HIPAA Journal

JANUARY 31, 2023

San Andreas Regional Center – was filed in the Superior Court of California in response to the breach alleging the healthcare provider was negligent for failing to implement reasonable cybersecurity measures to protect against ransomware attacks, despite being aware of the high risk of attacks on the healthcare sector.

Ransomware 59

Ransomware Fraud Health Insurance HIPAA 59

HIPAA Journal

APRIL 23, 2024

Notification letters have been sent to more than 34,500 individuals about ransomware attacks that occurred more than 9 months ago. A cybersecurity firm was engaged to investigate the disruption and confirmed that unauthorized individuals accessed its network and exfiltrated files containing the personal information of residents.

Ransomware 97

Ransomware Fraud Licensing HIPAA 97

HIPAA Journal

APRIL 8, 2024

Planned Parenthood Los Angeles, a provider of reproductive healthcare services in Los Angeles County, has proposed a $6 million settlement to resolve all claims related to a 2021 data breach that exposed the personal information of more than 409,437 patients.

Ransomware 74

Ransomware HIPAA Health Insurance Fraud 74

HIPAA Journal

NOVEMBER 17, 2022

Salud Family Health Provides Update on September 2022 Ransomware Attack. Colorado-based Salud Family Health, a Federal Qualified Health Center (FQHC), has recently provided an update on a September 2022 cyberattack and has confirmed that patient data was potentially stolen.

Ransomware 79

Ransomware Health Insurance Hospitals Fraud 79

HIPAA Journal

SEPTEMBER 8, 2022

The Michigan law firm, Warner Norcross and Judd LLP, has issued notification letters to 255,160 individuals advising them about an October 2021 security breach in which files containing their personal and protected health information were potentially accessed and exfiltrated from its systems.

Fraud 69

Fraud Health Insurance Ransomware HIPAA 69

HIPAA Journal

NOVEMBER 21, 2022

The Wisconsin-based dermatology practice, Forefront Dermatology, has agreed to settle a class action lawsuit filed on behalf of patients whose protected health information (PHI) was compromised in a ransomware attack in late May 2021. Million Settlement to Resolve Ransomware Lawsuit appeared first on HIPAA Journal.

Ransomware 62

Ransomware Fraud HIPAA Licensing 62

HIPAA Journal

JUNE 15, 2023

While the investigation into the data breach is ongoing, the initial findings indicate that sensitive personal and financial information was impacted, including names, contact information, and health billing records. At this stage, it is unclear how many individuals have been affected.

Ransomware 96

Ransomware Health Insurance Fraud HIPAA 96

HIPAA Journal

SEPTEMBER 12, 2023

Seymour, IN-based Schneck Medical Center has settled a lawsuit with the Indiana attorney general, Todd Rokita, over a 2021 ransomware attack and data breach that affected 89,707 Indiana residents. Schneck Medical Center Compensates Patients for Losses Schneck Medical Center has also recently settled a consolidated class action lawsuit for $1.3

HIPAA 85

HIPAA Ransomware Health Insurance Fraud 85

HIPAA Journal

FEBRUARY 8, 2024

Azura Vascular Care, a Pennsylvania-based operator of 70 outpatient vascular centers and ambulatory surgery centers in 25 states and Puerto Rico, notified the HHS’ Office for Civil Rights last month about a cybersecurity incident involving the protected health information of 348,000 patients.

Ransomware 79

Ransomware Electronic Medical Records Licensing Health Insurance 79

HIPAA Journal

FEBRUARY 15, 2023

The medical device manufacturer Electromed has proposed a $850,000 settlement to resolve claims related to a June 2021 ransomware attack and data breach involving the protected health information of 47,200 individuals.

Ransomware 81

Ransomware Fraud Licensing Health Insurance 81

HIPAA Journal

MARCH 28, 2023

A New York law firm that suffered a LockBit ransomware attack has agreed to pay a financial penalty of $200,000 to the New York Attorney General to resolve alleged violations of New York General Business Law and the Privacy and Security Rules of the Health Insurance Portability and Accountability Act (HIPAA).

HIPAA 99

HIPAA Ransomware Malpractice Health Insurance 99

HIPAA Journal

AUGUST 2, 2023

Notification letters will be sent to the affected individuals in the coming weeks and credit monitoring, fraud consultation, and identity theft restoration services will be offered. Cheyenne Radiology Group & MRI Reports December 2022 Ransomware Attack Cheyenne Radiology Group & MRI, P.C. (CRG),

Licensing 71

Licensing Electronic Medical Records Ransomware Health Insurance 71

HIPAA Journal

FEBRUARY 21, 2022

EHRs usually contain all the information required for multiple types of fraud, including names, addresses, dates of birth, Social Security numbers, other government and state ID numbers, health data, and health insurance information. No other records provide such a wide range of information.

