Healthcare Information Security

Healthcare Data Breaches

InterAct of Michigan Phishing Attack Exposes PHI on 1,290 People

August 16, 2018 - InterAct of Michigan reported to OCR on August 7 that an email hacking incident may have exposed PHI on 1,290 individuals. In a statement on its website, InterAct explained that it became aware on June 8 that an unauthorized third party accessed a company email account. The mental health and substance abuse treatment provider determined on July 30 that the email account contained...


More Articles

3.15M Records Exposed by 142 Healthcare Data Breaches in Q2 2018

by Fred Donovan

In the second quarter of 2018, 3.15 million patient records were compromised in 142 healthcare data breaches, according to the Protenus Breach Barometer. A discouraging 30 percent of privacy violations involved repeat offenders,...

301K Patients Involved in St. Mary’s Paper Records Data Breach

by Fred Donovan

SSM Health St. Mary’s Hospital in Jefferson City, Missouri, reported to OCR on July 30 that an improper disposal of paper medical records may have resulted in a data breach affecting 301,000 individuals. In a public notice, St....

19K Orlando Orthopaedic Patients At Risk from Lax Vendor Security

by Fred Donovan

Florida-based Orlando Orthopaedic Center reported to OCR on July 20 that 19,101 individuals were affected by lax vendor security, leading to a possible PHI breach. The breach occurred at a transcription service vendor in December,...

Accidents Were Most Frequent Cause of Healthcare Data Breaches

by Fred Donovan

In the second quarter of 2018, the most frequent cause of healthcare data breaches was accidental disclosures, according to incidents reported to the Beazley Breach Response Services team.  Accidental disclosures made up 38 percent...

Phishing Attack Exposes PHI of 1.4M UnityPoint Health Patients

by Fred Donovan

Iowa-based UnityPoint Health said July 30 that it notified approximately 1.4 million patients of a recent email phishing attack incident that may have compromised their PHI. Patient information that might have...

PHI of 105K People At Risk in Boys Town Healthcare Data Breach

by Fred Donovan

Nebraska-based Boys Town National Research Hospital reported to OCR July 20 a healthcare data breach that may have exposed PHI on 105,309 individuals. In a statement, Boys Town said it discovered on May 23 unusual activity relating to an...

Up to $150K for Victims of Flowers’ Healthcare Data Breach

by Fred Donovan

More than 1,200 people could receive up to $150,000 in payments following the tentative settlement of a class-action lawsuit against Alabama-based Flowers Hospital for a 2014 healthcare data breach, TV station WTVY reported on July...

PHI of 18,000 UMCP Patients at Risk in Healthcare Data Breach

by Fred Donovan

UMC Physicians (UMCP), a physician practice managment group set up by Texas-based UMC Health System, announced July 11 that it had notified more than 18,000 patients about a healthcare data breach in which their PHI may have...

Health Plan Victims of Healthcare Data Breaches Surge 1,000%

by Fred Donovan

The total number of individuals impacted by healthcare data breaches at health plans surged by more than 1,000 percent in the first five months of 2018, according to Fortified Health Security’s 2018 Mid-Year Horizon Report. Health...

Healthcare Data Breach Costs Remain Highest Among Industries

by Fred Donovan

In their 2018 Cost of a Data Breach Report, IBM and the Ponemon Institute found that healthcare data breach costs average $408 per record, the highest of any industry for the eighth straight year and nearly three times higher than the...

MedEvolve Cops to Healthcare Data Breach With PHI on 200K at Risk

by Fred Donovan

Arkansas-based practice management software provider MedEvolve has finally copped to a healthcare data breach at one of its customers, Premier Immediate Medical Care, which may have impacted more than 200,000 current and former patients of...

Children’s Mercy Faces Lawsuit Over Healthcare Data Breach

by Fred Donovan

A class action lawsuit was filed this week against Kansas City, Missouri-based Children’s Mercy Hospital in response to a healthcare data breach that affected more than 60,000 individuals earlier this year, the Kansas City Star...

Vulnerable APIs Could Be Used to Execute a Healthcare Data Breach

by Fred Donovan

Application programming interfaces (APIs) will be exploited more by hackers to gain access to healthcare organizations and execute a healthcare data breach or other type of cyberattack, according to the June 2018 HIMSS Healthcare and...

April Was the Cruelest Month for Healthcare Data Breaches

by Fred Donovan

April brings rain and HIPAA breaches, with April being the worst month for healthcare data breaches so far this year, according to the data posted on the OCR’s Breach Portal. For the month of April, 42 cyber incidents were reported...

Michigan Medicine Admits to Healthcare Data Breach in Laptop Theft

by Fred Donovan

University of Michigan’s Michigan Medicine announced June 25 that around 870 patients were affected by a healthcare data breach that involved the theft of an unencrypted laptop with PHI from an employee’s car. The theft...

270,000 Put at Risk by Med Associates Healthcare Data Breach

by Fred Donovan

A healthcare data breach at Med Associates, a Latham, NY-based health billing company, may have exposed PHI on more than 270,000 people, reported the Times Union newspaper. In an announcement on its website, Med Associates said that it...

RISE Ransomware Attack Puts 3,731 Patients at Risk

by Fred Donovan

RISE Wisconsin reported June 7 to OCR that it suffered a ransomware attack in which PHI on 3,731 individuals may have been exposed. In a press release, RISE said that patient names, addresses, dates of birth, Social Security numbers, and...

Dignity Health Data Breach Affects 55.9K Patients

by Fred Donovan

On May 31, California-based Dignity Health reported to OCR that a data breach exposed personal information on 55,947 patients. In a Dignity Health statement emailed to HealthITSecurity.com, the healthcare provider explained that an email...

Public Server Exposure Creates PHI Data Security Worries for 200K

by Fred Donovan

Unsecured files on a public FTP server maintained by Arkansas-based practice management software provider MedEvolve may have caused a PHI data security breach for more 200,000 patients, reported DataBreaches.net. Most of the patient files...

X

SIGN UP and gain free access to articles, white papers, webcasts and exclusive interviews on

HIPAA Compliance
BYOD
Cybersecurity
Data Breaches
Ransomware

Our privacy policy

no, thanks