Health Care Compliance Brief

23andMe Launches Prevention-Based Health Membership, Total Health

HIT Consultant

NOVEMBER 7, 2023

What You Should Know: – 23andMe has launched 23andMe+ Total Health , a comprehensive prevention-based health membership. Comprehensive, Prevention-Based Health Membership The offering aims to provide a comprehensive approach to prevention, enhancing patient understanding of disease risks and leading to healthier lives.

SAC Health Theft Incident and Multiple Ransomware Attacks Reported

HIPAA Journal

MAY 25, 2022

An analysis was conducted to determine which types of information were included in the files and concluded the documents may have contained information such as names, addresses, dates of birth, and diagnosis codes. Notification letters were sent to those individuals on May 3, 2022. Lifespan Services Suffers Ransomware Attack.

Ransomware

Ransomware Fraud HIPAA Licensing

PHI of 521,000 Individuals Compromised in Security Breach at Morley Companies

HIPAA Journal

FEBRUARY 16, 2022

A comprehensive review was conducted of all files on its systems that could have been accessed by the attackers, and Morley Companies then started collecting contact information for those individuals to allow notification letters to be sent.

HIPAA

HIPAA Health Insurance

South Denver Cardiology Associates Confirms Data Breach Affecting 287,000 Patients

HIPAA Journal

MARCH 14, 2022

SDCA said the contents of medical records were unaffected, the patient portal was not compromised, and the investigation did not uncover any evidence of actual or attempted misuse of patient information; however, as a precaution, affected individuals have been offered complimentary access to credit monitoring and identity theft protection services.

COVID-19

COVID-19 HIPAA Licensing Health Insurance

Receivables Performance Management Data Breach Affects More Than 3.7 Million Individuals

HIPAA Journal

DECEMBER 12, 2022

million individuals. Receivables Performance Management (RPM) in Lynnwood, WA, a business associate of several HIPAA-covered entities, has recently started notifying individuals affected by a 2021 ransomware attack. Affected individuals are being offered complimentary credit monitoring services. Acuity Brands.

HIPAA

HIPAA Hospitals Ransomware Licensing

Email Incidents Reported by Ultimate Care, CareOregon Advantage, and University Medical Center Southern Nevada

HIPAA Journal

MARCH 25, 2022

Three email incidents have recently been reported by Ultimate Care, CareOregon Advantage, and University Medical Center Southern Nevada that have affected a total of 38,485 individuals. Phishing Attack on Ultimate Care Impacts 15,788 Individuals. Notification letters were sent to affected individuals on February 22, 2022.

Health Insurance

Health Insurance Licensing Ransomware Fraud

Fast Track Urgent Care Confirms 258,411 Individuals Affected by 2021 PracticeMax Ransomware Attack

HIPAA Journal

AUGUST 3, 2022

Fast Track Urgent Care, a network of urgent healthcare clinics in Florida, has confirmed that 258,411 individuals have had their protected health information exposed and potentially stolen in a ransomware attack on billing and practice management vendor, PracticeMax.

Ransomware

Ransomware Health Insurance Licensing HIPAA

Health Aid of Ohio Settles Class Action Data Breach Lawsuit

HIPAA Journal

JULY 11, 2022

The files contained information such as name, telephone number, Social Security number, date of birth, medical diagnosis, insurance information, and the type of equipment that was delivered or repaired. The data breach affected 141,149 individuals. Notifications were issued to affected customers in May 2021.

Fraud

Fraud HIPAA

Cyberattack and Data Destruction Reported by First Street Family Health

HIPAA Journal

AUGUST 31, 2022

Notification letters were sent to affected individuals on August 26, 2022, and complimentary memberships to CyberScout’s credit monitoring service have been offered. The incident has not yet appeared on the HHS’ Office for Civil Rights breach portal, so it is currently unclear how many individuals have been affected.

Electronic Medical Records

Electronic Medical Records Ransomware HIPAA Health Insurance

Florida Orthopaedic Institute Proposes $4 Million Settlement to Resolve Class Action Data Breach Lawsuit

HIPAA Journal

AUGUST 17, 2022

The forensic investigation determined the PHI of 640,000 individuals had been exposed and potentially stolen in the attack, including names, contact information, birth dates, Social Security numbers, health insurance information, medical information, and other types of data. The services retail for around $196 per individual.

