HIPAA Journal

JUNE 13, 2023

million individuals in an April 2023 ransomware attack. The attack was detected when ransomware was used to encrypt and prevent access to files. The lawsuit alleges the plaintiff and class members have been placed at imminent risk of harm and face an ongoing risk of identity theft and fraud. million customers.

Ransomware 99

Ransomware Fraud Health Insurance HIPAA 99

HIPAA Journal

FEBRUARY 22, 2023

A lawsuit has been filed against Freehold Township, NJ-based CentraState Healthcare System over its December 2022 ransomware attack, a few days after the health system started sending notification letters to around 617,000 affected patients.

Ransomware 100

Ransomware Fraud Health Insurance HIPAA 100

HIPAA Journal

MAY 25, 2022

SAC Health said it is unaware of any actual or attempted misuse of patient data as a result of the break-in; however, as a precaution against identity theft and fraud, affected individuals have been offered complimentary credit monitoring services. Bryan County Ambulance Authority Ransomware Attack Affects 14,000 Patients.

Ransomware 131

Ransomware Fraud HIPAA Licensing 131

HIPAA Journal

NOVEMBER 23, 2022

The Rochester Hills, MI-based prosthetics, orthotics, and accessibility solution provider, Wright & Filippis, has recently announced that it was the victim of a ransomware attack on its network. The post 877,500 Individuals Affected by Ransomware Attack on Prosthetics & Orthotics Provider appeared first on HIPAA Journal.

Ransomware 112

Ransomware Fraud Licensing HIPAA 112

HIPAA Journal

SEPTEMBER 1, 2023

The San Francisco, CA-based law firm, Orrick, Herrington & Sutcliffe LLP, is facing a class action lawsuit over a ransomware attack and data breach that was detected on March 13, 2023. The post Orrick, Herrington & Sutcliffe Sued Over Ransomware Attack and Data Breach appeared first on HIPAA Journal.

Ransomware 83

Ransomware Fraud HIPAA 83

HIPAA Journal

MARCH 7, 2023

DoppelPaymer ransomware first appeared in 2019. Since then, the ransomware has been used in dozens of attacks on critical infrastructure organizations and industries, and private companies. The ransomware is based on BitPaymer ransomware, which is part of the Dridex malware family.

Ransomware 81

Ransomware Fraud HIPAA Hospitals 81

HIPAA Journal

MARCH 13, 2023

The Royal ransomware group claimed responsibility for the attack and issued a ransom demand to prevent the publication of the 16GB of data allegedly stolen in the attack. The post Revenetics Facing Class Action Lawsuit Over Royal Ransomware Attack and Data Breach appeared first on HIPAA Journal.

Ransomware 113

Ransomware Fraud HIPAA 113

HIPAA Journal

JANUARY 6, 2023

The Chicago, IL-based health system, CommonSpirit Health, is facing a class action lawsuit over its October 2022 ransomware attack. Malicious actors gained access to its IT systems on September 16, 2022, and deployed ransomware on October 2, 2022.

Ransomware 90

Ransomware Fraud Electronic Medical Records Hospitals 90

HIPAA Journal

JUNE 21, 2023

Onix Group, a Pennsylvania-based real estate development firm and provider of business management and consulting services, is being sued for failing to prevent a ransomware attack in which the hackers stole the protected health information of 320,000 individuals. The ransomware attack was detected by Onix Group on March 27.

Ransomware 97

Ransomware Fraud HIPAA 97

HIPAA Journal

MARCH 24, 2022

The Federal Bureau of Investigation (FBI) Internet Crime Complaint Center (IC3) has released its 2021 Internet Crime Report , which reveals there were at least 649 ransomware attacks on critical infrastructure organizations from June 2021 to December 2021. Losses to ransomware are difficult to determine.

Ransomware 127

Ransomware Public Health Fraud HIPAA 127

HIPAA Journal

JUNE 5, 2023

Multiple class action lawsuits have been filed against the city of Oakland in California over a ransomware attack and data breach that involved the theft of the personal and protected health information of 13,000 current and former employees. The ransomware attack is understood to have started with phishing emails.

Ransomware 56

Ransomware Fraud HIPAA 56

HIPAA Journal

MARCH 28, 2023

A New York law firm that suffered a LockBit ransomware attack has agreed to pay a financial penalty of $200,000 to the New York Attorney General to resolve alleged violations of New York General Business Law and the Privacy and Security Rules of the Health Insurance Portability and Accountability Act (HIPAA).

