HIPAA Journal

APRIL 1, 2022

Partnership Health Plan of California Recovering from Suspected Ransomware Attack. The Fairfield, CA-based nonprofit managed care health plan, Partnership Health Plan of California (PHC), has suffered a cyberattack that has taken its IT systems out of action for more than a week. That claim has since been removed.

Ransomware 126

Ransomware HIPAA Health Insurance 126

HIPAA Journal

MARCH 24, 2022

Chelan Douglas Health District in East Wenatchee, WA, has announced it was the victim of a cyberattack in July 2021 in which the personal and protected health information of patients was exfiltrated from its systems. A representative for the health district said this was not a ransomware attack.

Ransomware 136

Ransomware Fraud Hospitals HIPAA 136

HIPAA Journal

APRIL 28, 2022

Irvine, CA-based Smile Brands, a provider of support services for dental offices, has recently provided an update on the number of individuals affected by a ransomware attack that was discovered on April 24, 2021. The initial notice to the Maine attorney general was submitted on October 8, 2021.

Ransomware 117

Ransomware Health Insurance HIPAA Licensing 117

HIT Consultant

NOVEMBER 12, 2024

The goal is to implement spending caps on hospitals, physician groups, and health insurers, with the expectation that these savings will ultimately benefit consumers. They are also, meanwhile, storing the data in a way that prevents any changes to the data – thwarting ransomware actors. in 2025 and 3% by 2029.

Ransomware 104

Ransomware Licensing Health Insurance Hospitals 104

HIPAA Journal

FEBRUARY 24, 2022

Comprehensive Health Services explained in its breach notification letter to the Maine Attorney general that it determined on November 3, 2021, that the personal information of a limited number of individuals employed by one of its customers may have been accessed and stolen in the attack.

HIPAA 127

HIPAA Ransomware Health Insurance 127

HIPAA Journal

MAY 16, 2022

According to the April 29, 2022, notification on the healthcare provider’s website, “We recently discovered unauthorized access to our network occurred between May 31, 2021, and June 1, 2021.” The post Refuah Health Center Alerts 260K Patients About May 2021 Cyberattack appeared first on HIPAA Journal.

Health Insurance 117

Health Insurance Ransomware HIPAA Licensing 117

Compliancy Group

JANUARY 24, 2025

A clear understanding of health information breaches is necessary to comply with regulations like the Health Insurance Portability and Accountability Act (HIPAA). There was also a 278% jump in ransomware attacks in the same period. In 2021 and 2022, 45.9 million records, respectively, were breached.

Compliance 94

Compliance Electronic Medical Records Ransomware HIPAA 94

Compliancy Group

JANUARY 25, 2022

With at least six weeks before final numbers are in, the Department of Health and Human Services HIPAA Breach Reporting Tool website is reporting 713 major healthcare data breaches in 2021, an increase of more than 7.5 By the Numbers: Major Healthcare Data Breaches Increase in 2021. million records in 2021.

HIPAA 98

HIPAA Ransomware Governance Fraud 98

HIPAA Journal

MARCH 11, 2022

Protenus has released its 2022 Breach Barometer Report which confirms 2021 was a particularly bad year for healthcare industry data breaches, with more than 50 million healthcare records exposed or compromised in 2021. There were 111 insider incidents in 2021, similar to the 110 incidents in 2019, which is a 26% decrease from 2020.

HIPAA 114

HIPAA Ransomware Health Insurance 114

HIPAA Journal

MARCH 10, 2023

According to the notifications, unauthorized individuals gained access to its network and used ransomware to encrypt files. MFHS said the sophisticated ransomware attack was discovered in April 2022. The post Maternal & Family Health Services Sued Over Ransomware Attack and Data Breach appeared first on HIPAA Journal.

Ransomware 106

Ransomware HIPAA Licensing Health Insurance 106

HIPAA Journal

JUNE 13, 2023

Harvard Pilgrim Health Care and its parent company, Point32Health, are facing multiple class action lawsuits after hackers gained access to the protected health information (PHI) of more than 2.5 million individuals in an April 2023 ransomware attack. Harvard Pilgrim Health Care Inc. million customers.

Ransomware 103

Ransomware Fraud Health Insurance HIPAA 103

HIPAA Journal

NOVEMBER 28, 2022

(HHS) has recently announced that it was the victim of a ransomware attack. The investigation revealed an unauthorized third party first accessed its systems on June 10, 2022, several days prior to using ransomware to encrypt files. Ransomware Attack Affects Patients of Disability Services of the Southwest.

Ransomware 111

Ransomware Electronic Medical Records HIPAA Licensing 111

HIPAA Journal

JANUARY 9, 2023

Maternal & Family Health Services in Eastern Pennsylvania has recently notified certain patients about an April 4, 2022, ransomware attack in which sensitive patient data was exposed. Retreat Behavioral Health Ransomware Attack Affects Up to 23,620 Patients.