Ransomware

Ransomware Fraud HIPAA Health Insurance

Capital Region Medical Center and Labette Health Announce Potential PHI Breaches

HIPAA Journal

MARCH 14, 2022

Capital Region Medical Center (CRMC) in Jefferson City, MO has recently confirmed patient information was accessed by unauthorized individuals in a December 2021 cyberattack that took its network and phone systems offline for several days. The attack was detected on December 17, 2021, when network systems were disrupted.

Electronic Medical Records

Electronic Medical Records Health Insurance HIPAA Licensing

PHI of 10,000 Individuals Exposed Due to Houston Health Department Portal Glitch

HIPAA Journal

MARCH 1, 2022

The Houston Health Department has recently announced that the personal information and COVID-19 test results of 10,291 individuals have been exposed online as a result of a technical issue with its portal. The issue allowed approximately 3,500 portal users to access the data of other individuals.

COVID-19

COVID-19 Health Insurance HIPAA Licensing

PHI of Over 500,000 Individuals Potentially Compromised in 4 Security Incidents

HIPAA Journal

MARCH 9, 2022

Over 500,000 individuals have been affected by cyberattacks on Norwood Clinic, PracticeMax, Central Indiana Orthopedics, and an unauthorized electronic medical record incident at Ascension Michigan. The types of data stored on the server varied from individual to individual and may have included names and Social Security numbers.

Electronic Medical Records

Electronic Medical Records Health Insurance Ransomware HIPAA

Data Breaches Reported by Henderson & Walton Women’s Center & Genesis Health Care Inc.

HIPAA Journal

SEPTEMBER 9, 2022

HWWC did not disclose when the email account was compromised but said there was a delay in issuing notification letters due to the lengthy process of reviewing all emails in the account to determine the types of information and specific individuals that had been affected. That process concluded on June 24, 2022.

Licensing

Licensing Health Insurance Fraud HIPAA

70,000 Valle del Sol Community Health Patients Affected by Cyberattack

HIPAA Journal

OCTOBER 17, 2022

Valle de Sol said the investigation indicated unauthorized individuals had access to files containing sensitive patient data and that patient information may have been acquired. Valle de Sol explained in its October 5, 2022, website notification that arrangements were then made to notify affected individuals.

Health Insurance

Health Insurance Licensing Fraud HIPAA

Amenities Health Closes $10M to Modernize Health System Digital Front Doors

HIT Consultant

SEPTEMBER 20, 2023

. – Amenities plans to use the additional capital to further accelerate the adoption of the company’s groundbreaking Digital Front Door platform designed to help health systems improve access to care, deliver personalized patient experiences, and earn loyalty through membership programs.

Hospitals

Ransomware Attack on Medical Associates of the Lehigh Valley Affects 75K Patients

HIPAA Journal

SEPTEMBER 14, 2022

MATLV said the investigation did not uncover any evidence indicating the misuse of patient information, but parts of the network that were accessed by the attackers contained files that included the protected health information of 75,628 individuals, which may have been viewed or exfiltrated in the attack.

Ransomware

Ransomware Licensing HIPAA Health Insurance

Online Alcohol Counseling Service Provider Reports 109K-record Tracking Tool Data Breach

HIPAA Journal

APRIL 14, 2023

a New York-based online alcohol addiction and treatment service provider, has recently notified almost 109,000 individuals about an impermissible disclosure of some of their personal and protected health information. The types of information disclosed varied from individual to individual depending on their interactions on the websites.

HIPAA

HIPAA Hospitals

Three Healthcare Providers Report Phishing Attacks

HIPAA Journal

MARCH 16, 2023

Livonia, MI-based Trinity Health has confirmed that an unauthorized individual gained access to an employee email account and potentially viewed or obtained patient information. A limited number of individuals had their address, phone number, email address, and prescription information exposed.

Licensing

Licensing HIPAA Health Insurance

Cyberattacks Reported by Heartland Alliance and CentraState Medical Center

HIPAA Journal

JANUARY 5, 2023

On April 27, 2022, Heartland Alliance confirmed that an unauthorized individual had gained access to its network and potentially accessed or obtained files containing sensitive personal information. That process was completed in December 2022. Heartland Alliance said it is unaware of any actual or attempted misuse of that information.

Licensing

Licensing HIPAA

Hacking and IT Incidents Affect 563,000 Patients and Health Plan Members

HIPAA Journal

DECEMBER 1, 2022

Health Care Management Solutions LLC, a West Virginia-based consulting company focused on improving care quality for vulnerable populations including veterans, has recently reported a data breach to the HHS’ Office for Civil Rights that has affected up to 500,000 individuals. There is no substitute breach notice on the company website.

