HIPAA Journal

FEBRUARY 16, 2022

Philadelphia FIGHT Community Health Centers has recently announced it was the victim of a cyberattack on November 30, 2021. The information potentially compromised in the attack included names, dates of birth, Social Security numbers, medical diagnoses, treatment information, and health insurance information.

Electronic Medical Records 124

Electronic Medical Records Health Insurance Licensing HIPAA 124

HIPAA Journal

FEBRUARY 23, 2022

Logan Health Medical Center in Kalispell, MT, has recently started notifying certain patients that hackers gained access to a file server that housed patient information in “a highly sophisticated criminal attack.”. NHS Management Alerts Patients About May 2021 Cyberattack.

Electronic Medical Records 142

Electronic Medical Records HIPAA Health Insurance Medical Billing 142

HIPAA Journal

NOVEMBER 8, 2022

Suspicious activity was detected within its network on May 12, 2021, with the forensic investigation confirming unauthorized individuals had access to its network for a month between April 20, 2021, and May 17, 2021. During that time, the attackers may have viewed or acquired sensitive patient data. The post U.S.

Licensing 67

Licensing Health Insurance HIPAA 67

HIPAA Journal

MARCH 9, 2022

The Birmingham, AL-based multi-specialty clinic, Norwood Clinic, has recently started notifying 228,103 individuals that some of their protected health information was accessed in a cyberattack that was detected on October 22, 2021. The review was concluded on February 2, 2022, and affected customers were updated on February 14, 2022.

Electronic Medical Records 131

Electronic Medical Records Health Insurance Ransomware HIPAA 131

HIPAA Journal

JULY 14, 2022

The incident was detected on December 22, 2021, when suspicious activity was identified within its email environment. The forensic investigation confirmed that several employee email accounts had been accessed by unauthorized individuals at various points between February 9, 2021, and December 22, 2021.

Licensing 117

Licensing Health Insurance Ransomware HIPAA 117

HIPAA Journal

MARCH 4, 2022

Miami Lakes, FL-based Catholic Health Services has discovered the email accounts of three Catholic Hospice employees have been accessed by unauthorized individuals. Crossroads Health in Ohio has experienced a cyberattack that disrupted some of its IT systems. Bible Fellowship Church Homes, Inc.

Health Insurance 130

Health Insurance Licensing HIPAA 130

HIPAA Journal

APRIL 7, 2022

SuperCare Health, a Downey, CA-based post-acute, in-home respiratory care provider serving the Western United States, has recently started notifying 318,379 patients that some of their protected health information has been exposed and potentially accessed by unauthorized individuals in a cyberattack that occurred in July 2021.

Licensing 137

Licensing HIPAA Health Insurance Hospitals 137

HIPAA Journal

MAY 9, 2022

one of the largest providers of dental insurance in New York state, has announced that the email account of an employee was compromised in a phishing attack on November 24, 2021. Healthplex Inc.,

ADA 105

ADA Licensing Health Insurance HIPAA 105

HIPAA Journal

APRIL 18, 2022

NRH explained on its website that a limited number of employee email accounts were accessed by unauthorized individuals over a period of 10 months in 2021 between January 26, 2021, and November 23, 2021. The types of information exposed included names, Social Security numbers, driver’s license numbers, state-issued I.D.

Licensing 129

Licensing HIPAA Health Insurance Hospitals 129

HIPAA Journal

JULY 11, 2022

According to the hospital operator, Tower Health, the unauthorized access was discovered during a routine audit of medical record access logs. Some of the accessed records included partial Social Security numbers and health insurance information. Family Practice Center Reports October 2021 Hacking Incident.

Hospitals 123

Hospitals HIPAA Health Insurance Licensing 123

Health Populi

MAY 21, 2020

Nearly every respondent in the study reported having health insurance coverage. Among those covered with insurance, one-half had employer-sponsored insurance, 1 in 4 Medicare, and 13%, individual cover. Another 8% had Medicaid or a state health insurance program.

COVID-19 161

COVID-19 Doctors Health Insurance Medicare 161

HIPAA Journal

JULY 5, 2022

Individuals who had their Social Security numbers or driver’s license numbers exposed have been offered complimentary credit monitoring and identity theft protection services. The breach occurred in early December 2021 and was detected when the account was used to send spam emails.

