HIPAA Journal

JUNE 13, 2022

Yuma Regional Medical Center (YRMC) in Arizona has announced it was the victim of a ransomware attack in April in which the attackers obtained the protected health information of approximately 700,000 current and former patients. YRMC said its electronic medical record system was not accessed.

Ransomware 130

Ransomware Electronic Medical Records HIPAA Health Insurance 130

HIPAA Journal

FEBRUARY 23, 2022

Third-party forensic investigators were retained to conduct an investigation to determine the nature and scope of the attack and on January 5, 2022, it was confirmed that certain files on its systems that contained patient information had been accessed. The files accessed included the following types of information.

Electronic Medical Records 137

Electronic Medical Records HIPAA Health Insurance Medical Billing 137

HIPAA Journal

AUGUST 5, 2022

In a substitute breach notification, First Choice explained that unusual activity was detected within its technological environment on March 27, 2022. Affected individuals were notified about the breach by mail on August 1, 2022, and have been offered complimentary identity theft protection services through IDX. Dr. Michelle A.

Electronic Medical Records 98

Electronic Medical Records Health Insurance Fraud HIPAA 98

HIPAA Journal

JUNE 9, 2022

The security breach was detected on March 8, 2022, and steps were immediately taken to prevent further unauthorized access to its systems. During that time frame, certain files were exfiltrated from a backup storage device, which include radiology reports from Osceola Medical Center (OMC) in Wisconsin.

Electronic Medical Records 129

Electronic Medical Records HIPAA 129

HIPAA Journal

APRIL 15, 2022

A lawsuit has been filed against the in-home respiratory care provider, SuperCare Health, over a cyberattack and data breach that was reported to the Department of Health and Human Services on March 28, 2022. The post SuperCare Health Sued Over 318,000-Record Data Breach appeared first on HIPAA Journal.

Electronic Medical Records 122

Electronic Medical Records HIPAA Health Insurance Fraud 122

HIPAA Journal

MARCH 9, 2022

Over 500,000 individuals have been affected by cyberattacks on Norwood Clinic, PracticeMax, Central Indiana Orthopedics, and an unauthorized electronic medical record incident at Ascension Michigan. The review was concluded on February 2, 2022, and affected customers were updated on February 14, 2022.

Electronic Medical Records 123

Electronic Medical Records Health Insurance Ransomware HIPAA 123

HIPAA Journal

AUGUST 31, 2022

First Street Family Health said the attack was detected on July 16, 2022, with the investigation confirming that the attackers first gained access to its systems on July 5, 2022. The post Cyberattack and Data Destruction Reported by First Street Family Health appeared first on HIPAA Journal.

Electronic Medical Records 118

Electronic Medical Records Ransomware HIPAA Health Insurance 118

HIPAA Journal

MARCH 30, 2022

That process concluded on February 25, 2022, when it was confirmed that files containing the personal and protected health information of plan members had been exfiltrated from its network. The attack appears to have occurred on or around March 10, 2022 and has affected the automatic refill line and mail order services of its pharmacy.

Ransomware 132

Ransomware Electronic Medical Records HIPAA Licensing 132

HIPAA Journal

MARCH 17, 2022

The incident was detected on January 20, 2022, when suspicious activity was identified in some of its IT systems. Duncan Regional Hospital said the hackers did not gain access to its electronic medical record system but did access parts of the network where files containing patient data were stored.

Hospitals 126

Hospitals Electronic Medical Records HIPAA 126

HIPAA Journal

FEBRUARY 16, 2022

The investigation confirmed its electronic medical record system and other clinical systems were not compromised in the attack; however, on January 13, 2022, Philadelphia FIGHT discovered the attacker had accessed non-clinical systems that housed files containing the protected health information of around 15,000 patients.

Electronic Medical Records 108

Electronic Medical Records Health Insurance Licensing HIPAA 108

HIPAA Journal

MARCH 14, 2022

CRMC said at this stage of the investigation it does not appear that the attackers gained access to its electronic medical record database; however, the files accessed or potentially accessed by the attackers included information such as patient names, addresses, birth dates, medical information, and health insurance information.

Electronic Medical Records 134

Electronic Medical Records Health Insurance HIPAA Licensing 134

HIPAA Journal

NOVEMBER 28, 2022

The attack was detected on June 20, 2022, and third-party forensics experts were engaged to investigate the incident and determine the scope of the attack. The investigation revealed an unauthorized third party first accessed its systems on June 10, 2022, several days prior to using ransomware to encrypt files.

Ransomware 112

Ransomware Electronic Medical Records HIPAA Licensing 112

HIPAA Journal

DECEMBER 1, 2022

The New York Post reports that the cyberattack has prevented hospital staff from accessing the electronic medical record system, so patient information has been recorded using pen and paper while the hospitals operate under emergency procedures. That process commenced on November 22, 2022.