Health Insurance

Health Insurance Ransomware HIPAA Governance

PHI Compromised in 4 Recent Ransomware and Malware Attacks

HIPAA Journal

FEBRUARY 15, 2023

“We are sorry this incident occurred and apologize to our employees, customers, and affected individuals. Affected individuals have been notified and credit monitoring services have been offered. Affected individuals have been notified and offered a one-year membership to a credit monitoring service.

Ransomware

Ransomware Health Insurance Electronic Medical Records HIPAA

Horizon Actuarial Services Reports Data Theft and Extortion Incident

HIPAA Journal

MARCH 25, 2022

Letters started to be mailed to affected individuals on March 9, 2022. Complimentary credit monitoring and fraud and identity theft support services have been offered to affected individuals. Affected individuals have been offered complimentary memberships to a credit monitoring service.

Fraud

Fraud HIPAA

Membership Medicine: The Future of Primary Care?

HIT Consultant

AUGUST 28, 2023

Membership model medicine must be a key component of that evolution. Enter membership model medicine, a new approach to healthcare delivery. With fewer patients, physicians can spend more time with each one and provide more individualized care. It’s a model that helps primary care deliver on its promises.

Doctors

Doctors COVID-19 Hospitals Licensing

More Than 233,000 Patients Affected by Cyberattack on FMC Services

HIPAA Journal

OCTOBER 3, 2022

FMC Services said that at the time of issuing notifications to affected individuals, it had not been made aware of any cases of identity theft or other misuses as a result of the incident. Affected individuals have been offered a complimentary membership to an identity theft monitoring service as a precaution.

Ransomware

Ransomware Hospitals HIPAA

Security Breaches Reported by Benefit Plan Administrators and The People Concern

HIPAA Journal

JULY 8, 2022

has recently notified 3,775 individuals that an unauthorized individual gained access to its network and removed files that contained some of their protected health information. Complimentary credit monitoring services have been provided to affected individuals. It is currently unclear how many individuals have been affected.

HIPAA

HIPAA Health Insurance

Data Breaches Reported by University Pediatric Dentistry, OrthoNebraska, Michigan Avenue Immediate Care

HIPAA Journal

JULY 5, 2022

Individuals who had their Social Security numbers or driver’s license numbers exposed have been offered complimentary credit monitoring and identity theft protection services. Affected individuals have been notified by mail and have been offered a complimentary one-year membership of the Experian IdentityWorks Credit 3B service.

Licensing

Licensing Electronic Medical Records Health Insurance Hospitals

Virtual Health Clinic for Women & Families Maven Reaches $1B Valuation

HIT Consultant

AUGUST 17, 2021

Founded in 2014, Maven is the only platform in the market that combines an expansive, specialized telehealth network of more than 30 provider types with individual care navigation to support all parents and all paths to parenthood, from fertility through pregnancy, parenting and pediatrics. Next-Gen Care for Women and Families.

Amenities Health Closes Series A, Raising a Total of $10M to Modernize Health System Digital Front Doors

Healthcare IT Today

OCTOBER 2, 2023

Building off strong growth in 2023, Amenities plans to use the additional capital to further accelerate the adoption of the company’s groundbreaking Digital Front Door platform designed to help health systems improve access to care, deliver personalized patient experiences, and earn loyalty through membership programs. “As

Healthcare information Technology

Healthcare information Technology Hospitals

Considering Equity and Consumer Impacts of GLP-1 Drugs – A UBS Economist Weighs In

Jane Sarashon

APRIL 8, 2024

As Donovan notes, “GLP-1 medication is not cheap if purchased by a private individual,” estimating that only one in five adults has insurance that would cover anti-obesity medication. It is also worth stressing that the cost of treatment is for one person, and the food spending is for a household of people,” he notes.

COVID-19 Vaccine

COVID-19 Vaccine COVID-19 Health Insurance

559,000 Individuals Affected by Murfreesboro Medical Clinic & SurgiCenter Cyberattack

HIPAA Journal

JULY 4, 2023

As a precaution against identity theft and fraud, affected individuals have been offered 24 months of complimentary credit monitoring services. Complimentary credit monitoring services have been offered to the 24,180 affected individuals. In March 2022, an unauthorized individual accessed the email account of an employee.

Medicaid

Medicaid Medicaid Health Insurance Licensing

Data Breaches Reported by Henderson & Walton Women’s Center & Genesis Health Care

HIPAA Journal

SEPTEMBER 9, 2022

HWWC did not disclose when the email account was compromised but said there was a delay in issuing notification letters due to the lengthy process of reviewing all emails in the account to determine the types of information and specific individuals that had been affected. That process concluded on June 24, 2022.

