Healthcare Information Security

Healthcare Data Breaches

RISE Ransomware Attack Puts 3,731 Patients at Risk

June 14, 2018 - RISE Wisconsin reported June 7 to OCR that it suffered a ransomware attack in which PHI on 3,731 individuals may have been exposed. In a press release, RISE said that patient names, addresses, dates of birth, Social Security numbers, and some health information may have been accessed by the attackers. RISE said that it discovered on April 8 that it had been the target of a ransomware attack...


More Articles

Dignity Health Data Breach Affects 55.9K Patients

by Fred Donovan

On May 31, California-based Dignity Health reported to OCR that a data breach exposed personal information on 55,947 patients. In a Dignity Health statement emailed to HealthITSecurity.com, the healthcare provider explained that an email list...

Public Server Exposure Creates PHI Data Security Worries for 200K

by Fred Donovan

Unsecured files on a public FTP server maintained by Arkansas-based practice management software provider MedEvolve may have caused a PHI data security breach for more 200,000 patients, reported DataBreaches.net. Most of the patient files on...

Data on 500K Patients Exposed in LifeBridge Healthcare Data Breach

by Fred Donovan

LifeBridge Health, a healthcare provider located in northwest Baltimore, has notified more than 500,000 patients that their personal information may have been exposed in a September 2016 healthcare data breach, the provider said in a statement...

45,000 Patient Records Exposed in Nuance Healthcare Data Breach

by Fred Donovan

Nuance, a Burlington, Mass.-based provider of speech recognition software, said in a May 10 SEC filing that a healthcare data breach occurred when an unauthorized third party gained access to 45,000 patient records hosted on one of its medical...

Reported Malware Creates PHI Data Security Concern for 12K in FL

by Fred Donovan

Malware that infected a number of Florida Hospital websites may have created a PHI data security issue, the Orlando Sentinel reported May 2. Patient information that could have been exposed includes patient names, email addresses, phone numbers,...

1.13M Records Exposed by 110 Healthcare Data Breaches in Q1 2018

by Fred Donovan

Around 1.13 million patient records were compromised in 110 healthcare data breaches in the first quarter of 2018, according to data released May 3 in the Protenus Breach Barometer. Healthcare insiders were most likely to snoop on family members—a...

Scenic Bluffs’ Healthcare Data Breach Could Affect 2,889

by Fred Donovan

Wisconsin-based Scenic Bluffs Community Health Centers said that it experienced a healthcare data breach in which attackers gained access to a staff member’s email and may have stolen information on 2,889 patients, according to a press...

Texas Health Says 3,808 Affected by Healthcare Data Breach

by Fred Donovan

Texas Health Physicians Group recently disclosed that an unauthorized third party had gained access to some of its email accounts, resulting in a healthcare data breach that affected close to 4,000 patients. The information that was accessed...

Healthcare Data Breaches Now Covered by Arizona Law

by Fred Donovan

Arizona is now including healthcare data breaches in its data breach notification law. Under legislation introduced in January and signed into law by Arizona Governor Doug Ducey earlier this month, information about an individual's medical...

Integrated Rehab Consultants Admits to 2016 Healthcare Data Breach

by Fred Donovan

Chicago-based Integrated Rehab Consultants is just now admitting to a healthcare data breach that it knew about back in 2016.  In December 2016, IRC received a tip from a healthcare researcher about patient data posted on a public repository....

Healthcare Industry Worst in Stopping Insider Data Breaches

by Fred Donovan

The healthcare industry is the worst when it comes to stopping insider data breaches, according to Verizon’s 2018 Data Breach Investigations Report (DBIR) released April 10. The report found that the healthcare industry was the only sector...

Survey Finds Lax Patching Practices Feed Healthcare Data Breaches

by Fred Donovan

Patching vulnerabilities in your systems and applications is one of the most important steps you can take to prevent a healthcare data breach at your organization. Yet, a majority of security professionals in the healthcare and pharmaceutical...

Federal Lawsuit Filed Following Alleged CVS Health Data Breach

by Elizabeth Snell

Three plaintiffs filed a federal lawsuit on March 21, 2018, claiming that a CVS Health data breach exposed the PHI of over 6,000 individuals, including revealing the HIV status of the individuals.  CVS Health, Caremark LLC (a subsidiary...

SAMBA Mailing Error Creates Data Security Concern for 13.9K

by Elizabeth Snell

A programming error that occurred during the preparation process for mailing out certain IRS tax forms may have led to documents being sent to the wrong recipients, creating a data security concern for some individuals, according to SAMBA Federal...

Banner Health Data Breach Part of OCR Investigation

by Elizabeth Snell

The 2016 Banner Health data breach is reportedly being investigated by OCR, although it is currently not possible to estimate the range of potential fines from the agency, according to consolidated financial statements. An Ernst & Young year-end...

Potential PHI Exposure at BJC HealthCare Impacts 33K

by Elizabeth Snell

An internal security scan revealed that there was a data server configuration error, allowing potential PHI exposure at BJC HealthCare. The Missouri-based organization revealed in an online statement that 33,420 patients may have had their information...

What the CareFirst Data Breach Decision Means for Healthcare

by Elizabeth Snell

In February 2018, the US Supreme Court denied certiorari in the CareFirst data breach case. CareFirst had requested the Court review the class action lawsuit against it that came from two separate incidents. The first occurred in June 2014, followed...

134K Possibly Affected in St. Peter’s Server Data Breach

by Elizabeth Snell

An unauthorized third party gained access to St. Peter’s Surgery & Endoscopy Center (the Center) servers on January 8, 2018, according to an online statement. The potential data breach was discovered on the same day of the infiltration,...

EmblemHealth Data Breach Leads to $575K NY State Settlement

by Elizabeth Snell

New York Attorney General Eric Schneiderman announced that a $575,000 settlement had been reached in the EmblemHealth data breach case, following a mailing error incident that exposed 81,122 Social Security numbers. The health plan discovered...

X

SIGN UP and gain free access to articles, white papers, webcasts and exclusive interviews on

HIPAA Compliance
BYOD
Cybersecurity
Data Breaches
Ransomware

Our privacy policy

no, thanks