Ransomware 103

Ransomware HIPAA Licensing Health Insurance 103

HIPAA Journal

JANUARY 27, 2023

Des Plaines, IL-based Lutheran Social Services of Illinois, one of the largest providers of social services in the state, has announced that its systems were compromised and ransomware was used to encrypt files. Both healthcare organizations were recently added to the data leak site of the BlackCat ransomware group.

Ransomware 107

Ransomware HIPAA Fraud Licensing 107

Compliancy Group

JUNE 29, 2022

In early December of 2021, Eye Care Leaders (Eye Care), an electronic medical record vendor supplying business associate services to eye care providers across the country, discovered it had incurred a data breach. Eye Care’s myCare Integrity solution was hacked via a ransomware attack on December 4, 2021. . Email addresses.

Ransomware 98

Ransomware Electronic Medical Records HIPAA Health Insurance 98

HIPAA Journal

JANUARY 31, 2023

Affected individuals were notified about the cyberattack in August 2021 and were offered complimentary credit monitoring and identity theft protection services. Affected individuals were notified about the cyberattack in August 2021 and were offered complimentary credit monitoring and identity theft protection services.

Ransomware 60

Ransomware Fraud Health Insurance HIPAA 60

HIT Consultant

AUGUST 31, 2021

There’s no sugarcoating it: healthcare has a serious ransomware problem. In fact, the first-ever such attack targeted the industry in 1989 when 20,000 floppy disks infected with ransomware were given to those who attended the World Health Organization’s AIDS Conference. And it’s not a new problem for this sector.

Ransomware 93

Ransomware Pharmaceutical Industry Governance World Health 93

HIPAA Journal

FEBRUARY 23, 2022

Logan Health Medical Center in Kalispell, MT, has recently started notifying certain patients that hackers gained access to a file server that housed patient information in “a highly sophisticated criminal attack.”. NHS Management Alerts Patients About May 2021 Cyberattack. At no point did the attack affect the quality of patient care.

Electronic Medical Records 142

Electronic Medical Records HIPAA Health Insurance Medical Billing 142

HIPAA Journal

MARCH 9, 2022

The Birmingham, AL-based multi-specialty clinic, Norwood Clinic, has recently started notifying 228,103 individuals that some of their protected health information was accessed in a cyberattack that was detected on October 22, 2021. The review was concluded on February 2, 2022, and affected customers were updated on February 14, 2022.

Electronic Medical Records 131

Electronic Medical Records Health Insurance Ransomware HIPAA 131

HIPAA Journal

MARCH 25, 2022

The forensic investigation revealed the email accounts were accessed by unauthorized individuals between April 7, 2021, and June 2, 2021. AHA provided notice about the attack on January 6, 2021. UMC was a victim of a REvil ransomware attack in June 2021 that resulted in the theft of the protected health information of 1.3

Health Insurance 120

Health Insurance Licensing Ransomware Fraud 120

HIPAA Journal

DECEMBER 1, 2022

Stanley Street Treatment and Resources Discloses October 2021 Data Breach. STAR), has recently announced a data breach that occurred more than a year ago in October 2021. An unauthorized individual was found to have gained access to its network and downloaded files containing the protected health information of 45,785 patients.

Health Insurance 114

Health Insurance Ransomware HIPAA Governance 114

HIPAA Journal

FEBRUARY 15, 2023

The medical device manufacturer Electromed has proposed a $850,000 settlement to resolve claims related to a June 2021 ransomware attack and data breach involving the protected health information of 47,200 individuals.

Ransomware 108

Ransomware Fraud Licensing Health Insurance 108

HIPAA Journal

JULY 14, 2022

The Winston-Salem, NC-based managed behavioral health organization, Carolina Behavioral Health Alliance (CBHA), the administrator of behavioral health benefits for Wake Forest University and Wake Forest Baptist Medical Center, has recently announced it was the victim of a ransomware attack.

Licensing 117

Licensing Health Insurance Ransomware HIPAA 117

HIPAA Journal

SEPTEMBER 12, 2023

Seymour, IN-based Schneck Medical Center has settled a lawsuit with the Indiana attorney general, Todd Rokita, over a 2021 ransomware attack and data breach that affected 89,707 Indiana residents.

HIPAA 103

HIPAA Ransomware Health Insurance Fraud 103

HIPAA Journal

AUGUST 31, 2022

This method of attack is becoming more common, where data is stolen, deleted, and then threats are issued to publish or sell the data if payment is not made to the attackers, but files are not encrypted using ransomware. Northeast Rehabilitation Hospital Network Notifies Patients About 2021 Cyberattack.