Ransomware 124

Ransomware Fraud HIPAA Health Insurance 124

HIPAA Journal

SEPTEMBER 7, 2022

The Morristown, VT-based healthcare provider, Lamoille Health Partners, is facing a class action lawsuit over a June 2022 ransomware attack that affected almost 60,000 of its patients. As is now common following healthcare data breaches, legal action is being taken by patients who had their protected health information exposed.

HIPAA 103

HIPAA Ransomware Fraud Health Insurance 103

HIPAA Journal

SEPTEMBER 13, 2023

A class action lawsuit has been filed against the student healthcare insurer UnitedHealthcare Services, which does business as UnitedHealthcare Student Resources, over its MOVEit Transfer data breach in May 2023. Ransom demands were issued, and payment was required to prevent the publication of stolen data on the group’s data leak site.

Ransomware 65

Ransomware Fraud Health Insurance HIPAA 65

HIPAA Journal

MARCH 25, 2022

Ultimate Care said no reports have been received that indicate there has been any misuse of patient information; however, as a precaution against identity theft and fraud, individuals whose Social Security numbers were impacted have been offered complimentary one-year memberships with a credit monitoring service.

Health Insurance 104

Health Insurance Licensing Ransomware Fraud 104

HIPAA Journal

FEBRUARY 14, 2023

Another lawsuit has been filed against Connexin Software over its August 2022 ransomware attack and data breach, which affected more than 2.2 On August 26, 2022, Connexin discovered hackers had gained access to its systems and used ransomware to encrypt files. million individuals.

Electronic Medical Records 79

Electronic Medical Records Ransomware HIPAA Fraud 79

HIPAA Journal

JUNE 23, 2023

A lawsuit has been filed against Intellihartx, LLC, (aka ITx Companies), over a cyberattack by the Clop ransomware group that exploited a vulnerability in Fortra’s GoAnywhere Managed File Transfer (MFT) solution. The protected health information of 490,000 patients of its healthcare clients was compromised in the attack in late January.

HIPAA 86

HIPAA Ransomware Fraud Health Insurance 86

HIT Consultant

AUGUST 13, 2023

Pat Hurley, VP and General Manager, Americas at Acronis The protected health information (PHI) entrusted to healthcare providers is more valuable than credit card numbers to cyber criminals. Because medical records contain a cache of sensitive information. Ransomware. Legacy systems. Phishing scams.

Ransomware 98

Ransomware Fraud Health Insurance Public Health 98

HIPAA Journal

DECEMBER 23, 2022

million patients and health plan members. OneTouch Point – Ransomware Attack Involving 4.11 Hackers had gained access to its network and used ransomware to encrypt files, with that information also potentially stolen in the attack. More than 35 of the company’s clients were affected, many of which were health plans.

HIPAA 79

HIPAA Ransomware Health Insurance Compliance 79

HIPAA Journal

APRIL 25, 2023

Santa Clara Family Health Plan Confirmed as Victim of Clop GoAnywhere Hack Santa Clara Family Health Plan has confirmed the 276,993-record data breach reported to the HHS’ Office for Civil Rights on March 30, 2023, was due to the hacking of Fortra’s GoAnywhere MFT solution by the Clop ransomware group.

Health Insurance 81

Health Insurance Public Health Ransomware Fraud 81

HIPAA Journal

MARCH 24, 2022

Chelan Douglas Health District in East Wenatchee, WA, has announced it was the victim of a cyberattack in July 2021 in which the personal and protected health information of patients was exfiltrated from its systems. A representative for the health district said this was not a ransomware attack.

Ransomware 122

Ransomware Fraud Hospitals HIPAA 122

HIPAA Journal

OCTOBER 14, 2022

Large health systems store millions of patient records and even relatively small healthcare providers may store the records of hundreds of thousands of patients. Healthcare records also contain the necessary information to allow fraudulent tax returns to be filed to obtain rebates. How do Hackers Make Money from Stolen Medical Data?

Ransomware 108

Ransomware HIPAA Health Insurance Hospitals 108

HIPAA Journal

JULY 27, 2023

Norton Healthcare has only disclosed limited information about the attack; however, the BlackCat ransomware group announced that it was behind the cyberattack and leaked some of the data stolen from Norton Healthcare on its data leak site.

Ransomware 52

Ransomware Fraud Licensing Health Insurance 52

HIPAA Journal

MAY 18, 2023

Larger healthcare providers may temporarily divert ambulances and cancel some appointments following a ransomware attack but do not typically halt operations, but smaller healthcare providers may be left with little alternative. That information related to patients who had received healthcare services between March 2012 and November 2022.

