HIPAA Journal

JULY 20, 2022

There were 31 reported breaches of 10,000 or more healthcare records in June – the same number as May 2022 – two of which affected more than 1.2 Several healthcare providers submitted breach reports in June 2022 due to the ransomware attack on the HIPAA business associate, Eye Care Leaders. Location of Breached Information.

Electronic Medical Records 110

Electronic Medical Records Ransomware HIPAA Hospitals 110

HIPAA Journal

FEBRUARY 15, 2023

Teijin Automotive Technologies Says Welfare Plan Data Compromised in December Ransomware Attack Teijin Automotive Technologies has recently confirmed the protected health information of 25,464 members of its welfare plan has potentially been accessed and stolen in a December 1, 2022, ransomware attack.

Ransomware 87

Ransomware Health Insurance Electronic Medical Records HIPAA 87

HIPAA Journal

DECEMBER 9, 2022

CommonSpirit Health has confirmed that the protected health information of at least 623,774 patients was exposed and potentially stolen in its October 2022 ransomware attack. A preliminary review was conducted to determine the types of information affected, which was completed on November 8, 2021.

Ransomware 85

Ransomware Electronic Medical Records HIPAA Hospitals 85

HIPAA Journal

JANUARY 6, 2023

The Chicago, IL-based health system, CommonSpirit Health, is facing a class action lawsuit over its October 2022 ransomware attack. Malicious actors gained access to its IT systems on September 16, 2022, and deployed ransomware on October 2, 2022. Michael Medical Center. Virginia Mason Franciscan Health operates St.

Ransomware 84

Ransomware Fraud Electronic Medical Records Hospitals 84

Healthcare IT Today

FEBRUARY 21, 2023

The following is a guest article by John Gaede, Director of Information Systems at Sky Lakes Medical Center. On October 27, 2020, Sky Lakes Medical Center went dark. In a matter of hours, Sky Lakes became a healthcare facility without email, financial and clinical systems, or electronic medical records.

Ransomware 84

Ransomware Electronic Medical Records Hospitals 84

Compliancy Group

JUNE 29, 2022

In early December of 2021, Eye Care Leaders (Eye Care), an electronic medical record vendor supplying business associate services to eye care providers across the country, discovered it had incurred a data breach. Download the free cybersecurity eBook to get tips on protecting your patient information.

Ransomware 98

Ransomware Electronic Medical Records HIPAA Compliance 98

Health Care Performance

NOVEMBER 22, 2022

CommonSpirit hospitals reported IT issues on October 3 rd with a response that included taking systems offline, including their electronic medical records. According to Healthcaredive.com, based on website information, hospitals in seven states have been impacted. CommonSpirit has 140 hospitals in 21 states.

Ransomware 52

Ransomware Electronic Medical Records Hospitals Compliance 52

Healthcare It News

NOVEMBER 7, 2022

Luke's Health learned that a data breach affecting consultant Adelanto Healthcare Ventures had compromised protected health information. The data breach affecting the Texas-based system of 16 hospitals is unrelated to the massive ransomware attack on its parent company, CommonSpirit Health. Unaware for nearly a year.

Electronic Medical Records 260

Electronic Medical Records Ransomware Nurses Governance 260

HIPAA Journal

OCTOBER 13, 2022

On October 3, 2022, CommonSpirit Health experienced a data security incident that forced it to take systems offline, including its electronic medical record (EHR) and other critical IT systems. Ransomware Attack Confirmed. That has now been confirmed by CommonSpirit Health.

Ransomware 81

Ransomware Electronic Medical Records HIPAA Hospitals 81

HIPAA Journal

MARCH 16, 2023

Florida Medical Clinic, NorthStar Emergency Medical Services, Denver Public Schools, Wichita Urology Group, and The Bone & Joint Clinic have recently reported hacking incidents and the exposure and potential theft of protected health information. 95% of the compromised files only included an individual’s name.

Electronic Medical Records 64

Electronic Medical Records Health Insurance Ransomware HIPAA 64

HIPAA Journal

AUGUST 15, 2023

Tift Regional Medical Center in Georgia has started notifying 180,142 patients that their personal and protected health information was compromised in a cyberattack that was detected on or around August 16, 2022. million for hardware, software, incident response, and consulting services in response to the Royal ransomware attack.

Ransomware 94

Ransomware Electronic Medical Records HIPAA Medicaid 94

HIPAA Journal

MAY 25, 2023

The study involved a retroactive analysis of two academic emergency departments operated by a healthcare delivery organization (HDO) in San Diego, which were in the vicinity of an unrelated HDO that experienced a ransomware attack. The attack caused disruption for 4 weeks, and around 150,000 patient records were compromised.

