Healthcare Information Security

Healthcare Data Breaches

15 Million Patient Records Breached in 2018; Hacking, Phishing Surges

February 12, 2019 - Fifteen million patient records were breached during 503 healthcare data breaches in 2018, nearly triple the amount of reported incidents from the previous year, according to the Protenus 2019 Breach Barometer. Protenus analyzed the breaches reported to the Department of Health and Human Services, media, or other sources. The researchers had data for 417 of the 503 breaches, which...


More Articles

Roper St. Francis, Valley Professionals Phishing Attacks Breach Patient Data

by Jessica Davis

Charleston, South Carolina-based Roper St. Francis Healthcare and Valley Professionals Community Health Center (VPCHC) in Indiana recently began notifying patients that their data was potentially breached after employees fell victim to...

Valley Hope Association Email Hack Breaches Patient Data

by Jessica Davis

Kansas-based Valley Hope Association recently began notifying patients that their data was potentially breached during an email hack. VHA is a drug and alcohol addiction treatment organization with 16 facilities in seven states. Officials...

Phishing Attack Hits Kent County Community Mental Health

by Jessica Davis

Kent County Community Mental Health Authority is notifying 2,284 patients that their data was potentially breached after several phishing attacks. According to officials, three employees fell victim to targeted phishing campaigns on...

Third-Party Vendor Phishing Attack Breaches 31,000 Patient Records

by Jessica Davis

Managed Health Services of Indiana Health Plan is notifying about 31,000 patients of a potential breach to their personal data, caused by a phishing attack on a business associate. According to officials, several employees of LCP...

Hospitals Spend 64% More on Advertising After a Data Breach

by Jessica Davis

Hospitals spend 64 percent more annually on advertising after a breach over the following two years, according to a recent report from the American Journal of Managed Care. Researchers Sung J. Choi and M. Eric Johnson examined nonfederal...

SSNs, Tax Data Exposed in Healthcare.gov Health Data Breach

by Fred Donovan

Partial Social Security numbers (SSNs), immigration status, and tax information might have been stolen as a result of the health data breach on the Healthcare.gov portal last month. In October, CMS admitted to a breach of...

Health Data Breach Compromised PHI on 566K CNO Customers

by Fred Donovan

CNO Financial Group reported to OCR on Oct. 25 that a breach compromised PHI on 566,217 individuals. CNO Financial Group’s largest unit, Bankers’ Life, issued a statement describing the breach. The group discovered...

4.4M Records Exposed in 117 Health Data Breaches in Q3 2018

by Fred Donovan

A total of 4.4 million patient records were compromised in 117 health data breaches in the third quarter of 2018, according to the latest Protenus Breach Barometer. These figures compare with 3.15 million records compromised in 142 health...

Healthcare Takes Around 350 Days to Identify, Contain Data Breach

by Fred Donovan

The healthcare industry had the second highest number of days to identify and contain a data breach, around 350 days, according to a recent study by The Ponemon Institute and IBM. The healthcare industry was second only to the...

ERS Online Coding Error Exposes 1.25M Users to Health Data Breach

by Fred Donovan

The Employee Retirement System (ERS) of Texas reported to OCR on Oct. 15 that information on potentially 1.25 million people may have been exposed in a health data breach. In a statement on its website, ERS explained that a coding error...

Health Data Breach on Healthcare.gov Portal Affects 75K People

by Fred Donovan

Personal information of around 75,000 individuals is at risk from a health data breach that affected a Healthcare.gov portal for agents and brokers, CMS announced Oct. 19. The breached portal, called the Direct Enrollment pathway, allows...

Mistakes, Not Hacks, Make Up Bulk of Medicaid Data Breaches

by Fred Donovan

Most of the Medicaid data breaches that state agencies and their contractors reported in 2016 disclosed information about a single individual and often resulted from misdirected letters or faxes, according to a report released last week by...

PHI on 37K at Risk in Gold Coast Health Plan Phishing Attack

by Fred Donovan

California-based Gold Coast Health Plan (GCHP) reported to OCR Oct. 5 that a phishing attack exposed PHI on 37,005 individuals. In a Oct. 8 news release, GCHP said that attackers compromised an employee’s email account,...

Anthem to Pay Record $16M for HIPAA Violations Exposing 79M Records

by Fred Donovan

Anthem has agreed to pay a record $16 million, almost three times the previous highest HIPAA penalty, and to take correct actions to settle HIPAA violations that exposed the ePHI of close to 79 million people, OCR announced Oct....

Michigan Medicine Reports 2nd Healthcare Data Breach This Year

by Fred Donovan

The University of Michigan’s Michigan Medicine reported to OCR on Sept. 28 that there was an unauthorized access/disclosure of paper records that affected 3,624 individuals. In a press release, Michigan Medicine said that there was...

California Court Denies Motion to Dismiss Health Data Breach Suit

by Fred Donovan

The California Superior Court has denied a motion to dismiss a class action lawsuit against A.J. Boggs & Company for a health data breach that exposed confidential medical records of 93 individuals with HIV, Lambda Legal, who is...

Hacker Steals 124 PHI-Laden Emails in Aspire Phishing Attack

by Fred Donovan

Aspire Health, a Nashville-based in-home healthcare provider, suffered a phishing attack on Sept. 3 in which a hacker gained access to its internal email system earlier this month, according to court documents cited by...

MGH Study Finds Major Increase in US Healthcare Data Breaches

by Fred Donovan

Since 2010, the total number of healthcare data breaches has increased steadily every year — except in 2015 — from 199 in 2010 to 344 in 2017, according to an analysis of US health care data conducted by two Massachusetts...

UMass Memorial to Pay $230,000 for Healthcare Data Breaches

by Fred Donovan

UMass Memorial healthcare entities have agreed to pay $230,000 to the state of Massachusetts to resolve claims that two separate healthcare data breaches exposed PHI of more than 15,000 state residents. The lawsuit by the Massachusetts...

X

SIGN UP and gain free access to articles, white papers, webcasts and exclusive interviews on

HIPAA Compliance
BYOD
Cybersecurity
Data Breaches
Ransomware

Our privacy policy


no, thanks

Continue to site...