Ransomware 70

Ransomware Fraud HIPAA Health Insurance 70

Healthcare IT Today

JANUARY 2, 2023

With data, you have identities, corporate information, and proprietary healthcare details, and 2023 will only lead to an explosion of more data as more companies rely on video conferencing. Healthcare is the number one type of data hackers set their sites on, and healthcare identity fraud is prevalent. to version 2.0 during 2023.

Ransomware 126

Ransomware Fraud Compliance Telemedicine 126

HIT Consultant

JANUARY 3, 2023

With the advent of ransomware-as-a-service combined with a lack of resources to investigate attacks in-house for healthcare organizations, elaborate and devastating cyber attacks against healthcare, specifically through business communication channels are likely to increase in scale and sophistication. .

Compliance 52

Compliance Ransomware Fraud Regulatory Compliance 52

HIPAA Journal

AUGUST 17, 2022

In April 2020, Musculoskeletal Institute, dba Florida Orthopaedic Institute, discovered an unauthorized third party had gained access to a server that contained patients’ protected health information (PHI) and used ransomware to encrypt files.

Ransomware 72

Ransomware Fraud HIPAA Health Insurance 72

HIPAA Journal

SEPTEMBER 28, 2022

The attack exposed the protected health information of 542,776 current and former Wolfe Clinic patients. Wolfe Clinic said names, addresses, birth dates, Social Security numbers, diagnostic information, and health insurance information were potentially compromised. Wolfe Clinic, P.C

Electronic Medical Records 73

Electronic Medical Records Ransomware Fraud HIPAA 73

HIPAA Journal

JANUARY 24, 2023

The theft of protected health information places patients and health plan members at risk of identity theft and fraud, but by far the biggest concern is the threat to patient safety. Multiple studies have identified an increase in mortality rates at hospitals following ransomware attacks and other major cyber incidents.

Ransomware 113

Ransomware HIPAA Hospitals Fraud 113

AIHC

APRIL 10, 2024

Checklist for Individual & Small Group Practices Written by: Nancie Lee Cummins, CFE, CHA, CIFHA, OHCC, CHCM, CHCO, CORCM This article provides an overview of Health Information Technology for Economic and Clinical Health Act (HITECH) and basic checklist of policies and procedures for compliance of smaller health care organizations.

Compliance 99

Compliance US Department of Health and Human Services HIPAA Electronic Medical Records 99

Medisys Compliance

APRIL 27, 2022

The Health Insurance Portability and Accountability Act (HIPAA) was introduced in year 1996. As the name suggests, it was created to ensure that all ‘protected health information’ was appropriately secured and restricted access to be given only to authorized individuals. Another goal was to prevent healthcare fraud.

HIPAA 52

HIPAA Medical Billing Outsourcing Medical Billing Ransomware 52

AIHC

APRIL 10, 2024

Checklist for Individual & Small Group Practices Written by: Nancie Lee Cummins, CFE, CHA, CIFHA, OHCC, CHCM, CHCO, CORCM This article provides an overview of Health Information Technology for Economic and Clinical Health Act (HITECH) and basic checklist of policies and procedures for compliance of smaller health care organizations.

Compliance 52

Compliance US Department of Health and Human Services HIPAA Electronic Medical Records 52

Hall Render

APRIL 19, 2024

to Study Treatments for Vascular Abnormalities Federal Appeals Court Hears Arguments on Nation’s First Ban on Gender-affirming Care for Minors Jason Demke Hired as COO at Mercy Hospital Fort Smit Pulaski Tech Awarded $5.7M

Nursing Homes 40

Nursing Homes Nurses Hospitals Doctors 40

HIPAA Journal

JANUARY 27, 2023

Des Plaines, IL-based Lutheran Social Services of Illinois, one of the largest providers of social services in the state, has announced that its systems were compromised and ransomware was used to encrypt files. UCHealth’s email, electronic health records, and internal files were not impacted.

Ransomware 86

Ransomware HIPAA Fraud Hospitals 86

HIPAA Journal

MAY 1, 2024

CommonSpirit Health suffered a ransomware attack on October 2, 2022, that affected more than 100 CommonSpirit Health facilities across the United States. The forensic investigation and document review confirmed that the protected health information of more than 623,000 patients had been exposed.

Fraud 97

Fraud Ransomware HIPAA Health Insurance 97

HIPAA Journal

MAY 10, 2023

University Urology – Hacking Incident University Urology in New York City has started notifying 56,816 individuals that unauthorized individuals gained access to some of its systems and potentially obtained their personal and health information. Contact information was then verified, and notification letters were sent on May 1, 2023.

Hospitals 93

Hospitals Ransomware Health Insurance Fraud 93