Hospitals 105

Hospitals Ransomware Electronic Medical Records HIPAA 105

Compliancy Group

JULY 20, 2023

Tampa General Hospital’s recent revelation is nothing short of a modern-day heist, as cunning hackers managed to infiltrate their network and make off with the valuable treasure trove that is the protected health information of approximately 1.2 It appears this was no ordinary plundering but rather an attempted ransomware attack.

Electronic Medical Records 52

Electronic Medical Records Hospitals HIPAA Ransomware 52

Healthcare IT Today

OCTOBER 4, 2023

What is most concerning about attacks on healthcare organizations is that any of the four most common types of attacks (ransomware, supply chain attacks, cloud or business email compromise) can trigger serious consequences for the health of patients, even putting their lives at risk.

Ransomware 105

Ransomware Electronic Medical Records Telemedicine HIPAA 105

HIPAA Journal

FEBRUARY 8, 2024

Azura Vascular Care, a Pennsylvania-based operator of 70 outpatient vascular centers and ambulatory surgery centers in 25 states and Puerto Rico, notified the HHS’ Office for Civil Rights last month about a cybersecurity incident involving the protected health information of 348,000 patients. The incident was detected on November 9, 2023.

Ransomware 82

Ransomware Electronic Medical Records Licensing Health Insurance 82

HIPAA Journal

JULY 20, 2023

Tampa General Hospital has recently confirmed that hackers gained access to its network and stole files containing the protected health information of up to 1.2 Tampa General Hospital confirmed that the hackers did not gain access to its electronic medical record system. million patients.

Hospitals 74

Hospitals Electronic Medical Records Ransomware HIPAA 74

HIPAA Journal

FEBRUARY 23, 2022

Logan Health Medical Center in Kalispell, MT, has recently started notifying certain patients that hackers gained access to a file server that housed patient information in “a highly sophisticated criminal attack.”. The intrusion was limited to a single file server and its electronic medical records were not compromised.

Electronic Medical Records 133

Electronic Medical Records HIPAA Health Insurance Medical Billing 133

HIPAA Journal

JUNE 1, 2023

The hospitals have remained open with staff manually recording patient information while the network is down. Details about the nature of the attack, such as if ransomware was used, have not been released at this stage, and it is too early to tell the extent to which patient information was involved.

Hospitals 94

Hospitals Electronic Medical Records Ransomware Health Insurance 94

HIPAA Journal

MAY 30, 2023

Morris Hospital & Healthcare Centers Investigating Royal Ransomware Attack Morris Hospital & Healthcare Centers in Illinois has launched an investigation into a cyberattack that the Royal ransomware group has claimed responsibility for. Norton did not state whether ransomware was used in the attack.

Ransomware 83

Ransomware Electronic Medical Records Health Insurance Hospitals 83

HIPAA Journal

AUGUST 2, 2023

The administrative service provider said suspicious activity was detected within its network in early December 2022, and the forensic investigation confirmed on December 15, 2022, that an unauthorized third party accessed parts of its computer network where personal health information was stored.

Licensing 72

Licensing Electronic Medical Records Ransomware Health Insurance 72

HIPAA Journal

FEBRUARY 14, 2023

Another lawsuit has been filed against Connexin Software over its August 2022 ransomware attack and data breach, which affected more than 2.2 Connexin Software does business as Office Practicum and is a provider of electronic medical records and practice management software for pediatric practices. million individuals.

Electronic Medical Records 81

Electronic Medical Records Ransomware HIPAA Fraud 81

HIPAA Journal

JANUARY 31, 2024

When that deadline is near and breached organizations have not yet completed their document reviews to find out how many individuals have had their protected health information (PHI) exposed, breaches are reported to OCR using a placeholder of 500 or 501 records.

Ransomware 121

Ransomware HIPAA Hospitals Compliance 121

HIPAA Journal

AUGUST 8, 2022

Further information has been released on two cyberattacks on healthcare organizations: Goodman Campbell Brain and Spine and Behavioral Health Group. The investigation confirmed that the electronic medical record system was not affected, but files containing patients’ protected health information had been exfiltrated from its systems.

Ransomware 90

Ransomware Electronic Medical Records HIPAA Licensing 90

HIPAA Journal

MARCH 9, 2022

Over 500,000 individuals have been affected by cyberattacks on Norwood Clinic, PracticeMax, Central Indiana Orthopedics, and an unauthorized electronic medical record incident at Ascension Michigan. The potentially compromised data included names, addresses, Social Security numbers, and limited health information.

Electronic Medical Records 116

Electronic Medical Records Health Insurance Ransomware HIPAA 116

HIPAA Journal

AUGUST 11, 2022

One notable breach is a ransomware attack on the HIPAA business associate, Professional Finance Company. Ransomware attack on EHR provider (Eye Care Leaders). Baptist Medical Center. Ransomware attack. Yuma Regional Medical Center. Ransomware attack. Ransomware attack. Ransomware attack.

