HIPAA Journal

JANUARY 5, 2023

Back in June 2022 , HIPAA Journal reported on a cyberattack on Fitzgibbon Hospital in Marshall, MO, after being contacted directly by a spokesperson for a threat group called DAIXIN Team, who claimed responsibility for the attack. Howard Memorial Hospital Announces December 2022 Cyberattack.

Ransomware 120

Ransomware Hospitals HIPAA Licensing 120

HIPAA Journal

APRIL 28, 2022

Irvine, CA-based Smile Brands, a provider of support services for dental offices, has recently provided an update on the number of individuals affected by a ransomware attack that was discovered on April 24, 2021. The post Up to 2,592,494 individuals Affected by Smile Brands Ransomware Attack appeared first on HIPAA Journal.

Ransomware 117

Ransomware Health Insurance HIPAA Licensing 117

HIPAA Journal

NOVEMBER 28, 2022

(HHS) has recently announced that it was the victim of a ransomware attack. The attack was detected on June 20, 2022, and third-party forensics experts were engaged to investigate the incident and determine the scope of the attack. Notifications were sent to affected individuals on November 21, 2022.

Ransomware 111

Ransomware Electronic Medical Records HIPAA Licensing 111

HIPAA Journal

JANUARY 9, 2023

Maternal & Family Health Services in Eastern Pennsylvania has recently notified certain patients about an April 4, 2022, ransomware attack in which sensitive patient data was exposed. Retreat Behavioral Health Ransomware Attack Affects Up to 23,620 Patients. The review of the affected files was completed on December 8, 2022.

Ransomware 103

Ransomware HIPAA Licensing Health Insurance 103

HIPAA Journal

MARCH 10, 2023

According to the notifications, unauthorized individuals gained access to its network and used ransomware to encrypt files. MFHS said the sophisticated ransomware attack was discovered in April 2022. The post Maternal & Family Health Services Sued Over Ransomware Attack and Data Breach appeared first on HIPAA Journal.

Ransomware 106

Ransomware HIPAA Licensing Health Insurance 106

HIPAA Journal

JANUARY 27, 2023

Des Plaines, IL-based Lutheran Social Services of Illinois, one of the largest providers of social services in the state, has announced that its systems were compromised and ransomware was used to encrypt files. The cyberattack was detected on January 27, 2022, and systems were taken offline to contain the attack.

Ransomware 107

Ransomware HIPAA Fraud Licensing 107

HIPAA Journal

DECEMBER 23, 2022

It has been another bad year for healthcare data breaches, with some of the biggest HIPAA breaches of 2022 resulting in the impermissible disclosure of well over a million records. In addition to the high number of data breaches, 2022 stands out for the sheer number of healthcare records breached, which currently stands at 49.8

HIPAA 105

HIPAA Ransomware Health Insurance Compliance 105

HIPAA Journal

AUGUST 16, 2022

In August 2021, the Vice Society ransomware operation published data on its data leak site that had allegedly been obtained in a ransomware attack on United Health Centers of San Joaquin Valley. A comprehensive review of the affected data was completed on April 11, 2022.

Ransomware 103

Ransomware HIPAA Licensing Governance 103

HIPAA Journal

SEPTEMBER 14, 2022

Medical Associates of the Lehigh Valley in Pennsylvania (MATLV) has announced that it recently fell victim to a sophisticated ransomware attack on its network. The attack was detected on July 3, 2022, and immediate action was taken to contain the attack and prevent further unauthorized access to its network.

Ransomware 106

Ransomware Licensing HIPAA Health Insurance 106

HIPAA Journal

APRIL 8, 2024

The Medusa ransomware group has leaked data stolen from American Renal Associates. American Renal Associates American Renal Associates (ARA), one of the largest providers of dialysis services in the United States and a provider of care for patients suffering from end-stage renal disease has experienced a Medusa ransomware attack.

Ransomware 82

Ransomware Health Insurance Licensing HIPAA 82

HIPAA Journal

MAY 2, 2023

NYSARC Columbia County Chapter Notifies Individuals About July 2022 Ransomware Attack NYSARC Columbia County Chapter (COARC) has started notifying certain individuals that some of their protected health information has potentially been obtained by unauthorized individuals in a July 2022 ransomware attack.

Ransomware 120

Ransomware Licensing Health Insurance HIPAA 120

HIPAA Journal

MARCH 29, 2023

Atlantic General Hospital – Ransomware Attack Atlantic General Hospital (AGH) in Berlin, MD, has recently reported a ransomware attack to the Maine Attorney General that has affected up to 30,704 individuals. On December 26, 2022, an employee’s laptop computer was stolen. OU Health – Stolen Laptop Computer OU Medicine Inc.