Fraud

Fraud Licensing HIPAA Health Insurance

AI/ML Used for Clinical Trial-Site Identification Simultaneously Improves Enrollment Rates and Diversity

HIT Consultant

DECEMBER 12, 2022

The nuances of individual studies are different, and no two studies are identical. This dataset can include various types of trials, including observational, interventional and expanded access; the condition the trial is seeking to address; minimum and maximum ages of eligible patients and inclusion and exclusion criteria.

FDA

Connected Health Initiative asks Senate to pass Telehealth Modernization Act

Healthcare IT News - Telehealth

SEPTEMBER 15, 2020

It would also expand the types of practitioners eligible to furnish telehealth services and enhance telehealth services for federally qualified health centers and rural health centers, among other provisions. “On behalf of the CHI Steering Committee and membership, I want to thank Sen. ON THE RECORD.

COVID-19

COVID-19 Medicare Medicare Public Health

Wisconsin Department of Health Services Reports Breach of 12,000 Records

HIPAA Journal

OCTOBER 10, 2022

The presentation contained the following types of information: first and last names, date of birth, gender, county location, Wisconsin Medicaid member ID number, and social security number of affected members of Wisconsin Medicaid. Affected individuals were notified on September 29, 2022.

Medicaid

Medicaid Medicaid Governance Fraud

Wellth Announces $20M Series B for Continued Growth of Behavioral Science-Based Platform

Healthcare IT Today

APRIL 10, 2023

In my own family, my Uncle Roy struggled to manage his type 2 diabetes—he constantly missed doctor appointments, failed to take his medications, and never checked his blood sugars. This capital will allow us to continue our rapid membership growth and further invest in the behavioral science engine and team behind the Wellth platform.

Health Outcomes

Health Outcomes Hospitals ACA Doctors

How Will New FDA Hearing Aid Regulations Impact Health Plans?

HIT Consultant

NOVEMBER 24, 2022

This OTC category breaks down further into two types of products: self-fitting OTC hearing aids with a few preset settings that users can control either through an app or volume control wheel; and the second type, which is not self-fitting – basically an amplifier with volume control. Expanding membership. million U.S.

FDA

FDA Public Health Medicare Medicare

Fraudsters Prey on Factors Influencing Health Outcomes

AIHC

MAY 17, 2023

This government program provides food to low-wage working families, low-income seniors, people with disabilities, and other individuals with low incomes based on a sliding scale. This type of skimmer captures the account and pin number. SNAP participants can even buy seeds and edible plants to grow their own food.

Health Outcomes

Health Outcomes Fraud Compliance Governance

Despite Affordable Care Act Individual Mandate, Concierge Medicine on the Rise

The Health Law Firm

NOVEMBER 21, 2013

The Health Law Firm Despite the Affordable Care Act's (ACA) mandate that individuals acquire healthcare coverage, concierge medicine is on the rise in recent years. Leider, J.D.,

ACA

ACA Doctors

Data Theft Incidents Reported at Choice Health, MCG Health, & Goodman Campbell Brain and Spine

HIPAA Journal

JUNE 15, 2022

The South Carolina-based health insurance company, Choice Health, now part of Alight Solutions, has recently announced that the protected health information of some of its members has been obtained by an unauthorized individual. At this stage, it is unclear how many individuals have been affected.

Ransomware

Ransomware Health Insurance Fraud HIPAA

US Wellness Inc & Blue Shield of California Victims of GoAnywhere Hack

HIPAA Journal

MARCH 29, 2023

Blue Shield of California – GoAnywhere Hack Blue Shield of California (BSC) has confirmed that the protected health information of 63,341 individuals has been stolen in a hacking incident that exploited a zero-day vulnerability in Fortra’s GoAnywhere Managed File Transfer-as-a-service (MFTaaS) application.

Ransomware

Ransomware HIPAA Nurses

Regal Medical Group Ransomware Attack & Southeast Colorado Hospital District Email Breach

HIPAA Journal

FEBRUARY 7, 2023

Regal Medical Group said additional security measures have been implemented to protect against further attacks, and affected individuals have been offered complimentary memberships to the Norton LifeLock credit monitoring service for 12 months. Notification letters were sent to the affected individuals on February 3, 2023.

