Health Insurance, HIPAA, Licensing and Medicaid

Multiple Data Breaches Reported by Iowa Medicaid and South Jersey Behavioral Health Resources

HIPAA Journal

JUNE 8, 2023

The Iowa Department of Health and Human Services has announced there have been three separate breaches of the protected health information of Iowa Medicaid recipients in the past two months – two hacking incidents and an impermissible disclosure, all three of which involved third-party contractors.

Medicaid

Medicaid Medicaid Ransomware Health Insurance

ILS Data Breach Affects Almost 21K Iowan Medicaid Recipients

HIPAA Journal

APRIL 14, 2023

The Iowa Department of Health and Human Services (DHHS) has confirmed that the personal information of 20,800 Iowans who receive Medicaid was exposed in a cyberattack at a subcontractor of one of its business associates between June 30, 2022, and July 5, 2022. It is currently unclear how many individuals have been affected.

Medicaid

Medicaid Medicaid Ransomware HIPAA

PHI Exposed in Data Incidents at Anthem, WellMed Medical Management and CareOregon

HIPAA Journal

OCTOBER 7, 2022

On August 5, 2022, Anthem discovered that an unauthorized individual had gained access to a database and downloaded files containing plan members’ protected health information, including names, addresses, dates of birth, phone numbers, email addresses, Medicare ID numbers, and Medicaid ID numbers.

HIPAA

HIPAA Health Insurance Medicaid Medicaid

Everything You Need To Know About NPI Numbers

Verisys

NOVEMBER 8, 2023

CMS.gov The Administrative Simplification provisions of the Health Insurance Portability and Accountability Act of 1996 (HIPAA) required the creation of a standard, unique health identifier for healthcare providers, which the NPI satisfies. Why Are NPI Numbers Necessary? Learn More About NPIs When Did NPI Numbers Begin?

Fraud

Fraud HIPAA Medicare Medicare

Great Valley Cardiology Notifies 181,700+ Individuals About PHI Exposure

HIPAA Journal

JUNE 16, 2023

Further information on the data breach has been covered by The HIPAA Journal here. The letters included Medicaid benefit information, although only around 200 of the 5,800 individuals affected had either their Medicare health insurance claim number (HICN) or Social Security number disclosed.

Medicaid

Medicaid Medicaid HIPAA Health Insurance

559,000 Individuals Affected by Murfreesboro Medical Clinic & SurgiCenter Cyberattack

HIPAA Journal

JULY 4, 2023

MMC said it was unable to determine whether files were accessed or removed from its network; however, the parts of the network that were accessed contained files that included the protected health information of 559,000 patients. Many of the individuals affected were minors.

Medicaid

Medicaid Medicaid Health Insurance Licensing

70,000 Valle del Sol Community Health Patients Affected by Cyberattack

HIPAA Journal

OCTOBER 17, 2022

The exposed information included names, dates of birth, Social Security numbers, driver’s license numbers, clinical/diagnosis information, health insurance member ID numbers, medical record numbers, and Medicare or Medicaid numbers. No evidence of data theft or misuse of information has been detected.

Health Insurance

Health Insurance Licensing Fraud HIPAA

Email Incidents Reported by Ultimate Care, CareOregon Advantage, and University Medical Center Southern Nevada

HIPAA Journal

MARCH 25, 2022

AHA discovered the email breach in early September 2021 and determined on December 2, 2021, that files containing the protected health information of its healthcare provider clients had been accessed. UMC was a victim of a REvil ransomware attack in June 2021 that resulted in the theft of the protected health information of 1.3

Health Insurance

Health Insurance Licensing Ransomware Fraud

Data Breaches Reported by Henderson & Walton Women’s Center & Genesis Health Care Inc.

HIPAA Journal

SEPTEMBER 9, 2022

Those emails contained patient information such as names, dates of birth, Social Security numbers, medical information, health insurance information, driver’s license numbers, and state ID numbers. The post Data Breaches Reported by Henderson & Walton Women’s Center & Genesis Health Care Inc.

Licensing

Licensing Health Insurance Fraud HIPAA

Up to 11 Million Health Records Compromised in Cyberattack on Government Contractor

HIPAA Journal

JULY 31, 2023

The Department of Health and Human Services’ Centers for Medicare and Medicaid Services (CMS) has confirmed that the PHI of approximately 612,000 current Medicare recipients was exposed in this incident and up to 645,000 individuals in total. The CMS said it is working with Maximus to provide notice to the affected individuals.