Electronic Medical Records 101

Electronic Medical Records Hospitals Health Insurance HIPAA 101

HIPAA Journal

DECEMBER 9, 2022

CommonSpirit Health has confirmed that the protected health information of at least 623,774 patients was exposed and potentially stolen in its October 2022 ransomware attack. The attack was detected on October 2, 2022, with the investigation confirming the attackers had access to parts of its network between September 16 and October 3.

Ransomware 92

Ransomware Electronic Medical Records HIPAA Hospitals 92

Compliancy Group

NOVEMBER 23, 2022

At least 6,242,589 records containing patients’ protected health information (PHI) were breached in October 2022. Unauthorized disclosures resulted in the most significant number of breaches in October 2022, with more than 4,145,396 records. October 2022 Healthcare Breaches and Hacking. Find Out More!

Electronic Medical Records 52

Electronic Medical Records HIPAA Compliance 52

Compliancy Group

OCTOBER 24, 2022

Overall, September healthcare breaches affected 2,453,840 records containing protected health information (PHI). In September 2022, there were 64 large-scale breaches reported, 46 of which affected healthcare providers. September 2022 Healthcare Breaches and Hacking. of all reported records breached during the month.

Electronic Medical Records 52

Electronic Medical Records HIPAA Compliance 52

HIPAA Journal

NOVEMBER 30, 2022

which provides electronic medical records and practice management software (Office Practicum) to pediatric physician practice groups has recently confirmed that it was the victim of a cyberattack in which an unauthorized third party gained access to its internal computer network. Connexin Software Inc., Oregon City Pediatrics.

Electronic Medical Records 120

Electronic Medical Records HIPAA 120

Compliancy Group

SEPTEMBER 16, 2022

Business associates reported 2,817,598 records breached in August, while covered entities tallied 898,177 breached files. Data breaches affected 3,715,755 records containing protected health information (PHI) during August. . In August 2022, there were 48 large-scale breaches reported, 34 of which affected healthcare providers.

Electronic Medical Records 52

Electronic Medical Records HIPAA Compliance 52

HIPAA Journal

JANUARY 31, 2024

In the paper, the HHS indicated it will be adopting a carrot-and-stick approach by developing voluntary Healthcare and Public Health (HPH) Sector Cybersecurity Goals (CPGs) that consist of cybersecurity measures that will have the greatest impact on security along with an update to the HIPAA Security Rule to add new cybersecurity requirements.

Ransomware 127

Ransomware HIPAA Hospitals Compliance 127

HIPAA Journal

OCTOBER 6, 2022

In March 2018, LifeBridge Health discovered a malware infection that provided unauthorized individuals with access to a server that hosted its electronic medical records, patient registration, and billing systems. A final approval hearing has been scheduled for October 26, 2022. The post LifeBridge Health Agrees to $9.5

Electronic Medical Records 121

Electronic Medical Records Fraud COVID-19 HIPAA 121

HIPAA Journal

JULY 5, 2022

The email system was immediately secured when the breach was detected with the forensic investigation confirming that two email accounts had been accessed by an unauthorized third party between January 12, 2022, and January 19, 2022. million individuals have potentially been compromised.

Licensing 109

Licensing Electronic Medical Records Health Insurance Hospitals 109

Compliancy Group

JANUARY 30, 2023

Breaches dropped significantly in December 2022, with 2,169,696 records containing patients’ protected health information (PHI) breached, down from 6,904,441 records in November. In December 2022, there were 38 large-scale breaches reported, 23 of which affected healthcare providers. Find Out More! Please Wait.

HIPAA 52

HIPAA Electronic Medical Records Compliance 52

HIPAA Journal

JUNE 16, 2022

Texas Tech University Health Sciences Center has confirmed that the protected health information of 1,290,104 patients was compromised in a data breach at its electronic medical record vendor, Eye Care Leaders. Eye Care Leaders said it detected a breach on Dec. 4, 2021, and disabled the affected systems within 24 hours.

Electronic Medical Records 96

Electronic Medical Records HIPAA Health Insurance Licensing 96

HIPAA Journal

FEBRUARY 14, 2023

Another lawsuit has been filed against Connexin Software over its August 2022 ransomware attack and data breach, which affected more than 2.2 Connexin Software does business as Office Practicum and is a provider of electronic medical records and practice management software for pediatric practices. million individuals.

Electronic Medical Records 88

Electronic Medical Records Ransomware HIPAA Fraud 88

Compliancy Group

APRIL 4, 2022

In March 2022, there were 30 large-scale breaches reported involving 1,285,716 patients. Most March 2022 healthcare breaches affected healthcare providers, with 21 incidents. March 2022 Healthcare Breaches and Hacking. Hacking continued its streak at the top of the list of causes of healthcare breaches in March 2022.

