Healthcare Information Security

HIPAA Physical Safeguards

Orlando medical center reports flash drive data breach

by Patrick Ouellette

Orlando Health’s Arnold Palmer Medical Center recently began notifying 586 patients of a data breach that occurred on Jan. 28, 2014. According to the Orlando Sentinel report, the medical center lost a flash drive with patient data on it...

Kaiser Permanente reports 2011 research server malware attack

by Patrick Ouellette

The Kaiser Permanente Northern California Division of Research will begin notifying an unknown number of patients today of a potential data breach that (1) happened in October 2011 and (2) it learned of on Feb. 12, 2014. According to a sample...

Phishing attack exposes Franciscan Health System patient data

by Patrick Ouellette

Despite the growing number of threats that healthcare security professionals must stay current with, many are making concerted efforts to devote time and resources to preventing human error breaches, including phishing attacks. It appears as...

Palomar Health notifies 5,000 patients of health data breach

by Patrick Ouellette

Following a burglary of a laptop and two flash drives back in late February, Palomar Health of California announced that about 5,000 patients’ data was exposed in the breach. According to U-T San Diego, the devices had been stolen from...

UK Health reports 1,079-patient data breach

by Patrick Ouellette

University of Kentucky (UK) Healthcare has alerted 1,079 patients of a February 4, 2014 data breach involving one of its vendor HIPAA business associates (BAs). The UK HealthCare billing services vendor, Talyst, reported to UK that a password...

Report: Walgreens ‘Well Experience’ exposed patient data

by Patrick Ouellette

Even when an organization such as Walgreens that handles protected health information (PHI) tries to improve the consumer experience, it must tread lightly in doing so. Within the past year or so, Walgreens has released its “Well Experience”...

HHS: Monroeville, Pa. did not breach HIPAA regulations

by Patrick Ouellette

As much as healthcare organizations, as well as the public HIPAA covered entities that handle patient data in some form, keep track of data breaches and government penalties for compliance failures, an organization being absolved of HIPAA breach...

Stanford Hospital, BAs agree to $4 million breach settlement

by Patrick Ouellette

As a result of a data breach that occurred back in 2010, Stanford Hospital & Clinics and a former contractor will reportedly have to dole out more than $4 million to settle a class action lawsuit. According to the San Jose Mercury News, 20,000...

St. Peter’s University Hospital uses patient identity matching

by Nicole Freeman

Saint Peter’s University Hospital in New Brunswick, New Jersey has signed a three-year contract with Malta Systems to fully-implement the technology company’s Privasent system. The hospital began a pilot program with the patient identity...

UCSF 9,986 patients of data breach

by Nicole Freeman

UC San Francisco (UCSF) reported that computers were stolen from UCSF Family Medicine Center at Lakeshore around January 11, according to a statement on its website. While it is unclear how many devices were involved in the incident, UCSF has...

St. Joseph Health releases data from 11,800 patients

by Nicole Freeman

A St. Joseph Health of California employee accidentally sent patient protected health information (PHI) to healthcare investment firm Cain Brothers in February, according to a report from The Press Democrat. The data, which related to home health...

Cornerstone Neurology data breach affects 548 patients

by Nicole Freeman

Cornerstone Health Care in High Point, North Carolina reported a laptop containing information from 548 patients stolen from Cornerstone Neurology, according to a report from The Business Journal. The laptop disappeared sometime between December...

United Healthcare, Roper Hospital fax breach update

by Nicole Freeman

After mistakenly receiving faxes from a Wisconsin hospital for over a year, Oregon man Stephen Butler discovered that a second hospital, Roper Hospital in Charleston, South Carolina, has sent him a fax containing protected health information...

Iowa DHS reports data breach affects 2,042 clients

by Nicole Freeman

The Iowa Department of Human Services (DHS) has reported a data breach that compromised 2,042 individuals’ protected health information (PHI). The breach stemmed from DHS employees acting inappropriately while performing social work assessments...

HIPAA audit preparation and compliance: BA effects on CEs

by Nicole Freeman

While the timetable for 2014 HIPAA audits has not been released, the Office for Civil Rights (OCR) has begun surveying covered entities and business associates (BAs) to gauge organizational preparedness for the upcoming OCR HIPAA Audit Program....

Los Angeles County DHS reveals 168,000 patient data breach

by Patrick Ouellette

The Los Angeles County Department of Health Services (DHS) recently announced that it has begun notifying 168,000 patients of a data breach at Sutherland Healthcare Solutions, which handles DHS’s billing and collections. Sutherland has...

HHS fines Skagit, Wash. $215K in first county HIPAA settlement

by Patrick Ouellette

As part of the first the first HIPAA violation settlement with a county government, the Department of Health and Human Services (HHS) announced today that Skagit County of Northwest Washington, agreed to a $215,000 monetary settlement and to...

HHS reports $41 million 2015 OCR privacy and security budget

by Patrick Ouellette

President Barack Obama’s Fiscal Year 2015 Budget in Brief for the Department of Health and Human Services (HHS) explained its monetary allocations and how the $1,010,479 billion (in outlays) HHS budget will support the major HHS initiatives...

Patient information breached after office computer theft

by Nicole Freeman

An office break-in may have comprised the protected health information (PHI) of patients at Dr. J.M. Benson’s Sherman, Texas practice, according to a report from the Herald Democrat. The incident was reported on January 5, 2014. During the...

Palo Verde Healthcare reports internal data breach

by Patrick Ouellette

The Palo Verde Healthcare District (PVHD) recently alerted an unknown number of patients with letters that a HIPAA violation had occurred involving their protected health information (PHI). Four former PVHD administrator employees a civil lawsuit...

X

SIGN UP and gain free access to articles, white papers, webcasts and exclusive interviews on

HIPAA Compliance
BYOD
Cybersecurity
Data Breaches
Ransomware

Our privacy policy

no, thanks