Governance

Governance Medicare Medicare Ransomware

Dental Health Management Solutions Notified Patients About Historic Data Breach

HIPAA Journal

MARCH 6, 2023

The types of information exposed varied from individual to individual and may have included names, addresses, medical information, health insurance information, Medicaid identification numbers, driver’s licenses, account and routing numbers, and Social Security numbers.

Electronic Medical Records

Electronic Medical Records HIPAA Licensing Nurses

Solara Medical Supplies $9.76 Million Data Breach Settlement Gets Preliminary Approval

HIPAA Journal

MAY 19, 2022

Million Data Breach Settlement Gets Preliminary Approval appeared first on HIPAA Journal. The breach was reported to the HHS’ Office for Civil Rights as affecting 114,007 individuals. The post Solara Medical Supplies $9.76

Licensing

Licensing HIPAA Health Insurance Medicaid

Capital Region Medical Center and Labette Health Announce Potential PHI Breaches

HIPAA Journal

MARCH 14, 2022

CRMC said at this stage of the investigation it does not appear that the attackers gained access to its electronic medical record database; however, the files accessed or potentially accessed by the attackers included information such as patient names, addresses, birth dates, medical information, and health insurance information.

Electronic Medical Records

Electronic Medical Records Health Insurance HIPAA Licensing

The History of Healthcare Compliance

MedTrainer

JANUARY 12, 2024

The adoption of electronic health records (EHRs), telemedicine , and data analytics has brought about new challenges and opportunities. Licensing and credentialing were introduced to regulate healthcare professionals and ensure minimum standards of care. Compliance in healthcare began to encompass billing, fraud, and abuse prevention.

Compliance

Compliance HIPAA Telemedicine ACA

PHI Included in Mom’s Meals Data Breach

HIPAA Journal

AUGUST 31, 2023

At the time of publication, the company’s name does not appear on the HIPAA Breach Report. The post PHI Included in Mom’s Meals Data Breach appeared first on HIPAA Journal. However, according to the Data Breach Notification, the date the breach was “discovered” is recorded as July 10, 2023.

Medicare

Medicare Medicare HIPAA Medicaid

6 Healthcare Providers and Business Associates Report Hacks and Ransomware Attacks

HIPAA Journal

MARCH 10, 2022

The files exfiltrated from its systems included the protected health information of patients. Individuals whose Social Security number, driver’s license, state identification number, or financial account information may have been involved have been offered complimentary credit monitoring services. Dr. Douglas C.

Ransomware

Ransomware Licensing Health Insurance Hospitals

LockBit Ransomware Group Threatens to Publish Stolen Cancer Patient Data

HIPAA Journal

AUGUST 8, 2023

McAlester Regional Health Center has not verified the claim and has yet to announce a data breach on its website or report the incident to the HHS’ Office for Civil Rights. The post LockBit Ransomware Group Threatens to Publish Stolen Cancer Patient Data appeared first on HIPAA Journal.

Ransomware

Ransomware Licensing HIPAA Health Insurance

New York Provider of Administrative Anesthesiology Services Facing Multiple Class Action Data Breach Lawsuits

HIPAA Journal

NOVEMBER 15, 2022

– over the data breach that allege the company was negligent for failing to implement appropriate safeguards to ensure the confidentiality, integrity, and availability of patient information, that Somnia failed to comply with FTC guidelines and the HIPAA Rules and had not followed industry standards for data security.

HIPAA

HIPAA Fraud Licensing Health Insurance

Good Samaritan Hospital Settles Class Action Data Breach Lawsuit

HIPAA Journal

JUNE 28, 2023

The post Good Samaritan Hospital Settles Class Action Data Breach Lawsuit appeared first on HIPAA Journal. A lawsuit – Young, et al. The class members were represented by Joshua B Swigart of Swigart Law Group AFC and Gayle M Blatt of Casey Gerry Schenk Francavilla Blatt & Penfield LLP.

Hospitals

Hospitals Fraud Licensing HIPAA

Ransomware Attack on Medical Associates of the Lehigh Valley Affects 75K Patients

HIPAA Journal

SEPTEMBER 14, 2022

MATLV said the investigation did not uncover any evidence indicating the misuse of patient information, but parts of the network that were accessed by the attackers contained files that included the protected health information of 75,628 individuals, which may have been viewed or exfiltrated in the attack.

Ransomware

Ransomware Licensing HIPAA Health Insurance

Why Is Healthcare Compliance Important?