Hospitals 123

Hospitals Ransomware Licensing Health Insurance 123

HIPAA Journal

FEBRUARY 7, 2023

Regal Medical Group, a San Bernardino, CA-based affiliate of the Heritage Provider Network, recently announced that it was attacked with ransomware. On December 2, 2022, employees experienced difficulty accessing data. Notification letters were sent to the affected individuals on February 3, 2023.

Ransomware 70

Ransomware Hospitals Licensing HIPAA 70

HIPAA Journal

MAY 24, 2022

In March 2022, Partnership HealthPlan of California (PHC) announced that third-party forensic specialists had been engaged to help restore the functionality of its IT systems following a cyberattack. According to the notification, the cyberattack was detected on or around March 19, 2022.

Ransomware 140

Ransomware Licensing HIPAA Health Insurance 140

HIPAA Journal

DECEMBER 29, 2022

The Louisiana healthcare system said suspicious activity was detected by its security team on October 21, 2022, and steps were taken to contain the activity and investigate a potential breach. Southwest Louisiana Health Care System did not disclose the exact nature of the cyberattack, but the Hive ransomware gang claimed responsibility.

Ransomware 107

Ransomware Health Insurance Licensing Medical Billing 107

HIPAA Journal

JUNE 24, 2022

On April 7, 2022, an employee responded to a phishing email and disclosed credentials for an email and messaging account. A limited number of individuals also had their Social Security numbers, driver’s license/state ID numbers, and/or financial account information exposed.

Ransomware 124

Ransomware Licensing HIPAA Health Insurance 124

HIPAA Journal

NOVEMBER 17, 2022

Salud Family Health Provides Update on September 2022 Ransomware Attack. Colorado-based Salud Family Health, a Federal Qualified Health Center (FQHC), has recently provided an update on a September 2022 cyberattack and has confirmed that patient data was potentially stolen.

Ransomware 81

Ransomware Health Insurance Fraud HIPAA 81

HIPAA Journal

APRIL 13, 2022

The theft occurred on or around January 27, 2022, and was discovered by RHD on February 16, 2022. LockBit Ransomware Gang Claims Data Stolen from Tague Family Practice. The LockBit ransomware gang claims to have gained access to the systems of Tague Family Practice in St. Email Breach Confirmed by Wellstar Health.

Ransomware 120

Ransomware HIPAA Licensing Health Insurance 120

HIPAA Journal

MARCH 21, 2022

On March 17, 2022, Dallas, TX-based JDC Healthcare Management, which runs more than 70 Jefferson Dental & Orthodontics practices throughout the state of Texas, reported a security breach to the Office of the Attorney General of Texas that has affected more than 1 million Texans. Suffers Ransomware Attack. Wheeling Health Right Inc.

Ransomware 111

Ransomware Licensing HIPAA Health Insurance 111

HIPAA Journal

JULY 14, 2022

The Winston-Salem, NC-based managed behavioral health organization, Carolina Behavioral Health Alliance (CBHA), the administrator of behavioral health benefits for Wake Forest University and Wake Forest Baptist Medical Center, has recently announced it was the victim of a ransomware attack.

Licensing 117

Licensing Health Insurance Ransomware HIPAA 117

HIPAA Journal

JANUARY 13, 2023

West Oaks Eyecare – Ransomware Attack. The attack was detected on November 7, 2022, and steps were taken to contain the attack and secure its systems. Notification letters were mailed to affected individuals on January 6, 2022. Notifications were mailed to affected individuals on December 30, 2022.

Health Insurance 126

Health Insurance Licensing HIPAA Hospitals 126

HIPAA Journal

OCTOBER 7, 2022

The email account breach was detected on July 8, 2022, and the account was immediately secured. CSI Laboratories announced earlier this year that it had suffered a ransomware attack, for which the Conti ransomware gang took credit. The PHI of 312,000 patients was compromised in that attack.

Ransomware 119

Ransomware Health Insurance HIPAA Licensing 119

HIPAA Journal

OCTOBER 4, 2022

The Neurology Center of Nevada (NCNV), in Henderson, NV, has confirmed a data security event was detected on July 17, 2022, which rendered certain computer systems inaccessible. Northern California Fertility Medical Center Notifies Patients About Attempted Ransomware Attack. Cynthia Paul, M.D.,

Ransomware 111

Ransomware Health Insurance HIPAA Licensing 111

HIPAA Journal

AUGUST 2, 2023

The administrative service provider said suspicious activity was detected within its network in early December 2022, and the forensic investigation confirmed on December 15, 2022, that an unauthorized third party accessed parts of its computer network where personal health information was stored.

Licensing 96

Licensing Electronic Medical Records Ransomware Health Insurance 96

HIPAA Journal

SEPTEMBER 1, 2022

Legal counsel for CorrectHealth said the third-party forensic investigation of the data breach concluded on January 28, 2022, and confirmed patients’ protected health information was present in the breached email accounts. Notification letters were sent to affected individuals on August 25, 2022.

