Healthcare Information Security

Healthcare Data Breach

Week-Long Hack on Vermont Provider Breaches 32,000 Patient Records

December 18, 2018 - Elizabethtown Community Hospital, part of the University of Vermont Health Network, notified about 32,000 patients that their personal health information was breached during an email hack. On October 18, hospital officials discovered an unauthorized user had accessed an employee email account. The password to the account was immediately changed and officials hired a forensics team to...


More Articles

30 Percent of Online Health Databases Expose Patient Data

by Jessica Davis

About 30 percent of online healthcare databases are left exposed online due to misconfiguration, according to a recent report from IntSights. The researchers scoured the internet to determine how easy it would be for a hacker to access...

EmblemHealth Fined $100K for 2016 Healthcare Data Breach

by Jessica Davis

New Jersey Attorney General Gurbir Grewal fined health insurance vendor EmblemHealth $100,000, for its 2016 health data breach of more than 6,000 New Jersey residents. The New York-based insurer’s subsidiary Group Health is also...

12 States Sue Business Associate for 2015 Health Data Breach

by Jessica Davis

A dozen states have filed a Federal lawsuit against Indiana-based Medical Informatics Engineering (MIE) and subsidiary NoMoreClipboard, over a 2015 hack that breached the data of more than 3.9 million patients nationwide. The Attorneys...

42,000 Records Breached in Cancer Treatment Center Phishing Hack

by Jessica Davis

Cancer Treatment Centers of America at Western Regional Medical Center is notifying about 41,948 patients that their personal data was potentially breached by a phishing attack. On September 26, officials discovered an email account was...

DOJ Indicts SamSam Hackers Behind Targeted Ransomware Attacks

by Jessica Davis

The Department of Justice indicted two Iranian hackers behind the targeted and highly successful SamSam ransomware campaign that has plagued the healthcare sector for several years. The federal prosecutors charged Mohammad Mehdi Shah...

SSNs, Tax Data Exposed in Healthcare.gov Health Data Breach

by Fred Donovan

Partial Social Security numbers (SSNs), immigration status, and tax information might have been stolen as a result of the health data breach on the Healthcare.gov portal last month. In October, CMS admitted to a breach of...

Health Data Breach Compromised PHI on 566K CNO Customers

by Fred Donovan

CNO Financial Group reported to OCR on Oct. 25 that a breach compromised PHI on 566,217 individuals. CNO Financial Group’s largest unit, Bankers’ Life, issued a statement describing the breach. The group discovered...

NJ Fines Vendor Behind Virtua Healthcare Data Breach $200K

by Fred Donovan

New Jersey is slapping a $200,000 fine on a defunct Georgia-based medical transcription company that caused the Virtua Medical Group breach impacting more than 1,650 individuals in 2016. The $200,000 fine includes $191,492.00 in civil...

4.4M Records Exposed in 117 Health Data Breaches in Q3 2018

by Fred Donovan

A total of 4.4 million patient records were compromised in 117 health data breaches in the third quarter of 2018, according to the latest Protenus Breach Barometer. These figures compare with 3.15 million records compromised in 142 health...

Ransomware Attack at Iowa Eye Clinic Puts PHI of 40K at Risk

by Fred Donovan

Iowa-based Jones Eye Clinic suffered a ransomware attack that may have compromised personal data on 40,000 patients, the Sioux City Journal reported Oct. 24. Information that might have been exposed included patient full name, address,...

HHS OIG Probes Healthcare.gov Portal Data Breach Affecting 75K

by Fred Donovan

HHS OIG is investigating the Healthcare.gov portal data breach that put personal information on 75,000 individuals at risk. So far, the office has determined that no PHI, banking, or tax information was exposed during the breach,...

Healthcare Takes Around 350 Days to Identify, Contain Data Breach

by Fred Donovan

The healthcare industry had the second highest number of days to identify and contain a data breach, around 350 days, according to a recent study by The Ponemon Institute and IBM. The healthcare industry was second only to the...

ERS Online Coding Error Exposes 1.25M Users to Health Data Breach

by Fred Donovan

The Employee Retirement System (ERS) of Texas reported to OCR on Oct. 15 that information on potentially 1.25 million people may have been exposed in a health data breach. In a statement on its website, ERS explained that a coding error...

Most US Consumers Worry about Electronic Health Records Breach

by Fred Donovan

A full 80 percent of 1,000 US consumer surveyed by Unisys are concerned that hackers could access their electronic health records (EHRs) at their healthcare provider. Breaking that down, 14 percent are very concerned about an EHR breach,...

MNIT Commissioner Faces Legislative Scrutiny Over Phishing Attacks

by Fred Donovan

Minnesota IT Services (MNIT) Commissioner Johanna Clyborne faced criticism for the four-month delay in informing victims of two phishing attacks that exposed PHI and other personal information on 20,800 clients of the Minnesota Department...

Health Data Breach on Healthcare.gov Portal Affects 75K People

by Fred Donovan

Personal information of around 75,000 individuals is at risk from a health data breach that affected a Healthcare.gov portal for agents and brokers, CMS announced Oct. 19. The breached portal, called the Direct Enrollment pathway, allows...

PHI on 37K at Risk in Gold Coast Health Plan Phishing Attack

by Fred Donovan

California-based Gold Coast Health Plan (GCHP) reported to OCR Oct. 5 that a phishing attack exposed PHI on 37,005 individuals. In a Oct. 8 news release, GCHP said that attackers compromised an employee’s email account,...

Anthem to Pay Record $16M for HIPAA Violations Exposing 79M Records

by Fred Donovan

Anthem has agreed to pay a record $16 million, almost three times the previous highest HIPAA penalty, and to take correct actions to settle HIPAA violations that exposed the ePHI of close to 79 million people, OCR announced Oct....

Michigan Medicine Reports 2nd Healthcare Data Breach This Year

by Fred Donovan

The University of Michigan’s Michigan Medicine reported to OCR on Sept. 28 that there was an unauthorized access/disclosure of paper records that affected 3,624 individuals. In a press release, Michigan Medicine said that there was...

X

SIGN UP and gain free access to articles, white papers, webcasts and exclusive interviews on

HIPAA Compliance
BYOD
Cybersecurity
Data Breaches
Ransomware

Our privacy policy


no, thanks

Continue to site...