Electronic Medical Records 124

Electronic Medical Records Ransomware HIPAA Health Insurance 124

HIPAA Journal

MARCH 23, 2023

Associates in Dermatology, a network of dermatology clinics in Indiana, Kentucky, and New York, has started notifying patients that some of their protected health information has been exposed in a ransomware attack on one of its business associates.

Ransomware 70

Ransomware Electronic Medical Records Records Management HIPAA 70

HIPAA Journal

MARCH 28, 2023

A New York law firm that suffered a LockBit ransomware attack has agreed to pay a financial penalty of $200,000 to the New York Attorney General to resolve alleged violations of New York General Business Law and the Privacy and Security Rules of the Health Insurance Portability and Accountability Act (HIPAA).

HIPAA 111

HIPAA Ransomware Malpractice Health Insurance 111

Compliancy Group

FEBRUARY 14, 2022

A ransomware hack of Morley Companies Inc. The provider of business process outsourcing and meeting solutions to dozens of Fortune 500 companies revealed the ransomware hacking incident in a filing with the Office of the Maine Attorney General and a post on their website. Details of Morley Companies Ransomware Hack. Learn More!

Ransomware 52

Ransomware HIPAA Health Insurance Compliance 52

HIPAA Journal

SEPTEMBER 8, 2022

The Michigan law firm, Warner Norcross and Judd LLP, has issued notification letters to 255,160 individuals advising them about an October 2021 security breach in which files containing their personal and protected health information were potentially accessed and exfiltrated from its systems.

Fraud 114

Fraud Health Insurance Ransomware HIPAA 114

HIPAA Journal

SEPTEMBER 1, 2022

CorrectHealth Notifies 54,000 Patients About November 2021 Email System Breach. The breach was detected on November 10, 2021, with the investigation confirming several employee email accounts had been accessed by an unauthorized individual. Ransomware Attack Impacts Brasseler Patients.

Ransomware 101

Ransomware Licensing Health Insurance HIPAA 101

HIPAA Journal

NOVEMBER 21, 2022

The Wisconsin-based dermatology practice, Forefront Dermatology, has agreed to settle a class action lawsuit filed on behalf of patients whose protected health information (PHI) was compromised in a ransomware attack in late May 2021. Million Settlement to Resolve Ransomware Lawsuit appeared first on HIPAA Journal.

Ransomware 64

Ransomware Fraud HIPAA Licensing 64

HIPAA Journal

MARCH 21, 2022

As previously reported on this site, JDC Healthcare Management detected malware within its IT network on or around August 9, 2021, with the forensic investigation into the security breach confirming the malware was downloaded onto its systems on July 27, 2021. Wheeling Health Right Inc. Suffers Ransomware Attack.

Ransomware 111

Ransomware Licensing HIPAA Health Insurance 111

HIPAA Journal

DECEMBER 13, 2022

Two healthcare organizations in Massachusetts have chosen to settle class action lawsuits that were filed by patients whose protected health information was stolen in cyberattacks. Claims can also be submitted for documented extraordinary losses incurred between February 9 and February 14, 2021, up to a maximum of $5,000.

Hospitals 107

Hospitals Ransomware HIPAA Health Insurance 107

HIPAA Journal

NOVEMBER 22, 2022

In 2021, 714 data breaches of 500 or more records were reported to the HHS’ Office for Civil Rights. Two more eye care providers confirmed in October that they had been affected by the ransomware attack on their EHR vendor, Eye Care Leaders. Ransomware attack. WakeMed Health and Hospitals. Ransomware attack.

Ransomware 133

Ransomware HIPAA Hospitals Health Insurance 133

Compliancy Group

MAY 27, 2022

The law firm BakerHostetler published its annual Data Security Incident Response Report based on findings from 1,270 data security incidents managed by the firm in 2021. . 35% of healthcare breaches involved ransomware attacks, vs. 20% in 2020. 82% of ransomware attacks claimed to have removed data before encryption.

HIPAA 98

HIPAA Ransomware Hospitals Health Insurance 98

HIPAA Journal

JUNE 8, 2023

Mercy Medical Center did not state whether ransomware was involved but said data had to be restored from backups and some data has likely been lost. According to the May 22, 2023, breach notice, the incidents occurred in 2021. Additional technical steps are being taken to try to recreate the lost data it was not possible to restore.

Ransomware 107

Ransomware HIPAA Licensing Health Insurance 107

HIPAA Journal

JANUARY 24, 2023

million records in 2021 to 51.9 The theft of protected health information places patients and health plan members at risk of identity theft and fraud, but by far the biggest concern is the threat to patient safety. Scripps Health suffered a data breach of 1.2 million records in 2021 due to a ransomware attack.

HIPAA 138

HIPAA Ransomware Hospitals Fraud 138