HIPAA 52

HIPAA Compliance Electronic Medical Records 52

HIPAA Journal

JULY 25, 2022

Web applications have grown in popularity in healthcare in recent years and are used for patient portals, electronic medical record systems, scheduling appointments, accessing test results, patient monitoring, online pharmacies, dental CAD systems, inventory management, and more.

Electronic Medical Records 132

Electronic Medical Records Ransomware COVID-19 HIPAA 132

HIPAA Journal

OCTOBER 28, 2022

Michigan Medicine said it was targeted in a phishing campaign between August 15 and August 23, 2022, and four email accounts were compromised. The review of the email accounts was completed on October 17, 2022, and notification letters have now been mailed.

Ransomware 112

Ransomware Electronic Medical Records HIPAA Health Insurance 112

Compliancy Group

DECEMBER 12, 2022

At least 6,904,441 records containing patients’ protected health information (PHI) were breached in November 2022. After a one-month hiatus, Hacking/IT incidents reclaimed their usual place as the cause of the most significant amount of PHI breached in November 2022, with more than 5,374,670 records. Find Out More!

HIPAA 52

HIPAA Electronic Medical Records Compliance 52

Compliancy Group

MAY 13, 2022

In April 2022, there were 44 large-scale breaches reported involving 1,612,672 patients’ data. Most April 2022 healthcare breaches affected healthcare providers, with 29 incidents. April 2022 Healthcare Breaches and Hacking. Hacking continued its streak at the top of the list of causes of healthcare breaches in April 2022.

HIPAA 52

HIPAA Compliance Electronic Medical Records 52

Compliancy Group

JUNE 22, 2022

Covered entities and business associates reported breaches affecting 4,285,997 records containing protected health information (PHI). . In May 2022, there were 96 large-scale breaches reported, most of which affected healthcare providers, with 48 incidents. May 2022 Healthcare Breaches and Hacking. Learn More! ×

HIPAA 52

HIPAA Compliance Electronic Medical Records 52

Compliancy Group

DECEMBER 20, 2024

In 2024, the Department of Health and Human Services (HHS) Office for Civil Rights announced a series of enforcement actions against entities that violated, or potentially violated, one or more HIPAA rules. This HIPAA 2024 Year in Review article discusses these actions. Monitor and safeguard its health information systems activity.

Ransomware 52

Ransomware HIPAA Fraud Electronic Medical Records 52

Healthcare IT Today

OCTOBER 4, 2023

In 2022, as cyberattacks globally rose by 38% year-on-year, healthcare became the third-most-attacked industry (behind government and education), recording an increase of 74% and reporting up to 1,463 incidents per week. The following is a guest article by Sam Manjarres, Sr.

Ransomware 128

Ransomware Electronic Medical Records Telemedicine HIPAA 128

Compliancy Group

JULY 22, 2022

Covered entities and business associates reported breaches affecting 5,843,989 records containing protected health information (PHI). . In June 2022, there were 67 large-scale breaches reported, most of which affected healthcare providers, with 54 incidents. June 2022 Healthcare Breaches and Hacking. Learn More! ×

HIPAA 52

HIPAA Electronic Medical Records Compliance 52

HIPAA Journal

MARCH 6, 2023

The notification letter lacks an explanation of why it took 18 months from the date of discovery of the breach for notification letters to be sent when the HIPAA breach notification rule requires notifications to be issued within 60 days or when the breach occurred.

Electronic Medical Records 82

Electronic Medical Records HIPAA Licensing Nurses 82

HIPAA Journal

JANUARY 6, 2023

The Chicago, IL-based health system, CommonSpirit Health, is facing a class action lawsuit over its October 2022 ransomware attack. Malicious actors gained access to its IT systems on September 16, 2022, and deployed ransomware on October 2, 2022.

Ransomware 91

Ransomware Fraud Electronic Medical Records Hospitals 91

HIT Consultant

SEPTEMBER 5, 2023

John Berndt, SVP of Health North America, Valtech Also known as the Kennedy–Kassebaum Act, the Health Insurance Portability and Accountability Act of 1996 (HIPAA) defines and regulates individuals’ medical records and other individually identifiable health information, collectively known as patient healthcare information (PHI).

HIPAA 98

HIPAA Electronic Medical Records Pharmaceutical Industry Compliance 98

HIPAA Journal

NOVEMBER 7, 2022

The exposed information included names, addresses, dates of birth, Social Security numbers, dates of service, medical record numbers, Medicaid numbers, and some limited clinical information, such as treatment and diagnosis codes. Luke’s Health was notified about the breach on September 1, 2022. The post St.

Electronic Medical Records 81

Electronic Medical Records Ransomware HIPAA Licensing 81