HIPAA Journal

FEBRUARY 23, 2022

Logan Health Medical Center in Kalispell, MT, has recently started notifying certain patients that hackers gained access to a file server that housed patient information in “a highly sophisticated criminal attack.”. The intrusion was limited to a single file server and its electronic medical records were not compromised.

Electronic Medical Records 139

Electronic Medical Records HIPAA Health Insurance Medical Billing 139

HIPAA Journal

JANUARY 6, 2023

The Chicago, IL-based health system, CommonSpirit Health, is facing a class action lawsuit over its October 2022 ransomware attack. Malicious actors gained access to its IT systems on September 16, 2022, and deployed ransomware on October 2, 2022.

Ransomware 94

Ransomware Fraud Electronic Medical Records Hospitals 94

Compliancy Group

JUNE 29, 2022

In early December of 2021, Eye Care Leaders (Eye Care), an electronic medical record vendor supplying business associate services to eye care providers across the country, discovered it had incurred a data breach. Eye Care’s myCare Integrity solution was hacked via a ransomware attack on December 4, 2021. .

Ransomware 98

Ransomware Electronic Medical Records HIPAA Compliance 98

HIPAA Journal

AUGUST 11, 2022

Between January 1, 2022, and June 30, 2022, 347 healthcare data breaches of 500 or more records were reported to the Department of Health and Human Services’ Office for Civil Rights (OCR) – the same number of data breaches reported in 2H, 2021. The number of healthcare records breached has continued to fall. In 1H, 2021, 27.6

HIPAA 130

HIPAA Ransomware Electronic Medical Records Compliance 130

HIPAA Journal

MARCH 9, 2022

Over 500,000 individuals have been affected by cyberattacks on Norwood Clinic, PracticeMax, Central Indiana Orthopedics, and an unauthorized electronic medical record incident at Ascension Michigan. While notification letters were delayed, the breach was announced on the CIO website shortly after it was detected in October 2021.

Electronic Medical Records 125

Electronic Medical Records Health Insurance Ransomware HIPAA 125

HIPAA Journal

MARCH 23, 2023

Associates in Dermatology, a network of dermatology clinics in Indiana, Kentucky, and New York, has started notifying patients that some of their protected health information has been exposed in a ransomware attack on one of its business associates.

Ransomware 74

Ransomware Electronic Medical Records Records Management HIPAA 74

HIPAA Journal

MAY 25, 2023

The study involved a retroactive analysis of two academic emergency departments operated by a healthcare delivery organization (HDO) in San Diego, which were in the vicinity of an unrelated HDO that experienced a ransomware attack. increase in visits where patients left against medical advice, and a 47.6% The researchers observed a 74.6%

Hospitals 116

Hospitals Ransomware Electronic Medical Records HIPAA 116

HIPAA Journal

JULY 25, 2022

Web applications have grown in popularity in healthcare in recent years and are used for patient portals, electronic medical record systems, scheduling appointments, accessing test results, patient monitoring, online pharmacies, dental CAD systems, inventory management, and more.

Electronic Medical Records 134

Electronic Medical Records Ransomware COVID-19 HIPAA 134

HIPAA Journal

AUGUST 31, 2022

This method of attack is becoming more common, where data is stolen, deleted, and then threats are issued to publish or sell the data if payment is not made to the attackers, but files are not encrypted using ransomware. Northeast Rehabilitation Hospital Network Notifies Patients About 2021 Cyberattack.

Electronic Medical Records 120

Electronic Medical Records Ransomware HIPAA Health Insurance 120

Compliancy Group

DECEMBER 20, 2024

The settlement is the third ransomware settlement entered into by OCR. On October 31, 2017, OCR initiated a compliance review of HVHS after the media reported that HVHS had experienced a ransomware attack. OCR imposed the ransomware civil monetary penalty for potential HIPAA Security Rule violations.

Ransomware 52

Ransomware HIPAA Fraud Electronic Medical Records 52

Compliancy Group

JANUARY 25, 2023

In 2021, 15 percent of the breaches tracked by ITRC affected healthcare companies. Cyberattacks continued to be criminals’ weapons of choice, with 1,595 breaches in 2022, a slight decrease from 1,613 in 2021, with drops year-over-year in the number of breaches attributed to phishing, ransomware, and malware.

HIPAA 119

HIPAA Electronic Medical Records Due Diligence Compliance 119

HIPAA Journal

AUGUST 8, 2022

Carmel, IN-based Goodman Campbell Brain and Spine has started notifying 363,000 current and former patients that some of their protected health information was stolen prior to data being encrypted with ransomware and some of the stolen data has been published on the gang’s dark web data leak site.

Ransomware 91

Ransomware Electronic Medical Records HIPAA Licensing 91

HIPAA Journal

JANUARY 31, 2024

which does business as PJ&A NV Business Associate 8,952,212 Hackers access to its network between March 27, 2023, and May 2, 2023 Managed Care of North America (MCNA) GA Business Associate 8,861,076 Ransomware attack with data leak (LockBit ransomware group) Welltok, Inc.

Ransomware 128

Ransomware HIPAA Hospitals Compliance 128

HIPAA Journal

OCTOBER 28, 2022

Vincent’s Coastal Cardiology Brunswick Suffers Ransomware Attack. Vincent’s Coastal Cardiology Brunswick in Georgia has started notifying 71,227 patients about a security breach that affected its legacy systems, including its legacy electronic medical record system. Ascension St. Ascension St.

Ransomware 113

Ransomware Electronic Medical Records HIPAA Health Insurance 113

HIPAA Journal

NOVEMBER 7, 2022

On November 5, 2021, the email accounts of two employees of Adelanto Healthcare Ventures (AHCV) were accessed by an unauthorized individual. Luke’s Health is currently recovering from a ransomware attack on its parent company, CommonSpirit Health, that occurred more than a month ago.

Electronic Medical Records 81

Electronic Medical Records Ransomware HIPAA Licensing 81

HIPAA Journal

SEPTEMBER 28, 2022

in Iowa has recently confirmed that it was affected by the data breach at the electronic medical record provider, Eye Care Leaders. Wolfe Clinic used the myCare Integrity medical records platform, which was accessed by an unauthorized party on or around December 4, 2021, who deleted databases and system configuration files.

Electronic Medical Records 79

Electronic Medical Records Ransomware Fraud HIPAA 79

HIPAA Journal

SEPTEMBER 19, 2022

The 25.75% percentage decrease from July 2022 was accompanied by a significant reduction in breached records, which dropped almost 30% month over month. 18 healthcare data breaches of 10,000 or more records were reported to the HHS’ Office for Civil Rights in August 2022, which have been summarized in the table below. Network Server.

Ransomware 112

Ransomware HIPAA Electronic Medical Records Compliance 112

Hall Render

APRIL 7, 2023

workers were laid off in Q1 Fast closures of nursing homes in Massachusetts raise alarms and worry over patients Former executives at Billerica lead poisoning test maker facing federal charges Lawmakers eye reforms to Health Policy Commission oversight Mass. has one of the highest rates avoidable hospital visits in U.S.

US Department of Health and Human Services 40

US Department of Health and Human Services Nursing Homes COVID-19 Nurses 40