HIPAA 106

HIPAA Ransomware Malpractice Health Insurance 106

HIPAA Journal

JUNE 8, 2023

a provider of call center and customer experience software technology to large enterprises, has recently confirmed that it fell victim to a ransomware attack on a limited portion of its network. The post Alvaria Confirms November 2022 Hive Ransomware Attack appeared first on HIPAA Journal. (formerly Aspect Software, Inc.),

Ransomware 52

Ransomware Fraud HIPAA Health Insurance 52

HIPAA Journal

DECEMBER 23, 2022

It has been another bad year for healthcare data breaches, with some of the biggest HIPAA breaches of 2022 resulting in the impermissible disclosure of well over a million records. The Biggest HIPAA Breaches of 2022. The 12 biggest HIPAA breaches of 2022 affected almost 22.66 OneTouch Point – Ransomware Attack Involving 4.11

HIPAA 86

HIPAA Ransomware Health Insurance Compliance 86

HIPAA Journal

MAY 25, 2023

In April 2023, Point32Health, the second-largest health insurer in Massachusetts and the parent company of Tufts Health Plan and Harvard Pilgrim Health Care, announced it suffered a ransomware attack that resulted in system outages, including the systems that serviced members, accounts, brokers, and providers.

Ransomware 85

Ransomware Health Insurance Fraud HIPAA 85

HIPAA Journal

JANUARY 31, 2023

San Andreas Regional Center – was filed in the Superior Court of California in response to the breach alleging the healthcare provider was negligent for failing to implement reasonable cybersecurity measures to protect against ransomware attacks, despite being aware of the high risk of attacks on the healthcare sector.

Ransomware 60

Ransomware Fraud Health Insurance HIPAA 60

HIPAA Journal

APRIL 8, 2024

Between October 9, 2021, and October 17, 2021, hackers accessed the Planned Parenthood Los Angeles network , exfiltrated sensitive patient data, and used ransomware to encrypt files. Planned Parenthood discovered the ransomware attack on October 17, 2021, and confirmed on November 4, 2021, that the stolen files contained patient data.

Ransomware 81

Ransomware HIPAA Health Insurance Fraud 81

HIPAA Journal

JANUARY 30, 2023

The National HIPAA Summit is the leading forum on healthcare EDI, privacy, breach notification, confidentiality, data security, and HIPAA compliance, and the deadline for registration for the Virtual 40th National HIPAA Summit is fast approaching.

US Department of Health and Human Services 83

US Department of Health and Human Services HIPAA Compliance Medicaid 83

HIPAA Journal

NOVEMBER 21, 2022

The Wisconsin-based dermatology practice, Forefront Dermatology, has agreed to settle a class action lawsuit filed on behalf of patients whose protected health information (PHI) was compromised in a ransomware attack in late May 2021. Million Settlement to Resolve Ransomware Lawsuit appeared first on HIPAA Journal.

Ransomware 64

Ransomware Fraud HIPAA Licensing 64

HIPAA Journal

JANUARY 24, 2023

Another lawsuit has been filed against CommonSpirit Health over its 2022 ransomware attack and data breach that alleges the nation’s largest catholic health system failed to implement reasonable and appropriate safeguards to prevent unauthorized access to sensitive patient data.

Ransomware 56

Ransomware Fraud HIPAA Hospitals 56

Health Care Performance

AUGUST 16, 2022

The HIPAA Security Rule requires covered entities and business associates to complete a HIPAA Security Risk Analysis, and to periodically update it. When investigating a breach, the OCR also reviews the organization’s compliance with the HIPAA Security Rule. What’s your HIPAA breach risk tolerance?

HIPAA 52

HIPAA Ransomware Compliance Fraud 52

Compliancy Group

JANUARY 18, 2022

Hacking, phishing attacks, and ransomware can effectively cripple your business and cost you resources and reputation. But the best tool to prevent small practice cybercrime can be as basic as having a truly effective HIPAA compliance strategy. The most common “download and start” version used by so many people is not HIPAA compliant.

HIPAA 52

HIPAA Compliance Ransomware Malpractice 52

HIPAA Journal

AUGUST 31, 2022

The group operates out of Russia and has been operational since at least 2009 and is responsible for the infamous Dridex banking Trojan and several other ransomware and malware variants, including BitPaymer, Hades, Phoenixlocker, WastedLocker, SocGholish, GameOver Zeus, and JabberZeus. Cybercrime Syndicate appeared first on HIPAA Journal.

Ransomware 123

Ransomware Fraud Governance HIPAA 123

HIPAA Journal

JANUARY 24, 2023

The theft of protected health information places patients and health plan members at risk of identity theft and fraud, but by far the biggest concern is the threat to patient safety. Multiple studies have identified an increase in mortality rates at hospitals following ransomware attacks and other major cyber incidents.

Ransomware 119

Ransomware HIPAA Hospitals Fraud 119

HIPAA Journal

APRIL 23, 2024

Notification letters have been sent to more than 34,500 individuals about ransomware attacks that occurred more than 9 months ago. The post Kisco Senior Living & Island Ambulatory Surgery Center Disclose Summer 2023 Cyberattacks appeared first on HIPAA Journal.