MedTrainer

NOVEMBER 14, 2023

Exclusion from Government Programs: Entities found non-compliant may be barred from participating in government healthcare programs like Medicare and Medicaid. Loss of Licenses: Healthcare providers may lose their professional licenses, hindering their ability to practice.

Compliance

Compliance HIPAA Governance Medicare

Refuah Health Center Alerts 260K Patients About May 2021 Cyberattack

HIPAA Journal

MAY 16, 2022

The investigation into the breach determined multiple employee email accounts had been compromised, with the review of those accounts confirming they contained patient information such as names, birthdates, addresses, and health insurance member IDs. Financial information and Social Security numbers were not exposed.

Health Insurance

Health Insurance Ransomware HIPAA Licensing

Radiology Associates of Albuquerque Notifies Patients About Security Breach That Started in December 2020

HIPAA Journal

OCTOBER 17, 2022

The post Radiology Associates of Albuquerque Notifies Patients About Security Breach That Started in December 2020 appeared first on HIPAA Journal. This post will be updated when the scale of the breach is known.

Licensing

Licensing HIPAA Health Insurance Medicaid

Key Healthcare Compliance Examples To Understand Its Importance

MedTrainer

SEPTEMBER 8, 2023

Advocate Health Care HIPAA Breach (2016) In August 2016, Advocate Health Care Network —one of the largest healthcare systems in Illinois—agreed to settle potential violations of Privacy and Security Rules for $5.55 This settlement was the largest HIPAA settlement at that time. License revocation or suspension.

Compliance

Compliance HIPAA Medicaid Medicaid

Anesthesia, Eye Care, and Telehealth Providers Announce Third-Party Data Breaches

HIPAA Journal

NOVEMBER 3, 2022

Last month, HIPAA Journal reported that 13 providers of anesthesia services to hospitals had been affected by the breach. Since unauthorized access to protected health information could not be ruled out, notifications have been sent to affected individuals. At least five more healthcare providers are now known to have been affected.

HIPAA

HIPAA Health Insurance Licensing Medicaid

Resources for Human Development, WellStar Health & Central Vermont Eye Care Announce Data Breaches

HIPAA Journal

APRIL 13, 2022

The post Resources for Human Development, WellStar Health & Central Vermont Eye Care Announce Data Breaches appeared first on HIPAA Journal. This post will be updated when further information becomes available.

Ransomware

Ransomware Licensing HIPAA Health Insurance

Breach of Secrets: Nuance Communications Unveils Security Sins, Affecting 1.2M Lives

Compliancy Group

SEPTEMBER 27, 2023

Sensitive Information Stolen The investigation revealed that personal information such as: Full names Social Security numbers Financial account details Passport numbers Medical records Health insurance policy information Dates of birth Credit or debit card information These had been removed from Lakeland’s network. Please Wait.

HIPAA

HIPAA Compliance Health Insurance Fraud

What is Non-Compliance in Healthcare?

MedTrainer

JANUARY 26, 2024

It jeopardizes patient health, and can seriously harm the legal standing and reputation of healthcare institutions. Here are some common non-compliance activities: Failure to Maintain HIPAA Compliance: The Health Insurance Portability and Accountability Act (HIPAA) sets strict guidelines for safeguarding patient health information.

Compliance

Compliance Informed Consent HIPAA Medical Billing

Managing Healthcare Compliance in Idaho

MedTrainer

DECEMBER 7, 2023

The Medicaid and Health program of Idaho provides health coverage to eligible low-income adults, children, pregnant women, elderly adults, and people with disabilities in the state, offering a range of medical and health-related services.

Compliance

Compliance Licensing Compliance Officers Informed Consent

SAC Health Theft Incident and Multiple Ransomware Attacks Reported

HIPAA Journal

MAY 25, 2022

The data includes names, dates of birth, ID numbers, expected due dates, referring physician names, sonographer names, ultrasound results, drug and alcohol use histories, other health information, and some records include credit card information and health insurance information.

Ransomware

Ransomware Fraud HIPAA Licensing

277,000 Santa Clara Family Health Plan Members Affected by GoAnywhere Hack

HIPAA Journal

APRIL 25, 2023

On February 13, 2023, NationsBenefits confirmed that the data compromised in the attack included protected health information such as name, address, phone number, gender, date of birth, health insurance number, medical ID number, Social Security number, date(s) of service, medical device or product purchased, and provider/caregiver name.