Licensing 117

Licensing Electronic Medical Records Health Insurance Hospitals 117

HIPAA Journal

APRIL 28, 2022

Irvine, CA-based Smile Brands, a provider of support services for dental offices, has recently provided an update on the number of individuals affected by a ransomware attack that was discovered on April 24, 2021. The initial notice to the Maine attorney general was submitted on October 8, 2021.

Ransomware 117

Ransomware Health Insurance HIPAA Licensing 117

HIPAA Journal

JUNE 9, 2022

Suspicious activity was detected in the employee’s email account on November 24, 2021. The forensic investigation confirmed the breach was limited to a single email account that was accessed by an unauthorized individual between November 10, 2021, and November 24, 2021.

Licensing 133

Licensing HIPAA Health Insurance Hospitals 133

HIPAA Journal

APRIL 15, 2022

The incident involved the exposure and potential theft of the protected health information of 318,400 patients, including names, addresses, birth dates patient account numbers, medical record numbers, health insurance information, testing, diagnostic, treatment, and claims information.

Electronic Medical Records 124

Electronic Medical Records HIPAA Health Insurance Fraud 124

HIPAA Journal

APRIL 1, 2022

On January 24, 2022, SRHD announced that an employee email account had been compromised on December 21, 2021. Buffalo, NY-based Ciox Health provides health information management services to healthcare providers and insurers. CMMHC identified potentially malicious activity in its email environment on October 21, 2021.

Fraud 141

Fraud HIPAA Licensing Health Insurance 141

HIPAA Journal

MAY 2, 2022

Notification letters were mailed on February 22, 2022, and complimentary credit monitoring and identity protection services have been offered to individuals whose Social Security number or driver’s license number was exposed. Los Angeles County Department of Mental Health, California. Valley View Hospital, Colorado.

HIPAA 112

HIPAA Health Insurance Licensing Hospitals 112

HIPAA Journal

NOVEMBER 16, 2022

Unauthorized individuals have gained access to the email system of the Administrative Fund of the Detectives’ Endowment Association of the Police Department of the City of New York (NYCDEA) and potentially viewed or obtained the protected health information of 21,544 individuals.

HIPAA 111

HIPAA Licensing Health Insurance Fraud 111

HIPAA Journal

MARCH 23, 2022

New Jersey Brain and Spine (NJBS) has recently announced it was the victim of a cyberattack on or around November 16, 2021, that encrypted data on its network. NJBS said it immediately took steps to secure its network and engaged a computer forensic firm to investigate the security breach.

HIPAA 136

HIPAA Licensing Health Insurance Governance 136

HIPAA Journal

SEPTEMBER 8, 2022

The Michigan law firm, Warner Norcross and Judd LLP, has issued notification letters to 255,160 individuals advising them about an October 2021 security breach in which files containing their personal and protected health information were potentially accessed and exfiltrated from its systems.

Fraud 114

Fraud Health Insurance Ransomware HIPAA 114

HIPAA Journal

MAY 11, 2023

million settlement to resolve a class action lawsuit filed in response to a 2021 hacking incident in which the protected health information of 318,379 patients was compromised. The Californian home care service provider, SuperCare, has proposed a $2.25

HIPAA 103

HIPAA Health Insurance Licensing Hospitals 103

HIPAA Journal

SEPTEMBER 1, 2022

CorrectHealth Notifies 54,000 Patients About November 2021 Email System Breach. The breach was detected on November 10, 2021, with the investigation confirming several employee email accounts had been accessed by an unauthorized individual. UF Health Shands said the individual is no longer employed by UF Health Shands.

Ransomware 101

Ransomware Licensing Health Insurance HIPAA 101

HIPAA Journal

JULY 3, 2023

The compromised information varied from patient to patient and may have included first and last names, addresses, dates of birth, Social Security numbers, driver’s license numbers, government-issued identification numbers, health insurance information, medical conditions/diagnoses, and other health or medical information.

Health Insurance 98

Health Insurance Licensing Ransomware HIPAA 98

HIPAA Journal

FEBRUARY 14, 2023

Hackers gained access to Umass Memorial Health’s email environment between June 24, 2020 and January 7, 2021, as a result of responses to phishing emails. The breach affected almost 3,000 Massachusetts residents and was reported to the HHS’ Office for Civil Rights as affecting 209,048 individuals.

Fraud 115

Fraud Licensing Health Insurance HIPAA 115

HIPAA Journal

MARCH 1, 2022

2021, and successfully encrypted files on its network and servers. Around 4 GB of data was uploaded to the leak site and the files contained a selection of data including scanned driver’s licenses, patient records, insurance billing information, and other PHI.

