Healthcare Information Security

PHI Data Breaches

Patient Data Exposure Possibly Impacts 15K at FL Center

July 20, 2017 - On May 5, 2017, Tampa Bay Surgery Center was made aware of a security incident in which certain patient data was posted to a public online file-sharing site by an unauthorized third party. Law enforcement informed the healthcare center that the information was posted the day prior. A Twitter user claiming to be the unauthorized party had obtained the file and included a link to the file on...


More Articles

Hacking Continues to Cause Majority of Reported Data Breaches

by Elizabeth Snell

Through June 2017 there has been a 29 percent increase from 2016 in US reported data breaches, according to a report from the Identity Theft Resource Center (ITRC) and CyberScout. Overall, the number of breaches could hit a 37 percent annual...

Patient Safety Critical Part of Healthcare Information Security

by Elizabeth Snell

Healthcare data breaches, denial of service (DoS) attacks, and ransomware attacks are a few of the potential threats to healthcare information security that could impact patient safety, according to a report published in The New England Journal...

UC Davis Health System Phishing Attack Potentially Impacts 15K

by Kate Monica

On May 15, 2017, UC Davis Health suffered a potential security breach when a phishing email was sent to an employee. Through the phishing email, hackers gained access to the employee’s account and posed as the account owner to send emails...

PHI of 13K Involved in Ransomware Attack at PA Health Clinic

by Kate Monica

On April 24, 2017, Family Tree Health Clinic discovered a ransomware attack potentially affecting PHI stored in its IT system, according to an online statement. The Pennsylvania health clinic immediately restored its system data using backup...

Saint Thomas Health Data Breach from Misplaced Documents

by Kate Monica

In April, Saint Thomas Health discovered a potential health data breach involving patient information at its facility in Murfreesboro, Tennessee. The breach potentially impacted 2,859 Saint Thomas patients, the organization said in an online...

$115M Settlement Proposed in Anthem Data Breach Case

by Elizabeth Snell

Plaintiffs in the Anthem data breach litigation case recently filed a $115 million settlement proposal, which would also require the healthcare provider to guarantee a certain level of funding for information security. Anthem would also need...

Airway Oxygen Ransomware Attack May Affect PHI of 500K

by Elizabeth Snell

Michigan-based Airway Oxygen, Inc. is notifying patients that their PHI may have been involved in a ransomware attack that took place earlier this year. The medical equipment supply company explained in its notification letter to individuals...

Improper Disposal Creates PHI Security Concern for 1.8K

by Kate Monica

On June 16, the Texas Health and Human Services Commission (HHSC) notified patients of a recent potential security breach that may have involved the PHI of 1,842 residents of the Houston area. The incident was discovered when a box of forms containing...

Healthcare Data Breach Costs Highest for 7th Straight Year

by Elizabeth Snell

Healthcare data breach costs are the highest among surveyed sectors for the seventh straight year, according to the 2017 Cost of a Data Breach Study: Global Overview. The average cost of a data breach is $3.62 million globally, which...

$130K NY State Settlement from Late Data Breach Notification

by Elizabeth Snell

CoPilot Provider Support Services, Inc. recently agreed to a $130,000 settlement with New York after the company was found to have violated state data breach notification law, according to the New York Attorney General’s office. CoPilot...

Online Security Breach Exposes PHI of 5K Medicaid Patients

by Kate Monica

On April 7, 2017, officials from the Mississippi Division of Medicaid (DOM) discovered evidence of a potential online security breach exposing the PHI of approximately 5,220 patients. An investigation into the incident revealed the potential...

PHI Security Breach Potentially Affects 2K ND Medicaid Patients

by Kate Monica

On May 10, 2017, the North Dakota Department of Human Services (NDDHS) discovered a report of discarded NDDHS Medicaid claim resolution worksheet documents containing PHI. The papers were reportedly found in a dumpster in Bismark, North Dakota....

Plaintiff Dismisses MDLive Patient Data Privacy Lawsuit

by Elizabeth Snell

The plaintiff in a patient data privacy lawsuit filed against MDLive, Inc. voluntarily dismissed the suit on June 2, 2017, according to a press release. Joan Richards had filed the class-action lawsuit, claiming that an MDLive app asked individuals...

Healthcare Hacking Leading Cause for 2017 Incidents

by Elizabeth Snell

Cybersecurity issues continue to plague the healthcare industry, so it should come as no surprise that healthcare hacking and IT incidents account for the majority of large-scale incidents in 2017. OCR numbers show that four of the five largest...

Unauthorized PHI Access at Coney Island Hospital Impacts 3.4K

by Kate Monica

On March 10, 2017, NYC Health + Hospitals at Coney Island discovered that it had suffered unauthorized PHI access occurring over the course of three months from December 2016 to March 2017. The incident involved a volunteer working in the Phlebotomy...

PHI Data Breach Leads to $387K OCR HIPAA Settlement

by Elizabeth Snell

St. Luke’s-Roosevelt Hospital Center Inc. (St. Luke’s) settled alleged HIPAA violations from a PHI data breach by paying $387,000 in an OCR HIPAA settlement. Formerly Spencer Cox Center for Health (the Spencer Cox Center), New York-based...

Virginia Mason Patient Data Privacy Breach Leads to Lawsuit

by Elizabeth Snell

After receiving $8.5 million in a medical negligence lawsuit, a Washington couple is filing another lawsuit against Virginia Mason Medical Center for its alleged actions following a patient data privacy breach. Matthew and Sarah Hipps, MD, claim...

Memorial Hermann Agrees to $2.4M OCR HIPAA Settlement

by Elizabeth Snell

Texas-based Memorial Hermann Health System (MHHS) recently agreed to a $2.4 million OCR HIPAA settlement following multiple allegations of inappropriate PHI disclosure. OCR conducted a compliance review after numerous media reports claimed that...

NM Supreme Court to Review Alleged HIPAA Violation Case

by Elizabeth Snell

A New Mexico district court mostly denied a motion to dismiss a case alleging HIPAA violations last Friday, and the state Supreme Court will now consider HIPAA’s scope in relation to the case. District Judge Judith C. Herrera denied...

X

SIGN UP and gain free access to articles, white papers, webcasts and exclusive interviews on

HIPAA Compliance
BYOD
Cybersecurity
Data Breaches
Ransomware

Our privacy policy

no, thanks