HIPAA Journal

DECEMBER 30, 2022

A settlement has been proposed by Scripps Health to resolve a consolidated class action lawsuit – In Re: Scripps Health Data Incident Litigation – to resolve all claims related to its 2021 ransomware attack. The ransomware attack has proven to be incredibly costly for Scripps Health. The post Scripps Health Proposes $3.5M

Ransomware 116

Ransomware HIPAA Licensing Doctors 116

HIPAA Journal

AUGUST 3, 2022

Fast Track Urgent Care, a network of urgent healthcare clinics in Florida, has confirmed that 258,411 individuals have had their protected health information exposed and potentially stolen in a ransomware attack on billing and practice management vendor, PracticeMax.

Ransomware 115

Ransomware Health Insurance Licensing HIPAA 115

HIPAA Journal

APRIL 30, 2024

The medical device manufacturer Livanova, the Massachusetts community behavioral health center Aspire Health Alliance, and Santa Rosa Behavioral Healthcare Hospital in California have experienced ransomware attacks that exposed patient data. The LockBit ransomware group claimed responsibility for the attack.

Ransomware 96

Ransomware Licensing Health Insurance HIPAA 96

HIPAA Journal

APRIL 28, 2022

Irvine, CA-based Smile Brands, a provider of support services for dental offices, has recently provided an update on the number of individuals affected by a ransomware attack that was discovered on April 24, 2021. The post Up to 2,592,494 individuals Affected by Smile Brands Ransomware Attack appeared first on HIPAA Journal.

Ransomware 119

Ransomware Health Insurance HIPAA Licensing 119

HIPAA Journal

JANUARY 5, 2023

Fitzgibbon Hospital said it discovered on December 1, 2022, that some patient data had been compromised in the attack including “full names, Social Security numbers, driver’s license numbers, financial account numbers, health insurance information, and/or medical information,” with the data involved varying from individual to individual.

Ransomware 122

Ransomware Hospitals HIPAA Licensing 122

HIPAA Journal

NOVEMBER 28, 2022

(HHS) has recently announced that it was the victim of a ransomware attack. The investigation revealed an unauthorized third party first accessed its systems on June 10, 2022, several days prior to using ransomware to encrypt files. Ransomware Attack Affects Patients of Disability Services of the Southwest.

Ransomware 113

Ransomware Electronic Medical Records HIPAA Licensing 113

HIPAA Journal

MAY 23, 2024

A Texas ophthalmology practice has experienced a ransomware attack that resulted in the encryption of files on its computer systems. The post Ransomware Attack on Texas Ophthalmology Practice Exposes Data of 80,000 Patients appeared first on HIPAA Journal. A subset of those individuals also had their Social Security numbers exposed.

Ransomware 90

Ransomware Licensing HIPAA 90

HIPAA Journal

MARCH 10, 2023

According to the notifications, unauthorized individuals gained access to its network and used ransomware to encrypt files. MFHS said the sophisticated ransomware attack was discovered in April 2022. The post Maternal & Family Health Services Sued Over Ransomware Attack and Data Breach appeared first on HIPAA Journal.

Ransomware 96

Ransomware HIPAA Licensing Health Insurance 96

HIPAA Journal

JANUARY 27, 2023

Des Plaines, IL-based Lutheran Social Services of Illinois, one of the largest providers of social services in the state, has announced that its systems were compromised and ransomware was used to encrypt files. Both healthcare organizations were recently added to the data leak site of the BlackCat ransomware group.

Ransomware 99

Ransomware HIPAA Fraud Licensing 99

HIPAA Journal

JANUARY 9, 2023

Maternal & Family Health Services in Eastern Pennsylvania has recently notified certain patients about an April 4, 2022, ransomware attack in which sensitive patient data was exposed. Retreat Behavioral Health Ransomware Attack Affects Up to 23,620 Patients. Notifications were sent to affected individuals on January 3, 2023.

Ransomware 95

Ransomware HIPAA Licensing Health Insurance 95

HIPAA Journal

APRIL 8, 2024

The Medusa ransomware group has leaked data stolen from American Renal Associates. American Renal Associates American Renal Associates (ARA), one of the largest providers of dialysis services in the United States and a provider of care for patients suffering from end-stage renal disease has experienced a Medusa ransomware attack.

Ransomware 77

Ransomware Health Insurance Licensing HIPAA 77

HIPAA Journal

JULY 17, 2023

Attacks that involve the theft of naked images offer threat actors an easy way to increase pressure on the victim to make payment, as was the case with a ransomware attack on Lehigh Valley Health Network earlier this year by the ALPHV/BlackCat ransomware group. Gary Motykie were also published online.

