UPDATE: UHS Health System Confirms All US Sites Affected by Ransomware Attack
Universal Health Services, one of the largest US health systems, confirmed on October 3 that the ransomware attack reported last week has affected all of its US care sites and hospitals, spurring...Anthem Settles with 44 States for $40M Over 2014 Breach of 78.8M
A multi-state coalition made up of 44 states and Washington, D.C reached a $39.5 million settlement with Anthem, to resolve breach claims stemming from the...Blackbaud Confirms Hackers Stole Some SSNs, as Lawsuits Increase
The ransomware hackers behind the massive Blackbaud ransomware attack and subsequent data breach likely had access to more unencrypted data than previously disclosed, including bank account...Premera Pays OCR $6.85M to Settle HIPAA Violations, Breach of 10.4M
The Department of Health and Human Services Office for Civil Rights settled with Premera Blue Cross for $6.85 million and a corrective action plan, after an audit into the insurer’s...OCR Settles With Business Associate CHSPSC for $2.3 Over Breach of 6M
The Department of Health and Human Services Office for Civil Rights reached a $2.3 million settlement with CHSPSC, which provides services to hospitals and...Athens Orthopedic Pays OCR $1.5M Over Systemic HIPAA Noncompliance
The Office for Civil Rights reached a settlement with the Athens Orthopedic Clinic for $1.5 million over a 2016 data breach caused by the notorious hacking group...Patient Breach Victims File Lawsuits Against Assured Imaging, BJC Health
The patients impacted by two separate data breaches of Assured Imaging and BJC Healthcare have filed lawsuits against the providers, alleging security failings were behind...HIPAA Compliance: ONC Updates Security Risk Assessment Tool
The Office of the National Coordinator (ONC) in collaboration with the Office of Civil Rights released an update to the Department of Health and Human Services Security Risk Assessment Tool designed to...OCR Settles with 5 Providers Over HIPAA Right of Access Violations
The Office for Civil Rights closed investigations and announced settlements with five providers over separate HIPAA right of access violations, which brings the total number of...Cyber Resilient Vendor Relationships for Healthcare’s Threat Landscape
The threats targeting healthcare continue to increase in both their frequency and sophistication. And if the latest third-party vendor security incident is any indication, the need for developing a cyber resilient vendor management process...Patient Data Privacy Lawsuit Against Google, UChicago Dismissed
The patient data privacy lawsuit brought against Google and the University of Chicago Medical Center was dismissed by a federal judge in Illinois on September 4, ruling that patient who filed the...Assured Imaging Ransomware Causes Data Theft Affecting 245K Patients
Arizona-based Assured Imaging is notifying 244,813 patients that some of their data was potentially exfiltrated after a ransomware attack in May. On May 19, Assured...OCR Updates HIPAA Resource for mHealth Apps, Cloud Computing
The Department of Health and Human Services Office for Civil Rights updated and renamed its former Health App Developer Portal as a HIPAA resource page for mobile health apps, APIs, and...OCR: IT Asset Inventory Can Improve HIPAA-Required Risk Analysis
The Office for Civil Rights recently shared a detailed list of IT asset inventory steps, which can help covered entities and their business associates better fulfill the HIPAA Security Rule...Blackbaud Ransomware Hack Affects 657K Maine Health System Donors
A ransomware attack on healthcare business associate Blackbaud compromised the data from 657,392 donors, potential donors, and patients who support the Northern Light Health...Sponsored by Jumio