Ransomware

Ransomware Hospitals Licensing HIPAA

Lawsuits Increasing Following HIPAA Breaches

Compliancy Group

MAY 27, 2022

The breach impacts the protected health information (PHI) of as many as 850,000 individuals. On April 7, 2022, attorneys filed a lawsuit on behalf of an individual claiming to have identified suspicious activity in his bank account. No damages have been claimed, but the lawsuit requests a jury trial. The settlement amount includes $2.3

HIPAA

HIPAA Ransomware Compliance Hospitals

PHI Compromised in Incidents at CorrectHealth, UF Health Shands, Peter Brasseler, & Gifted Healthcare

HIPAA Journal

SEPTEMBER 1, 2022

The breach was detected on November 10, 2021, with the investigation confirming several employee email accounts had been accessed by an unauthorized individual. Notification letters were sent on August 25, 2022, and complimentary credit monitoring and identity theft protection services have been offered to affected individuals.

Ransomware

Ransomware Licensing Health Insurance HIPAA

23andMe Launches Prevention-Based Health Membership, Total Health

SAC Health Theft Incident and Multiple Ransomware Attacks Reported

Trending Sources

PHI of 521,000 Individuals Compromised in Security Breach at Morley Companies

South Denver Cardiology Associates Confirms Data Breach Affecting 287,000 Patients

Receivables Performance Management Data Breach Affects More Than 3.7 Million Individuals

Email Incidents Reported by Ultimate Care, CareOregon Advantage, and University Medical Center Southern Nevada

Fast Track Urgent Care Confirms 258,411 Individuals Affected by 2021 PracticeMax Ransomware Attack

Health Aid of Ohio Settles Class Action Data Breach Lawsuit

Cyberattack and Data Destruction Reported by First Street Family Health

Florida Orthopaedic Institute Proposes $4 Million Settlement to Resolve Class Action Data Breach Lawsuit

Capital Region Medical Center and Labette Health Announce Potential PHI Breaches

PHI of 10,000 Individuals Exposed Due to Houston Health Department Portal Glitch

PHI of Over 500,000 Individuals Potentially Compromised in 4 Security Incidents

Data Breaches Reported by Henderson & Walton Women’s Center & Genesis Health Care Inc.

70,000 Valle del Sol Community Health Patients Affected by Cyberattack

Amenities Health Closes $10M to Modernize Health System Digital Front Doors

Ransomware Attack on Medical Associates of the Lehigh Valley Affects 75K Patients

Online Alcohol Counseling Service Provider Reports 109K-record Tracking Tool Data Breach

Three Healthcare Providers Report Phishing Attacks

Cyberattacks Reported by Heartland Alliance and CentraState Medical Center

Hacking and IT Incidents Affect 563,000 Patients and Health Plan Members

PHI Compromised in 4 Recent Ransomware and Malware Attacks

Horizon Actuarial Services Reports Data Theft and Extortion Incident

Membership Medicine: The Future of Primary Care?

More Than 233,000 Patients Affected by Cyberattack on FMC Services

Security Breaches Reported by Benefit Plan Administrators and The People Concern

Data Breaches Reported by University Pediatric Dentistry, OrthoNebraska, Michigan Avenue Immediate Care

Virtual Health Clinic for Women & Families Maven Reaches $1B Valuation

Amenities Health Closes Series A, Raising a Total of $10M to Modernize Health System Digital Front Doors

Considering Equity and Consumer Impacts of GLP-1 Drugs – A UBS Economist Weighs In

559,000 Individuals Affected by Murfreesboro Medical Clinic & SurgiCenter Cyberattack

Data Breaches Reported by Henderson & Walton Women’s Center & Genesis Health Care

AI/ML Used for Clinical Trial-Site Identification Simultaneously Improves Enrollment Rates and Diversity

Connected Health Initiative asks Senate to pass Telehealth Modernization Act

Wisconsin Department of Health Services Reports Breach of 12,000 Records

Wellth Announces $20M Series B for Continued Growth of Behavioral Science-Based Platform

How Will New FDA Hearing Aid Regulations Impact Health Plans?

Fraudsters Prey on Factors Influencing Health Outcomes

Despite Affordable Care Act Individual Mandate, Concierge Medicine on the Rise

Data Theft Incidents Reported at Choice Health, MCG Health, & Goodman Campbell Brain and Spine

US Wellness Inc & Blue Shield of California Victims of GoAnywhere Hack

Regal Medical Group Ransomware Attack & Southeast Colorado Hospital District Email Breach

Lawsuits Increasing Following HIPAA Breaches

PHI Compromised in Incidents at CorrectHealth, UF Health Shands, Peter Brasseler, & Gifted Healthcare

Stay Connected