Security Breaches December 12, 2019 100 Dental Practices Affected by Ransomware Attack on Managed Service Provider An Englewood, CO-based Complete Technology Solutions (CTS) Colorado IT firm that specializes in supplying managed IT services to over 100 dentist practices has been infiltrated ... Read more
Security Breaches December 12, 2019 Cheyenne Regional Medical Center Experiences Phishing Attack Cheyenne Regional Medical Center in Wyoming has recently became aware that patient data may have been illegally obtained due to a phishing attack identified in ... Read more
Compliance December 12, 2019 Sunrise Community Health and Katherine Shaw Bethea Hospital Suffer Phishing Attacks Evans, CO-based Sunrise Community Health has learned that the email accounts of several staff members were compromised due to employees responding to phishing emails. The ... Read more
Compliance December 9, 2019 HIPAA Compliance for Amazon Lex Amazon has revealed that the Amazon Lex chatbot service now supports HIPAA compliance and can be used by healthcare groups without breaching Health Insurance Portability ... Read more
Compliance November 30, 2019 Timothy Noonan Revealed as New Deputy Director for Health Information Privacy at Office for Civil Rights The Department of Health and Human Services’ Office for Civil Rights (OCR) has appointed Timothy Noonan Deputy Director for Health Information Privacy. The position of ... Read more
Compliance November 24, 2019 Ransomware Attack Impacts 107,000 Ferguson Medical Group Patients Saint Francis Healthcare System has revealed that the computer network of Ferguson Medical Group has been hit by a ransomware attack. The attack took place ... Read more
Trends & Reports November 23, 2019 9,800 Employee Records Potentially Accessed Without Authorization at Former Aegis Medical Group The Florida physician network, Aegis Medical Group, has begun contacting 9,800 patients to advise them that their protected health information may have been obtained and ... Read more
Security Breaches November 20, 2019 UNC Chapel Hill School of Medicine and Starling Physicians Report Phishing Attacks University of North Carolina Chapel Hill School of Medicine has been hit by a phishing attack in which the protected health information of 3,716 patients ... Read more
Security Breaches November 16, 2019 California Addiction Treatment Center Hit by Cyber Attack An AWS S3 storage bucket owned by Sunshine Behavioral Health, LLC, a San Juan Capistrano, CA-based organization of drug and alcohol addiction rehabilitation centers, has ... Read more
Security Breaches November 14, 2019 Loyola Medicine and Main Street Clinical Associates Report PHI Theft Incidents Main Street Clinical Associates, PA., in Durham, NC has contacted certain patients that some of their protected health information was stored on devices that were ... Read more
Security Breaches November 3, 2019 Business Associate Phishing Attack Impacts TennCare and Florida Blue Members More healthcare organizations have revealed they have been impacted by a data breach at Magellan Health National Imaging Associates, a business associate of several HIPAA-covered ... Read more
Compliance October 30, 2019 Kalispell Regional Healthcare Contacts 140,209 Patients About Phishing Attack Kalispell Regional Healthcare, located in Montana, is currently getting in touch with around 140,000 patients that some of their protected health information (PHI) was potentially ... Read more
Compliance October 25, 2019 Range of HIPAA Breaches Result in $2.15 Million Civil Monetary Penalty for Jackson Health System The Department of Health and Human Services’ Office for Civil Rights has sanctioned a $2.15 million civil monetary penalty against the Miami, FL-located nonprofit academic ... Read more
Compliance October 23, 2019 Millions of Patients’ Sensitive Data Found to be Accessible via the Internet Due to the failure of nine companies to secure their medical databases, the sensitive health information of millions of patients has been exposed over the ... Read more
Compliance October 23, 2019 15,982 South Texas Dermatopathology Patients Contacted in Relation to AMCA Data Breach South Texas Dermatopathology is the most recent victim of the data breach at American Medical Collection Agency (AMCA) to make the breach known to the ... Read more