Health Insurance

Health Insurance Public Health Ransomware Fraud

Managing Healthcare Compliance in Tennessee

MedTrainer

NOVEMBER 29, 2023

The Tennessee Hospital Association (THA) is a membership organization that represents and supports hospitals and health systems across Tennessee, advocating for their interests and working to enhance healthcare quality and accessibility for all Tennesseans. TennCare is Tennessee’s managed Medicaid agency.

Compliance

Compliance Licensing HIPAA Medicaid

Data Breach Affects 120,000 Priority Health Plan Members

HIPAA Journal

AUGUST 12, 2022

A review of the affected email accounts revealed they contained patient data such as names, client health insurance information, Medicaid information, Social Security numbers, and limited information related to services received at Living Innovations. The breach has been covered in more detail in this post.

Licensing

Licensing Health Insurance HIPAA Medicaid

Protected Health Information Exposed in 5 Recent Hacking Incidents

HIPAA Journal

MARCH 16, 2023

The affected files contained information such as names, Social Security numbers, birth dates, patient ID numbers, treatment information, Medicare/Medicaid numbers, and health insurance information. The post Protected Health Information Exposed in 5 Recent Hacking Incidents appeared first on HIPAA Journal.

Electronic Medical Records

Electronic Medical Records Health Insurance Ransomware HIPAA

Patient Data Likely Lost Due to Cyberattack on Mercy Medical Center – Clinton

HIPAA Journal

JUNE 8, 2023

The post Patient Data Likely Lost Due to Cyberattack on Mercy Medical Center – Clinton appeared first on HIPAA Journal. Mercy Medical Center did not state whether ransomware was involved but said data had to be restored from backups and some data has likely been lost. The group says files are being prepared for publication.

Ransomware

Ransomware HIPAA Licensing Health Insurance

Federal and State Healthcare Compliance Requirements

MedTrainer

OCTOBER 4, 2023

These federal compliance governing agencies regulate the industry at the national level: Centers for Medicare & Medicaid Services (CMS). CMS plays a crucial role in overseeing federal healthcare programs, including Medicare and Medicaid. OSHA focuses on the safety and health of workers, including those within the healthcare sector.

Compliance

Compliance Fraud HIPAA Governance

St. Luke’s Health Reports Third Party Data Breach

HIPAA Journal

NOVEMBER 7, 2022

Luke’s Health patients was present in the email accounts and could potentially have been accessed or acquired by the attackers. Luke’s Health was notified about the breach on September 1, 2022. Luke’s Health Reports Third Party Data Breach appeared first on HIPAA Journal. The post St.

Electronic Medical Records

Electronic Medical Records Ransomware HIPAA Licensing

Editorial: Why Do Criminals Target Medical Records

HIPAA Journal

OCTOBER 14, 2022

Data compiled by HIPAA Journal from breach reports submitted to the HHS’ Office for Civil Rights (OCR) show the number of data breaches reported by HIPAA-regulated entities continues to increase every year. Editor-in-Chief, HIPAA Journal. Medical records are highly prized, but why are medical records so valuable to criminals?

Ransomware

Ransomware HIPAA Health Insurance Hospitals

Staying Clear of the Medicare Exclusion List

Compliancy Group

MARCH 8, 2023

How do people end up on the Medicaid Exclusion List, what are the consequences of being on the list, and can you ever get off the list? The Medicare Exclusion Database can trace its roots to 1996, when HIPAA (Health Insurance Portability and Accountability Act) was signed into law.

Medicare

Medicare Medicare Fraud HIPAA

Introduction to Telebehavioral Health

AIHC

SEPTEMBER 5, 2023

Medicare covers many telebehavioral and telemental health services including audio-only services. Most private insurers and Medicaid cover telebehavioral health care, but check for reimbursement restrictions and obtain professional coding and billing guidance to avoid overpayment situations.

COVID-19

COVID-19 Telemedicine Compliance Informed Consent

What Is Corporate Compliance in Healthcare?

MedTrainer

OCTOBER 16, 2023

Health Insurance Portability and Accountability Act (HIPAA) HIPAA is a pivotal regulation that focuses on the protection of patient health information, enforced by the U.S. Department of Health and Human Services (HHS). For instance, HIPAA violations can cost up to $1.5 million annually.