Ransomware 97

Ransomware HIPAA Licensing Health Insurance 97

HIPAA Journal

SEPTEMBER 14, 2022

Medical Associates of the Lehigh Valley in Pennsylvania (MATLV) has announced that it recently fell victim to a sophisticated ransomware attack on its network. The post Ransomware Attack on Medical Associates of the Lehigh Valley Affects 75K Patients appeared first on HIPAA Journal.

Ransomware 96

Ransomware Licensing HIPAA Health Insurance 96

HIPAA Journal

AUGUST 16, 2022

In August 2021, the Vice Society ransomware operation published data on its data leak site that had allegedly been obtained in a ransomware attack on United Health Centers of San Joaquin Valley. On August 31, 2021, Bleeping Computer was made aware of the data leak and made multiple attempts to notify United Health Centers.

Ransomware 103

Ransomware HIPAA Licensing Governance 103

HIPAA Journal

AUGUST 8, 2023

The LockBit ransomware group has added Varian Medical Systems to its data leak site and has threatened to publish the data of cancer patients if the ransom is not paid. The post LockBit Ransomware Group Threatens to Publish Stolen Cancer Patient Data appeared first on HIPAA Journal.

Ransomware 96

Ransomware Licensing HIPAA Health Insurance 96

HIPAA Journal

FEBRUARY 7, 2023

Regal Medical Group, a San Bernardino, CA-based affiliate of the Heritage Provider Network, recently announced that it was attacked with ransomware. The forensic investigation confirmed that the attackers gained access to the servers on or around December 1 and exfiltrated files before the ransomware was deployed.

Ransomware 74

Ransomware Hospitals Licensing HIPAA 74

HIPAA Journal

NOVEMBER 8, 2023

Mulkay Cardiology Consultants at Holy Name Medical Center has recently confirmed that it fell victim to a ransomware attack. The compromised information included names, addresses, dates of birth, Social Security numbers, driver’s license numbers or state IDs, medical treatment information, and health insurance information.

Ransomware 109

Ransomware Licensing Health Insurance HIPAA 109

HIPAA Journal

MAY 26, 2023

That appears to be the case with two recent cyberattacks, neither of which mention ransomware or confirm that data theft occurred. Since it appears from the claims of the ransomware groups that data has been stolen, affected individuals should ensure they take advantage of those complimentary services. provide more information.

Ransomware 63

Ransomware Health Insurance HIPAA Licensing 63

HIPAA Journal

NOVEMBER 17, 2022

Salud Family Health Provides Update on September 2022 Ransomware Attack. The breach was reported to the HHS’ Office for Civil Rights using a placeholder of 501 and that figure has yet to be updated on the OCR breach portal; however, the threat actor behind the attack – the Lorenz ransomware group – has dumped a sample of the files online.

Ransomware 84

Ransomware Health Insurance HIPAA Fraud 84

HIPAA Journal

NOVEMBER 21, 2022

The Wisconsin-based dermatology practice, Forefront Dermatology, has agreed to settle a class action lawsuit filed on behalf of patients whose protected health information (PHI) was compromised in a ransomware attack in late May 2021. Million Settlement to Resolve Ransomware Lawsuit appeared first on HIPAA Journal.

Ransomware 68

Ransomware Fraud HIPAA Licensing 68

HIPAA Journal

JULY 3, 2024

has confirmed that patient data has been compromised in a cyberattack, and the Monti ransomware group has claimed responsibility for a cyberattack on Wayne Memorial Hospital. A cyberattack on Texas Retina Associates has affected more than 312,000 patients, Human Technology Inc.,

Ransomware 123

Ransomware Health Insurance Hospitals HIPAA 123

Healthcare It News

SEPTEMBER 21, 2023

Growing patient discomfort in sharing health information Beyond health system disruptions such as ransomware that can compromise patient data , cybercriminals are increasingly going after individual patients. You want them to keep working there, you want them to keep their licenses." " The goal is culture change, he said.

Governance 295

Governance HIPAA Ransomware Licensing 295

HIPAA Journal

MAY 24, 2022

While PHC did not state the nature of the cyberattack in its breach notification, the Hive ransomware gang has claimed responsibility for the attack and alleges around 400 GB of files were stolen, a sample of which was temporarily uploaded to the group’s data leak site.

Ransomware 138

Ransomware Licensing HIPAA Health Insurance 138

HIPAA Journal

SEPTEMBER 8, 2023

Just Kids Dental Suffers Ransomware Attack Acadia Health, LLC, doing business as Just Kids Dental, has started notifying 129,623 patients that some of their protected health information was stolen in an August 2, 2023, ransomware attack. Credit monitoring services are being offered to the affected individuals for 12 months at no cost.

Licensing 107

Licensing Ransomware Health Insurance HIPAA 107

Compliancy Group

OCTOBER 21, 2024

OCR imposed the ransomware civil monetary penalty for potential HIPAA Security Rule violations. Details of the incidents leading to the imposition of the ransomware civil monetary penalty are provided below. Why Was the Ransomware Civil Monetary Penalty Imposed? The integration was planned for 2018, but delayed until 2019.

