware attack on December 4, 2021. . Learn More! ×

Ransomware 98

Ransomware Electronic Medical Records HIPAA Health Insurance 98

HIPAA Journal

APRIL 15, 2025

True Dental Care for Kids and Adults, Pennsylvania True Dental Care for Kids and Adults LLC in Pennsylvania has started notifying 17,640 individuals about a recent ransomware attack. A hacker gained access to its network on February 3, 2025, and downloaded ransomware, which was used to encrypt files on its network.

Ransomware 75

Ransomware Electronic Medical Records HIPAA Health Insurance 75

HIPAA Journal

FEBRUARY 23, 2022

The intrusion was limited to a single file server and its electronic medical records were not compromised. There was no mention of ransomware, but NHS Management said the incident affected the functionality of certain systems and it worked quickly to restore access.

Electronic Medical Records 142

Electronic Medical Records HIPAA Health Insurance Medical Billing 142

HIPAA Journal

FEBRUARY 15, 2023

Teijin Automotive Technologies Says Welfare Plan Data Compromised in December Ransomware Attack Teijin Automotive Technologies has recently confirmed the protected health information of 25,464 members of its welfare plan has potentially been accessed and stolen in a December 1, 2022, ransomware attack.

Ransomware 102

Ransomware Health Insurance Electronic Medical Records HIPAA 102

HIPAA Journal

FEBRUARY 2, 2024

The LockBit ransomware gang has added Chicago’s Saint Anthony Hospital to its data leak site and is demanding a ransom payment of almost $900,000 from the nonprofit hospital to prevent the release of the stolen data. Since the notification was issued, the LockBit ransomware group added Saint Anthony Hospital to its data leak site.

Ransomware 87

Ransomware US Department of Health and Human Services Hospitals Electronic Medical Records 87

Compliancy Group

FEBRUARY 28, 2025

In the post-COVID world, many healthcare organizations have ramped up their telehealth services and use of electronic medical records (EMRs). Healthcare Cyberattack Statistics According to the FBI, in 2023, 249 cyberattacks (ransomware attacks) in the U.S. With ransomware, the attacker takes the computer system hostage.

Ransomware 52

Ransomware Compliance COVID-19 HIPAA 52

HIPAA Journal

MAY 25, 2023

The study involved a retroactive analysis of two academic emergency departments operated by a healthcare delivery organization (HDO) in San Diego, which were in the vicinity of an unrelated HDO that experienced a ransomware attack. increase in visits where patients left against medical advice, and a 47.6% The researchers observed a 74.6%

Hospitals 117

Hospitals Ransomware Electronic Medical Records HIPAA 117

HIPAA Journal

JANUARY 31, 2024

In the paper, the HHS indicated it will be adopting a carrot-and-stick approach by developing voluntary Healthcare and Public Health (HPH) Sector Cybersecurity Goals (CPGs) that consist of cybersecurity measures that will have the greatest impact on security along with an update to the HIPAA Security Rule to add new cybersecurity requirements.

Ransomware 126

Ransomware HIPAA Hospitals Compliance 126

Compliancy Group

JANUARY 25, 2023

Cyberattacks continued to be criminals’ weapons of choice, with 1,595 breaches in 2022, a slight decrease from 1,613 in 2021, with drops year-over-year in the number of breaches attributed to phishing, ransomware, and malware. Make Sure You’re HIPAA Compliant HIPAA compliance protects you against breaches.

HIPAA 119

HIPAA Electronic Medical Records Due Diligence Compliance 119

HIPAA Journal

OCTOBER 13, 2022

On October 3, 2022, CommonSpirit Health experienced a data security incident that forced it to take systems offline, including its electronic medical record (EHR) and other critical IT systems. Ransomware Attack Confirmed. That has now been confirmed by CommonSpirit Health.

Ransomware 79

Ransomware Electronic Medical Records HIPAA Hospitals 79

HIPAA Journal

DECEMBER 21, 2022

17 breaches of 10,000 or more records were reported to OCR in November, five of which involved more than half a million records and three incidents involved the impermissible disclosure of more than 1 million records. The records of 2,216,365 patients were exposed and potentially stolen. Ransomware attack.

Ransomware 109

Ransomware HIPAA Electronic Medical Records Doctors 109

HIPAA Journal

MARCH 23, 2023

Associates in Dermatology, a network of dermatology clinics in Indiana, Kentucky, and New York, has started notifying patients that some of their protected health information has been exposed in a ransomware attack on one of its business associates.

Ransomware 68

Ransomware Electronic Medical Records Records Management HIPAA 68

Healthcare IT Today

OCTOBER 4, 2023

What is most concerning about attacks on healthcare organizations is that any of the four most common types of attacks (ransomware, supply chain attacks, cloud or business email compromise) can trigger serious consequences for the health of patients, even putting their lives at risk.

Ransomware 124

Ransomware Electronic Medical Records Telemedicine HIPAA 124

HIPAA Journal

MARCH 9, 2022

Over 500,000 individuals have been affected by cyberattacks on Norwood Clinic, PracticeMax, Central Indiana Orthopedics, and an unauthorized electronic medical record incident at Ascension Michigan. The post PHI of Over 500,000 Individuals Potentially Compromised in 4 Security Incidents appeared first on HIPAA Journal.

Electronic Medical Records 129

Electronic Medical Records Health Insurance Ransomware HIPAA 129

HIPAA Journal

FEBRUARY 14, 2023

Another lawsuit has been filed against Connexin Software over its August 2022 ransomware attack and data breach, which affected more than 2.2 Connexin Software does business as Office Practicum and is a provider of electronic medical records and practice management software for pediatric practices. million individuals.