Compliance

Compliance US Department of Health and Human Services HIPAA Medicaid

Apria Healthcare Breach Affects Up to 1.8 Million Individuals

HIPAA Journal

MAY 23, 2023

According to the breach notification sent to the Maine Attorney General, the files on its system that were potentially accessed contained the personal and protected health information of 1,869,598 individuals. Million Individuals appeared first on HIPAA Journal. The post Apria Healthcare Breach Affects Up to 1.8

Licensing

Licensing Health Insurance Medicaid Medicaid

Data Breaches Reported by WV and CO Healthcare Providers and NJ Medical Billing Administrator

HIPAA Journal

APRIL 8, 2022

The post Data Breaches Reported by WV and CO Healthcare Providers and NJ Medical Billing Administrator appeared first on HIPAA Journal. CPP has issued notification letters to affected individuals and is offering complimentary identity theft protection services.

Medical Billing

Medical Billing Licensing Health Insurance Medicaid

Ransomware Gangs Claim Three Healthcare Victims

HIPAA Journal

MAY 26, 2023

A third-party vendor was used to review all the affected files to identify the impacted individuals and that review determined on February 22, 2023, that protected health information had been exposed. The post Ransomware Gangs Claim Three Healthcare Victims appeared first on HIPAA Journal.

Ransomware

Ransomware Health Insurance HIPAA Licensing

Multiple Data Breaches Reported by Iowa Medicaid and South Jersey Behavioral Health Resources

ILS Data Breach Affects Almost 21K Iowan Medicaid Recipients

Trending Sources

PHI Exposed in Data Incidents at Anthem, WellMed Medical Management and CareOregon

Everything You Need To Know About NPI Numbers

Great Valley Cardiology Notifies 181,700+ Individuals About PHI Exposure

559,000 Individuals Affected by Murfreesboro Medical Clinic & SurgiCenter Cyberattack

70,000 Valle del Sol Community Health Patients Affected by Cyberattack

Email Incidents Reported by Ultimate Care, CareOregon Advantage, and University Medical Center Southern Nevada

Data Breaches Reported by Henderson & Walton Women’s Center & Genesis Health Care Inc.

Up to 11 Million Health Records Compromised in Cyberattack on Government Contractor

Dental Health Management Solutions Notified Patients About Historic Data Breach

Solara Medical Supplies $9.76 Million Data Breach Settlement Gets Preliminary Approval

Capital Region Medical Center and Labette Health Announce Potential PHI Breaches

The History of Healthcare Compliance

PHI Included in Mom’s Meals Data Breach

6 Healthcare Providers and Business Associates Report Hacks and Ransomware Attacks

LockBit Ransomware Group Threatens to Publish Stolen Cancer Patient Data

New York Provider of Administrative Anesthesiology Services Facing Multiple Class Action Data Breach Lawsuits

Good Samaritan Hospital Settles Class Action Data Breach Lawsuit

Ransomware Attack on Medical Associates of the Lehigh Valley Affects 75K Patients

Why Is Healthcare Compliance Important?

Refuah Health Center Alerts 260K Patients About May 2021 Cyberattack

Radiology Associates of Albuquerque Notifies Patients About Security Breach That Started in December 2020

Key Healthcare Compliance Examples To Understand Its Importance

Anesthesia, Eye Care, and Telehealth Providers Announce Third-Party Data Breaches

Resources for Human Development, WellStar Health & Central Vermont Eye Care Announce Data Breaches

Breach of Secrets: Nuance Communications Unveils Security Sins, Affecting 1.2M Lives

What is Non-Compliance in Healthcare?

Managing Healthcare Compliance in Idaho

SAC Health Theft Incident and Multiple Ransomware Attacks Reported

277,000 Santa Clara Family Health Plan Members Affected by GoAnywhere Hack

Managing Healthcare Compliance in Tennessee

Data Breach Affects 120,000 Priority Health Plan Members

Protected Health Information Exposed in 5 Recent Hacking Incidents

Patient Data Likely Lost Due to Cyberattack on Mercy Medical Center – Clinton

Federal and State Healthcare Compliance Requirements

St. Luke’s Health Reports Third Party Data Breach

Editorial: Why Do Criminals Target Medical Records

Staying Clear of the Medicare Exclusion List

Introduction to Telebehavioral Health

What Is Corporate Compliance in Healthcare?

Apria Healthcare Breach Affects Up to 1.8 Million Individuals

Data Breaches Reported by WV and CO Healthcare Providers and NJ Medical Billing Administrator

Ransomware Gangs Claim Three Healthcare Victims

Stay Connected