Ransomware 52

Ransomware HIPAA Compliance Licensing 52

HIPAA Journal

MAY 2, 2023

NYSARC Columbia County Chapter Notifies Individuals About July 2022 Ransomware Attack NYSARC Columbia County Chapter (COARC) has started notifying certain individuals that some of their protected health information has potentially been obtained by unauthorized individuals in a July 2022 ransomware attack.

Ransomware 104

Ransomware Licensing Health Insurance HIPAA 104

HIPAA Journal

DECEMBER 29, 2022

Southwest Louisiana Health Care System did not disclose the exact nature of the cyberattack, but the Hive ransomware gang claimed responsibility. While Hive is known for using ransomware to encrypt files, the gang claims only to have exfiltrated patient data. Ransomware Attack Affects 6,800 Patients of Midwest Orthopaedic Consultants.

Ransomware 105

Ransomware Health Insurance Licensing Medical Billing 105

HIPAA Journal

MARCH 29, 2023

Atlantic General Hospital – Ransomware Attack Atlantic General Hospital (AGH) in Berlin, MD, has recently reported a ransomware attack to the Maine Attorney General that has affected up to 30,704 individuals. The attack was detected on January 29, 2023, when files were discovered to have been encrypted.

Hospitals 110

Hospitals Ransomware Licensing Health Insurance 110

HIPAA Journal

JUNE 24, 2022

A limited number of individuals also had their Social Security numbers, driver’s license/state ID numbers, and/or financial account information exposed. Patient Data Stolen in Ransomware Attack on Heartland Healthcare Services. Atrium Health said there have been no reported cases of misuse of patient data.

Ransomware 125

Ransomware Licensing HIPAA Health Insurance 125

HIPAA Journal

APRIL 13, 2022

LockBit Ransomware Gang Claims Data Stolen from Tague Family Practice. The LockBit ransomware gang claims to have gained access to the systems of Tague Family Practice in St. The theft occurred on or around January 27, 2022, and was discovered by RHD on February 16, 2022.

Ransomware 122

Ransomware HIPAA Licensing Health Insurance 122

HIPAA Journal

FEBRUARY 15, 2023

The medical device manufacturer Electromed has proposed a $850,000 settlement to resolve claims related to a June 2021 ransomware attack and data breach involving the protected health information of 47,200 individuals. A lawsuit – Lutz, et al.

Ransomware 95

Ransomware Fraud Licensing Health Insurance 95

HIPAA Journal

MARCH 21, 2022

Suffers Ransomware Attack. in West Virginia has announced it was the victim of a ransomware attack in January 2022. The breach report submitted to the Texas Attorney General indicates the ePHI of 1,026,820 Texans was potentially compromised. Wheeling Health Right Inc. Wheeling Health Right Inc.

Ransomware 109

Ransomware Licensing HIPAA Health Insurance 109

HIPAA Journal

AUGUST 29, 2023

Medical records extracted during the recent Prospect Medical Holdings ransomware attack are being allegedly offered for sale on the dark web according to social media sources. The post Medical Records from Prospect Ransomware Attack Appear on Dark Web appeared first on HIPAA Journal.

Ransomware 52

Ransomware Licensing HIPAA Hospitals 52

HIPAA Journal

APRIL 23, 2024

Notification letters have been sent to more than 34,500 individuals about ransomware attacks that occurred more than 9 months ago. Kisco Senior Living experienced its attack in June 2023, and Island Ambulatory Surgery Center suffered an attack in July. Notification letters were mailed to the affected individuals on April 5, 2024.

Ransomware 110

Ransomware Fraud Licensing HIPAA 110

HIPAA Journal

JULY 14, 2022

The Winston-Salem, NC-based managed behavioral health organization, Carolina Behavioral Health Alliance (CBHA), the administrator of behavioral health benefits for Wake Forest University and Wake Forest Baptist Medical Center, has recently announced it was the victim of a ransomware attack.

Licensing 112

Licensing Health Insurance Ransomware HIPAA 112

HIPAA Journal

MARCH 25, 2022

The files contained first and last names, Social Security numbers, drivers’ license information, dates of birth, health insurance information, medical treatment information, and financial account information. UMC was a victim of a REvil ransomware attack in June 2021 that resulted in the theft of the protected health information of 1.3

Health Insurance 118

Health Insurance Licensing Ransomware Fraud 118

HIT Consultant

NOVEMBER 12, 2024

Reduce ransomware attack surface We all know that ransomware is continuing to cause enormous financial pain for organizations that in some cases must pay up or close their doors. They are also, meanwhile, storing the data in a way that prevents any changes to the data – thwarting ransomware actors.

Ransomware 104

Ransomware Licensing Health Insurance Hospitals 104