Electronic Medical Records 102

Electronic Medical Records Ransomware HIPAA Fraud 102

HIPAA Journal

AUGUST 31, 2022

This method of attack is becoming more common, where data is stolen, deleted, and then threats are issued to publish or sell the data if payment is not made to the attackers, but files are not encrypted using ransomware. The post Cyberattack and Data Destruction Reported by First Street Family Health appeared first on HIPAA Journal.

Electronic Medical Records 122

Electronic Medical Records Ransomware HIPAA Health Insurance 122

HIPAA Journal

MAY 24, 2024

It has been more than 2 weeks since the ransomware attack on Ascension and its hospitals are still operating under emergency procedures, with staff working with pen and paper due to the inability to access electronic medical records. The first lawsuit was filed in the U.S.

Hospitals 78

Hospitals Ransomware Electronic Medical Records HIPAA 78

HIPAA Journal

JULY 4, 2024

Gaia Software Gaia Software, a provider of electronic medical record and billing management software services to Americare Renal Center, has mailed notification letters to patients whose protected health information was compromised in a February 2024 cyberattack.

Electronic Medical Records 118

Electronic Medical Records Health Insurance Ransomware Fraud 118

HIPAA Journal

MAY 30, 2023

Morris Hospital & Healthcare Centers Investigating Royal Ransomware Attack Morris Hospital & Healthcare Centers in Illinois has launched an investigation into a cyberattack that the Royal ransomware group has claimed responsibility for. Norton did not state whether ransomware was used in the attack.

Ransomware 102

Ransomware Electronic Medical Records Health Insurance Hospitals 102

HIPAA Journal

JUNE 1, 2023

Details about the nature of the attack, such as if ransomware was used, have not been released at this stage, and it is too early to tell the extent to which patient information was involved. The electronic medical record system is separate from the affected servers and was not accessed in the attack.

Hospitals 102

Hospitals Electronic Medical Records Ransomware Health Insurance 102

HIPAA Journal

AUGUST 2, 2023

Cheyenne Radiology Group & MRI Reports December 2022 Ransomware Attack Cheyenne Radiology Group & MRI, P.C. CRG), in Wyoming, has recently issued notifications to its patients about a ransomware attack that was discovered and stopped on December 12, 2022.

Licensing 97

Licensing Electronic Medical Records Ransomware Health Insurance 97

HIPAA Journal

OCTOBER 28, 2022

Vincent’s Coastal Cardiology Brunswick Suffers Ransomware Attack. Vincent’s Coastal Cardiology Brunswick in Georgia has started notifying 71,227 patients about a security breach that affected its legacy systems, including its legacy electronic medical record system. Ascension St. Ascension St.

Ransomware 109

Ransomware Electronic Medical Records HIPAA Health Insurance 109

HIPAA Journal

AUGUST 11, 2023

Advanced Persistent Threat (APT) actors are known to be actively exploiting 9 of the vulnerabilities, and 7 are being actively exploited by ransomware gangs.

Electronic Medical Records 96

Electronic Medical Records Ransomware Fraud HIPAA 96

HIPAA Journal

APRIL 5, 2023

Cyberattacks such as this often involve ransomware, although it is unclear if ransomware was used in this attack. TMH confirmed that its electronic medical record system was not accessed in the attack. The post Tallahassee Memorial Healthcare: Patient Data Stolen in Cyberattack appeared first on HIPAA Journal.

Electronic Medical Records 102

Electronic Medical Records Ransomware Health Insurance HIPAA 102

Health Care Performance

NOVEMBER 22, 2022

CommonSpirit hospitals reported IT issues on October 3 rd with a response that included taking systems offline, including their electronic medical records. CommonSpirit has 140 hospitals in 21 states. According to Healthcaredive.com, based on website information, hospitals in seven states have been impacted.

Ransomware 52

Ransomware Electronic Medical Records Hospitals Compliance 52

HIPAA Journal

AUGUST 8, 2022

Carmel, IN-based Goodman Campbell Brain and Spine has started notifying 363,000 current and former patients that some of their protected health information was stolen prior to data being encrypted with ransomware and some of the stolen data has been published on the gang’s dark web data leak site.

Ransomware 89

Ransomware Electronic Medical Records HIPAA Licensing 89

HIPAA Journal

JULY 20, 2023

The information compromised in the incident varied from individual to individual and may have included names, phone numbers, addresses, dates of birth, Social Security numbers, medical record numbers, patient account numbers, dates of service, health insurance information, and limited treatment information.

Hospitals 76

Hospitals Electronic Medical Records Ransomware HIPAA 76

HIT Consultant

SEPTEMBER 5, 2023

According to an IoT threat report issued by Unit 42, 83 percent of medical imaging devices are running on unsupported operating systems. This elevates the risk of exploitation by bad actors with ransomware. In other words, they can’t protect what they don’t see.

Ransomware 111

Ransomware Electronic Medical Records Hospitals HIPAA 111

HIPAA Journal

JANUARY 12, 2023

Shields Health Care Group, which provides medical imaging services to more than 50 healthcare facilities, suffered a breach of more than 2 million records, Professional Finance Company, which provides a debt collection service to healthcare organizations, suffered a breach affecting many of its clients and exposed the data of 1.91

Electronic Medical Records 109

Electronic Medical Records Ransomware Fraud Public Health 109

HIPAA Journal

FEBRUARY 8, 2024

6,000 Individuals Impacted by Ransomware Attack on Colorado Ophthalmology Associates Colorado Ophthalmology Associates (COA) has recently disclosed a ransomware attack that was discovered on November 14, 2023. The post Azura Vascular Care Reports Data Breach Affecting 348,000 Patients appeared first on HIPAA Journal.

Ransomware 90

Ransomware Electronic Medical Records Licensing Health Insurance 90