Ransomware 101

Ransomware Licensing Health Insurance HIPAA 101

HIPAA Journal

JANUARY 17, 2023

The Dallas, TX-based home help service provider, Home Care Providers of Texas (HCPT), has recently announced that unauthorized individuals gained access to its network and used ransomware to encrypt files. The security breach was detected on June 29, 2022, when staff members were prevented from accessing files.

Ransomware 120

Ransomware Fraud HIPAA Licensing 120

HIPAA Journal

MAY 9, 2022

The review of the affected files was completed on March 22, 2022, and notification letters have now been sent to affected individuals. On February 21, 2022, CLM’s systems were accessed by an unauthorized individual. The data breach has recently been reported to the HHS’ Office for Civil Rights as affecting up to 227,943 patients.

Ransomware 107

Ransomware HIPAA Licensing 107

HIPAA Journal

APRIL 14, 2023

The Iowa Department of Health and Human Services (DHHS) has confirmed that the personal information of 20,800 Iowans who receive Medicaid was exposed in a cyberattack at a subcontractor of one of its business associates between June 30, 2022, and July 5, 2022. Ransomware was not used in the attack, but files were stolen.

Medicaid 114

Medicaid Medicaid Ransomware HIPAA 114

HIPAA Journal

MARCH 25, 2022

Notification letters were sent to affected individuals on February 22, 2022. The files contained first and last names, Social Security numbers, drivers’ license information, dates of birth, health insurance information, medical treatment information, and financial account information.

Health Insurance 120

Health Insurance Licensing Ransomware Fraud 120

HIPAA Journal

MAY 26, 2023

That appears to be the case with two recent cyberattacks, neither of which mention ransomware or confirm that data theft occurred. Since it appears from the claims of the ransomware groups that data has been stolen, affected individuals should ensure they take advantage of those complimentary services. provide more information.

Ransomware 60

Ransomware Health Insurance HIPAA Licensing 60

HIPAA Journal

SEPTEMBER 12, 2023

Seymour, IN-based Schneck Medical Center has settled a lawsuit with the Indiana attorney general, Todd Rokita, over a 2021 ransomware attack and data breach that affected 89,707 Indiana residents. Schneck Medical Center Compensates Patients for Losses Schneck Medical Center has also recently settled a consolidated class action lawsuit for $1.3

HIPAA 103

HIPAA Ransomware Health Insurance Fraud 103

HIPAA Journal

MAY 16, 2022

According to the April 29, 2022, notification on the healthcare provider’s website, “We recently discovered unauthorized access to our network occurred between May 31, 2021, and June 1, 2021.” On March 15, 2022, RiverKids discovered an unauthorized individual had gained access to the email account of an employee.

Health Insurance 117

Health Insurance Ransomware HIPAA Licensing 117

HIPAA Journal

DECEMBER 2, 2022

San Juan Regional Medical Center stated at the time that this was a malware, rather than a ransomware attack. Those losses include reimbursement of out-of-pocket expenses, compensation for fees for credit reports, credit monitoring, or other identity-theft insurance products purchased after October 13, 2022, compensation at $17.50

Licensing 110

Licensing HIPAA Ransomware Health Insurance 110

HIPAA Journal

MAY 17, 2022

The Manchester, NH-based medical equipment company, NuLife Med LLC, has recently announced it was the victim of a cyberattack in March 2022. Suspicious network activity was detected on or around March 11, 2022, and steps were immediately taken to prevent further unauthorized network access.

Health Insurance 94

Health Insurance Licensing Ransomware HIPAA 94

HIT Consultant

DECEMBER 21, 2022

The key challenges faced by the industry include Data Breaches, Ransomware, Extensive use of Mobile Applications without proper ways to perform Authentication and Authorization and Lack of Healthcare Data Interoperability. Recent Data Breaches: – November 2022: Ransomware Hacker Steals Medibank Data on 9.7m Ransomware.

Ransomware 52

Ransomware HIPAA Health Insurance Governance 52

HIPAA Journal

JUNE 8, 2023

Telligen subcontracted part of that work to Independent Living Systems (ILS), where the data breach occurred in June and July 2022. A few days later, on April 5, 2023, SJBHR was the victim of a ransomware attack that resulted in files being encrypted on certain computer systems.

Medicaid 98

Medicaid Medicaid Ransomware Health Insurance 98

HIPAA Journal

JUNE 8, 2023

The breach was detected on December 21, 2022, when suspicious activity was identified within its network. The forensic investigation confirmed its systems had been accessed by an unauthorized individual between December 5, 2022, and December 21, 2022, and files had been downloaded. It is unclear if the two incidents are linked.

Ransomware 98

Ransomware Hospitals Medical Billing HIPAA 98