Ransomware 145

Ransomware Licensing HIPAA Health Insurance 145

HIPAA Journal

MARCH 1, 2022

Priority Health Confirms Breach of Member Portal Accounts. The Michigan health insurer Priority Health has recently announced a breach of several member portal accounts. According to a recent breach notice, the security breach was detected on December 16, 2021.

COVID-19 112

COVID-19 Health Insurance HIPAA Licensing 112

HIPAA Journal

MARCH 21, 2022

As previously reported on this site, JDC Healthcare Management detected malware within its IT network on or around August 9, 2021, with the forensic investigation into the security breach confirming the malware was downloaded onto its systems on July 27, 2021. Further information on the data breach has now been obtained.

Ransomware 111

Ransomware Licensing HIPAA Health Insurance 111

The Health Law Firm Blog

JUNE 23, 2024

is Board Certified by The Florida Bar in Health Law On September 27, 2021, Humana agreed to pay $11.2 million to end claims that the health insurance company denied a group of nurses overtime pay by misclassifying them as exempt employees. By George F. Indest III, J.D., A Wisconsin federal judge approved the [.]

Health Insurance 52

Health Insurance Nurses Licensing Doctors 52

HIPAA Journal

FEBRUARY 15, 2023

The medical device manufacturer Electromed has proposed a $850,000 settlement to resolve claims related to a June 2021 ransomware attack and data breach involving the protected health information of 47,200 individuals.

Ransomware 108

Ransomware Fraud Licensing Health Insurance 108

The Health Law Firm Blog

MAY 14, 2024

is Board Certified by The Florida Bar in Health Law On September 27, 2021, Humana agreed to pay $11.2 million to end claims that the health insurance company denied a group of nurses overtime pay by misclassifying them as exempt employees. By George F. Indest III, J.D., A Wisconsin federal judge approved the [.]

Health Insurance 52

Health Insurance Nurses Licensing Doctors 52

HIPAA Journal

APRIL 8, 2022

Advanced Medical Practice Management Sends Notification Letters About July 2021 Cyberattack and Data Theft Incident. AMPM identified suspicious activity related to files within its IT environment on August 5, 2021, and immediately secured its network.

Medical Billing 133

Medical Billing Licensing Health Insurance Medicaid 133

HIPAA Journal

MAY 19, 2022

A comprehensive review of the affected files confirmed they contained information such as names, birth dates, addresses, Social Security numbers, driver’s license numbers, passport numbers, financial account information such as bank account and routing numbers, and online account usernames and passwords.

COVID-19 114

COVID-19 Health Insurance HIPAA Licensing 114

HIPAA Journal

MARCH 30, 2022

Ransomware Attack Affects 85,282 Law Enforcement Health Benefits Members. Law Enforcement Health Benefits, Inc. LEHB) has recently announced that it was the victim of a ransomware attack that was detected on September 14, 2021.

Ransomware 142

Ransomware Electronic Medical Records HIPAA Licensing 142

HIPAA Journal

FEBRUARY 16, 2023

The Nashville, TN-based health system, Advent Health Partners, has proposed a $500,000 settlement to resolve claims related to a September 2021 data breach involving the protected health information of 61,072 patients. Advent Health Partners detected a breach of its email environment in early September 2021.

HIPAA 107

HIPAA Fraud Licensing Health Insurance 107

HIPAA Journal

SEPTEMBER 12, 2023

Seymour, IN-based Schneck Medical Center has settled a lawsuit with the Indiana attorney general, Todd Rokita, over a 2021 ransomware attack and data breach that affected 89,707 Indiana residents.

HIPAA 103

HIPAA Ransomware Health Insurance Fraud 103

HIPAA Journal

MARCH 6, 2023

Cedar Park, TX-based Dental Health Management Solutions (DHMS), a provider of dental services to the government/military and private patients has recently announced – via its legal counsel – that the protected health information of certain patients was exposed in a 2021 hacking incident.

Electronic Medical Records 100

Electronic Medical Records HIPAA Licensing Nurses 100

HIPAA Journal

MAY 17, 2022

The review of the files revealed they mostly contained protected health information such as names, addresses, medical information, and/or health insurance information. Notification letters have now been sent to the 28,024 patients whose protected health information has potentially been compromised.

Health Insurance 94

Health Insurance Licensing Ransomware HIPAA 94