Ransomware 57

Ransomware Fraud Licensing HIPAA 57

HIPAA Journal

NOVEMBER 17, 2022

Salud Family Health Provides Update on September 2022 Ransomware Attack. The breach was reported to the HHS’ Office for Civil Rights using a placeholder of 501 and that figure has yet to be updated on the OCR breach portal; however, the threat actor behind the attack – the Lorenz ransomware group – has dumped a sample of the files online.

Ransomware 81

Ransomware Health Insurance Hospitals Fraud 81

Medisys Compliance

APRIL 27, 2022

The Health Insurance Portability and Accountability Act (HIPAA) was introduced in year 1996. Another goal was to prevent healthcare fraud. Healthcare providers, health plans, and healthcare clearinghouses are primarily covered under HIPAA. Whatever might be the reason, its important that your practice must be HIPAA compliant.

HIPAA 52

HIPAA Medical Billing Outsourcing Medical Billing Ransomware 52

Compliancy Group

FEBRUARY 17, 2022

Background of CPA HIPAA Breach. Under HIPAA regulations, this CPA HIPAA breach likely contained PHI. The HIPAA Breach Notification Rule also requires reporting any breach that affects 500 or more individuals to the HHS Secretary and local media outlets within 60 days of discovery. × HIPAA for CPAs.

HIPAA 52

HIPAA Compliance Ransomware Fraud 52

HIPAA Journal

JULY 12, 2023

District Court for the District of Maryland against Johns Hopkins University and Johns Hopkins Health System that allege a failure to properly secure and safeguard the protected health information of patients, resulting in the theft of their data by the Clop ransomware group.

Ransomware 83

Ransomware Fraud HIPAA 83

Total HIPAA

FEBRUARY 25, 2020

Ransomware attacks have surged in the last year.¹ Ransomware is a form of malware that infects devices via a Trojan, a kind of malicious code disguised as legitimate software. Frequency of Ransomware Attacks Increases. In 2019, ransomware incidents disrupted many organizations’ infrastructure and ability to do business.

Ransomware 52

Ransomware HIPAA Compliance Fraud 52

HIPAA Journal

FEBRUARY 21, 2022

EHRs usually contain all the information required for multiple types of fraud, including names, addresses, dates of birth, Social Security numbers, other government and state ID numbers, health data, and health insurance information. Malware, and especially ransomware, pose a significant threat to EHRs.

Ransomware 131

Ransomware Fraud HIPAA Health Insurance 131

Compliancy Group

MARCH 30, 2023

The report also identified several trends in cybercrime, including the increased use of social media platforms as a tool for scams and fraud, the rise of ransomware attacks, and the exploitation of virtual currency transactions. Make Sure You’re HIPAA Compliant HIPAA and cybersecurity go hand-in-hand. Find Out More!

Ransomware 52

Ransomware Fraud HIPAA Compliance 52

HIPAA Journal

MARCH 3, 2023

The attack was conducted by the Sodinokibi ransomware group, which published some of the stolen data on its data leak site. Claims will also be accepted up to a maximum of $3,500 per claimant to cover documented, extraordinary losses that have not already been reimbursed, such as losses to fraud and identity theft.

Ransomware 87

Ransomware Fraud HIPAA 87

HIPAA Journal

MAY 18, 2023

This was the second data breach to be reported by NextGen this year, with the earlier incident being a BlackCat ransomware attack. Further, NextGen had suffered a ransomware attack just a few weeks previously and should have known that security needed to be improved.

Ransomware 119

Ransomware Fraud HIPAA 119

HIPAA Journal

FEBRUARY 15, 2023

The medical device manufacturer Electromed has proposed a $850,000 settlement to resolve claims related to a June 2021 ransomware attack and data breach involving the protected health information of 47,200 individuals. The post Electromed Proposes $825,000 Class Action Data Breach Settlement appeared first on HIPAA Journal.

Ransomware 89

Ransomware Fraud Licensing Health Insurance 89

HIPAA Journal

JULY 6, 2023

UKG (Ultimate Kronos Group), a multinational provider of workforce management and human resources (HR) management services, has proposed a $6 million settlement to resolve claims related to a ransomware attack and data breach that was discovered in 2021. Members of two subclasses are entitled to additional payments.

Ransomware 80

Ransomware COVID-19 Fraud HIPAA 80

HIPAA Journal

MARCH 30, 2023

Ransomware and phishing continue to be the biggest cybersecurity concerns for healthcare organizations according to the February 2023 Current and Emerging Healthcare Cyber Threat Landscape report from Health-ISAC. Ransomware was the biggest concern for 2022 and 2023 with phishing and spear phishing in second.

Ransomware 100

Ransomware Fraud Governance Medical Billing 100