Trends & Reports March 20, 2019 UW Medicine Exposes 1m Patients’ PHI by Removing Security Around 974,000 patients of UW Medicine have had their PHI exposed online due to the accidental disabling of protections on a website server. The error ... Read more
Compliance March 5, 2019 Milestone Family Medicine Data Breach Made Known to St. Francis Patients Bon Secours St. Francis Health System is getting in touch with patients in relation to a security breach that may have led to some of ... Read more
Security Breaches March 4, 2019 Rutland Regional Medical Center Email Accounts Accessed by Hackers Rutland City -based Rutland Regional Medical, the biggest community hospital in Vermont, has uncovered a hack of its IT systems where cybercriminals obtained access to ... Read more
Compliance February 13, 2019 Proposal to Pay Patients to Share Their Healthcare Data Included in Oregon Health Information Property Act The Oregon Health Information Property Act proposes that healthcare patients should be permitted to legally authorize their healthcare suppliers to sell their health data and ... Read more
Security Breaches February 13, 2019 Facebook Data Gathering Reined in by German Facebook Ruling Recently he German antitrust body, Bundeskartellamt, released a decision dictating that the way Facebook obtains, links, authors and uses data in user accounts is an ... Read more
Security Breaches February 9, 2019 Minnesota Infertility Clinic Suffers Malware Attack Malware has been downloaded to the network of Reproductive Medicine and Infertility Associates, an infertility clinic located in Woodbury, Minnesota. While no proof was found ... Read more
Compliance February 6, 2019 Roper St. Francis Healthcare Phishing Attack Sees 13 Accounts Compromised A massive phishing campaign targeting Roper St. Francis Healthcare has seen attackers gain access to the email accounts of 13 staff members. The phishing attack ... Read more
Security Breaches February 3, 2019 $935,000 Settlement Agreed Between Aetna and California AG in HIV Status Breach Case Health insurance company Aetna has reach an agreement to to a HIPAA penalty of $935,000 to the California Attorney General in relation to alleged violations ... Read more
Tools & Practices February 2, 2019 Industry-Wide Effort to Accelerate Interoperability Urged by Hospital Associations Seven major hospital associations, including the American Hospital Association (AHA), are leading pleas for an industry-wide effort to enhance data sharing. The new report is ... Read more
Compliance January 25, 2019 Warning About DNS Hijacking Issued by DHS The U.S. Department of Homeland Security (DHS) Cybersecurity and Infrastructure Agency (CISA) has released an emergency warning regarding DNS hijacking campaigns. All government agencies have been told ... Read more
Compliance January 23, 2019 Email Account Breach Impacts Valley Hope Association Patients Valley Hope Association has revealed that a hacker has been able to log onto the email account of a member of staff. The organisation discovered ... Read more
Security Breaches January 15, 2019 Four-Month Email Account Hack Impacts 111K Individuals Centerstone Insurance and Financial Services, which conducts its business as BenefitMall, has begun alerting more than 111,000 individuals that some of their protected health information ... Read more
Compliance January 12, 2019 Ransomware Attack at Bobby Yee Podiatric Offices Affects 24,000 Patients The Podiatric Offices of Bobby Yee have been subjected to a ransomware which led to the encryption of files that included the protected health information ... Read more
Security Breaches January 4, 2019 Choice Rehabilitation Residents Affected by Email Breach It has been found that an unauthorized individual hacked into a corporate email account of one of the employees of Choice Rehabilitation of Creve Coeur, ... Read more
Tools & Practices January 2, 2019 Vulnerabilities Identified in LabKey Server Community Edition Security specialists at Tenable Research have identified a number of flaws in LabKey Server Community Edition 18.2-60106.64 which could be targeted to obtain user credentials, ... Read more
Security Breaches January 1, 2019 Ransomware Attack Hits Vendor of Dental Center of Northwest Ohio Existing and previous at the Dental Center of Northwest Ohio in Toledo, OH, have been contacted to advise them that some of their protected health ... Read more
Trends & Reports December 12, 2018 2018 Security Awareness Training Statistics A recent survey conducted by Mimecast has produced some interesting security awareness training statistics for 2018. The survey shows many businesses are taking considerable risks ... Read more
Tools & Practices May 10, 2018 Cloud Tool Reduces AWS Costs by 60% Healthcare groups are, increasingly, implementing cloud-based systems to meet their IT requirements, but while there are multiple reasons for moving applications, infrastructure and data center ... Read more
Security Breaches May 9, 2018 17,639 Capital Digestive Care Clients Impacted by Hacking Attack Silver Spring, MD-based gastroenterology group Capital Digestive Care has announced that one of its business associates distributed files to a commercial cloud server that dd not ... Read more
Security Breaches April 26, 2018 Manufacturer of Oxygen Equipment Reports Data Theft Incident Possibly Impacting 30,000 Individuals Inogen, a manufacturer of portable oxygen concentrators, has found that an unauthorized individual has obtained the credentials of a employees and has used them to ... Read more
Compliance April 24, 2018 Integrated Rehab Consultants Takes 16 Months to Notify Patients of PHI Breach Illinoie-based physiatry organization Integrated Rehab Consultants is broadcasting notification correspondence to some patients alerting them to the exposure of some of their protected health information, ... Read more
Compliance April 23, 2018 Des Moines Crisis Observation Center Discovers Inappropriate Dissemination of Patient Data 1,071 patients who were treated at the Des Moines Crisis Observation Center managed by Polk County Health Services Inc., have been contacted to advise them ... Read more
Compliance April 19, 2018 Misconfigured Security Settings Results in63,500 Middletown Medical Patients Having PHI Exposed A security setting that was not configured properly on a radiology system has lead to the patients’ protected health information of tens of thousands of ... Read more
Compliance April 18, 2018 Possible Abuse of Credit Card Details Affects 1,500 Baptist Health Patients A former worker at Baptist Health’s West Kendall Baptist Hospital based in Miami, FL illegally obtained the credit card details of patients and used the ... Read more
Compliance April 17, 2018 Multiple Staff Email Accounts Accessed in UnityPoint Health Phishing Attack It has been discovered that the email accounts of several employees of UnityPoint Health hhave been compromised and accessed by unauthorized people. Access to the staff ... Read more
Security Breaches April 13, 2018 Almost 14,000 Affected by SAMBA Privacy Breach 14,000 individuals are being alerted about a February 2018 breach of protected health information at the Special Agents Mutual Benefit Association (SAMBA). The data breach ... Read more
Security Breaches April 12, 2018 Data Breach Notification and Information Security Laws Updated in Oregon Data breach notification laws in Oregon have been updated to enhance security for state residents whose personal data is accessible to the public during a ... Read more
Compliance April 11, 2018 Arc of Erie County New York Reports 3,751 Patients’ PHI Was Exposed on Internet over 30-Month Period A provider of person-centered services to individuals with developmental disabilities, The Arc of Erie County New York (The Arc), has reported that two spreadsheets listing the ... Read more
Security Breaches April 4, 2018 Data Breach Notification Law Enacted by South Dakota It has taken some time for South Dakota to introduce legislation to enhance protections for consumers impacted by breaches of their personal private data. Laws ... Read more
Compliance April 2, 2018 Cambridge Health Alliance Advised of PHI Breach by Law Enforcement Massachusetts based Cambridge Health Alliance (CHA) have been advised, by law enforcement agencies, that the protected health information of some of its clients has been found ... Read more