HIPAA 122

HIPAA Ransomware Electronic Medical Records Compliance 122

HIPAA Journal

NOVEMBER 7, 2022

Luke’s Health has recently notified 16,906 patients that some of their protected health information has been exposed in a security incident at a vendor that provides consulting services. Luke’s Health is currently recovering from a ransomware attack on its parent company, CommonSpirit Health, that occurred more than a month ago.

Electronic Medical Records 78

Electronic Medical Records Ransomware HIPAA Licensing 78

Hall Render

NOVEMBER 17, 2023

Citrix NetScaler appliances are widely used among health care organizations to facilitate remote and onsite authentication and access to critical applications such as Electronic Medical Records, imaging viewers, remote desktops and other applications.

Ransomware 40

Ransomware Electronic Medical Records 40

HIPAA Journal

OCTOBER 28, 2022

University of Michigan Health (Michigan Medicine) has recently announced that the protected health information of approximately 33,850 patients has potentially been compromised in a phishing attack. Vincent’s Coastal Cardiology Brunswick Suffers Ransomware Attack. Ascension St. Ascension St.

Ransomware 105

Ransomware Electronic Medical Records HIPAA Health Insurance 105

HIPAA Journal

APRIL 5, 2023

Cyberattacks such as this often involve ransomware, although it is unclear if ransomware was used in this attack. TMH did not share further information on the exact nature of the attack. TMH confirmed that its electronic medical record system was not accessed in the attack.

Ransomware 85

Ransomware Electronic Medical Records Health Insurance HIPAA 85

HIT Consultant

SEPTEMBER 5, 2023

This added difficulty has prompted many caregivers to default to risky workarounds to review and document ultrasound information; workarounds that can introduce serious security issues. According to an IoT threat report issued by Unit 42, 83 percent of medical imaging devices are running on unsupported operating systems.

Ransomware 104

Ransomware Electronic Medical Records Hospitals Nurses 104

HIPAA Journal

AUGUST 31, 2022

Salida, CO-based First Street Family Health has suffered a destructive cyberattack, in which files containing patient information were exfiltrated and then deleted from its systems. No evidence was found to indicate those records were stolen. The unauthorized access was blocked on July 16.

Electronic Medical Records 109

Electronic Medical Records Ransomware HIPAA Health Insurance 109

HIPAA Journal

DECEMBER 21, 2022

17 breaches of 10,000 or more records were reported to OCR in November, five of which involved more than half a million records and three incidents involved the impermissible disclosure of more than 1 million records. The records of 2,216,365 patients were exposed and potentially stolen. Ransomware attack.

Ransomware 94

Ransomware HIPAA Electronic Medical Records Doctors 94

Compliancy Group

DECEMBER 14, 2023

According to a press release published by the Department of Health and Human Services Office for Civil Rights (OCR), ransomware and hacking are healthcare’s primary cyberthreats. Over the last four years, there has been a 239% increase in large breaches reported to OCR involving hacking, and a 278% increase in ransomware.

Compliance 52

Compliance Hospitals US Department of Health and Human Services Electronic Medical Records 52

Compliancy Group

JANUARY 25, 2023

Cyberattacks continued to be criminals’ weapons of choice, with 1,595 breaches in 2022, a slight decrease from 1,613 in 2021, with drops year-over-year in the number of breaches attributed to phishing, ransomware, and malware. Make Sure You’re HIPAA Compliant HIPAA compliance protects you against breaches.

HIPAA 119

HIPAA Electronic Medical Records Due Diligence Compliance 119

HIPAA Journal

AUGUST 11, 2023

Advanced Persistent Threat (APT) actors are known to be actively exploiting 9 of the vulnerabilities, and 7 are being actively exploited by ransomware gangs.

Electronic Medical Records 70

Electronic Medical Records Ransomware Fraud HIPAA 70

HIPAA Journal

SEPTEMBER 28, 2022

in Iowa has recently confirmed that it was affected by the data breach at the electronic medical record provider, Eye Care Leaders. The attack exposed the protected health information of 542,776 current and former Wolfe Clinic patients. The Hive ransomware gang claimed responsibility for the attack.

Electronic Medical Records 75

Electronic Medical Records Ransomware Fraud HIPAA 75

HIPAA Journal

SEPTEMBER 19, 2022

18 healthcare data breaches of 10,000 or more records were reported to the HHS’ Office for Civil Rights in August 2022, which have been summarized in the table below. It should be noted that the exact nature of the data breach is not always reported by the breached entity, such as if ransomware was used to encrypt files. Health Plan.

Ransomware 101

Ransomware HIPAA Electronic Medical Records Compliance 101