Compliance October 19, 2019 Shared Network Drives Expose Thousands of Veterans’ Records A report published by the Department of Veteran Affairs’ Office of Inspector General (VA OIG) audit has revealed that Internal Department of Veteran Affairs (VA) ... Read more
Compliance October 11, 2019 Healthcare Data Breach Report for September 2019 Published 36 healthcare data breaches of more than 500 records were reported to the Department of Health and Human Services’ Office for Civil Rights, during September, ... Read more
Compliance October 8, 2019 PHI Disclosures on Yelp Lead to $10,000 Fine for Dental Practice The Department of Health and Human Services’ Office for Civil Rights has agreed to a HIPAA settlement for a violation case with Elite Dental Associates ... Read more
Trends & Reports October 1, 2019 National Patient Identifier Repeal Act Introduced by Senator Rand Paul Sen. Rand Paul, M.D., (R-Kentucky) has brought in a new bill that aims to have the national patient identifier provision of HIPAA permanently deleted due ... Read more
Compliance September 23, 2019 Major Disruption to Patient Services at Campbell County Health due to Ransomware Attack Campbell County Health in Gillette, WY, has experienced a ransomware attack that has shut down hospital systems and is preventing access to patient data. The ... Read more
Compliance September 21, 2019 Flaws Discovered in WLAN Firmware Used by Philips IntelliVue Portable Patient Monitors Two flaws have been discovered in Philips IntelliVue WLAN firmware which impact certain IntelliVue MP monitors. The flaws could be exploited by hackers to download ... Read more
Security Breaches September 20, 2019 Phishing Attack on Ramsey County Impacts 117,905 Individuals Ramsey County has revealed that a phishing attack that took place in August 2018 impacted a great many more individuals than first thought. The victim ... Read more
Trends & Reports September 20, 2019 NCCoE Releases Mobile Device Security Guidance for Corporate-Owned Personally Enabled Devices The National Cybersecurity Center of Excellence (NCCoE) has published new draft NIST mobile device security guidance to help groups address the risks created by corporate-owned ... Read more
Compliance September 18, 2019 Phishing Attacks at Magellan Health Subsidiaries Impact 56,226 Presbyterian Health Plan Subscribers Magellan Health, based in Scottsdale, Arizona, has revealed that discovered two of its subsidiaries have experienced phishing attacks that exposed the protected health information of ... Read more
Tools & Practices September 16, 2019 First HIPAA Violation Case Under 2019 Right of Access Initiative Settled by OCR Earlier in 2019, the Department of Health and Human Services’ Office for Civil Rights (OCR) revealed that one of the main focuses of HIPAA enforcement ... Read more
Compliance September 11, 2019 Unsecured Online PACS Makes 400 Million Medical Images Freely Accessible Following a recently completed investigation by ProPublica, the German public broadcaster Bayerischer Rundfunk, and vulnerability and analysis company, Greenbone Networks has stated that 24.3 million ... Read more
Compliance September 10, 2019 UC Health Phishing Attack Affects Multiple Email Accounts University of Cincinnati Health (UC Health) is looking into a security breach that saw the email accounts of multiple employees accessed by an unauthorized person ... Read more
Compliance September 8, 2019 13,905 Patients Targeted in Artesia General Hospital Phishing Attack Artesia General Hospital, located in Artesia New Mexico, has stated that protected health information (PHI) of 13,905 patients has been illegally accessed in a planned ... Read more
Trends & Reports August 28, 2019 Kaspersky Lab Survey: No Cybersecurity Training for 32% of Healthcare Workers There have been a minimum of 200 breaches of greater than 500 records reported since January and 2019 looks set to be another record-breaking 12 ... Read more
Compliance August 27, 2019 PHI of 183,000 Patients Exposed in Phishing Attack on Presbyterian Healthcare Services The Albuquerque, NM-based not-for-profit health organization Presbyterian Healthcare Services, has suffered a phishing attack that resulted in the email accounts of several workers subjected to ... Read more
