Healthcare Information Security

PHI Data Breaches

$2.3M OCR Settlement Reached for 21st Century Oncology Data Breach

December 14, 2017 - Cancer care services provider 21st Century Oncology (21CO) recently agreed to a $2.3 million OCR settlement, following a 2015 data breach. OCR found in its investigation that 21CO impermissibly disclosed the PHI of 2,213,597 of its patients and “failed to conduct an accurate and thorough assessment of the potential risks and vulnerabilities to the confidentiality, integrity, and availability...


More Articles

Unauthorized Server Access Creates Data Security Concern for 47K

by Elizabeth Snell

Carl Albert State College (CASC) is re-notifying certain individuals of unauthorized server access from 2016 that may create data security concerns. CASC explained in an online statement that the server was accessed on April 7, 2016. It...

Healthcare Ransomware Attacks Contribute to 2017 Top Data Breaches

by Elizabeth Snell

With the majority of healthcare providers reporting that they were impacted by a healthcare ransomware attack in the past 12 months, it is not surprising that nine out of the 10 largest breaches reported to OCR in 2017 were caused by hacking...

Henry Ford Health System PHI Data Breach Affects 18K

by Elizabeth Snell

Henry Ford Health System experienced a PHI data breach after an unauthorized individual gained access to or stole a group of employees’ email accounts, according to an online statement from the organization. Henry Ford said it is notifying...

Health Data Privacy Concerns Key Influence in PHI Data Sharing

by Elizabeth Snell

Patients might be more willing to participate in PHI data sharing when their health data privacy concerns have been properly addressed, according to a recent study published in the Journal of Medical Internet Research. Providers must understand...

12K Affected in ShopRite Supermarkets Data Security Incident

by Elizabeth Snell

ShopRite Supermarkets, Inc. announced that the Kingston, New York ShopRite experienced a data security incident that potentially put personal and medical information of customers at risk. A pharmacy device that captured signatures was inadvertently...

$2M Settlement Reached in Cottage Health Data Breach Case

by Elizabeth Snell

Cottage Health System recently reached a $2 million settlement with the California Attorney General’s office after two separate health data breach incidents that took place in 2013 and 2015. In total, more than 50,000 patients had their...

PHI of 9.5K Possibly Compromised in WI Healthcare Phishing Attack

by Elizabeth Snell

The Medical College of Wisconsin (MCW) announced that it suffered a healthcare phishing attack and that certain PHI may have been affected as it was in the accessed employee email accounts. An investigation and manual document review showed that...

Improve Healthcare Data Security with a Strong Backup Strategy

by Bill Kleyman

In working with healthcare organizations, there are constantly two topics that are brought up: healthcare data security and resiliency. Of course, there are other conversations around user experience, cloud, and so on. However, a major outage...

Catholic Charities Healthcare Cyberattack Impacts 4.6K

by Elizabeth Snell

Catholic Charities announced that its Glens Falls office experienced a healthcare cyberattack on a server containing information of approximately 4,600 current and former clients and several employees. Unauthorized software was discovered on...

CareFirst Data Breach Case Moves to US Supreme Court

by Elizabeth Snell

A petition for writ of certiorari was recently filed with the US Supreme Court, pushing the CareFirst data breach case forward. CareFirst wants its case reviewed, which could potentially reignite the debate over how plaintiffs need to establish...

Data Backups Aid in Ransomware Attack Recovery for KS Agency

by Elizabeth Snell

East Central Kansas Area Agency on Aging (ECKAAA) said in an online statement that it was the victim of a ransomware attack on September 5, 2017, leaving files encrypted and inaccessible. ECKAAA said it immediately hired a cybersecurity company...

Proposals Made for Improved State Data Breach Laws

by Elizabeth Snell

The large-scale Equifax data breach has pushed some states into creating more stringent state data breach laws, looking to close gaps in how sensitive consumer information is protected. The Vermont House Committee on Commerce and Economic Development...

Researchers Question Previous Health Data Breach Study

by Elizabeth Snell

Claiming that larger healthcare facilities have a higher risk of experiencing a health data breach “neglects inherent biases in data collection and reporting practices,” according to a letter published in the Journal of the American...

Computer Theft Raises Health Data Security Concerns for 8K

by Elizabeth Snell

Brevard Physician Associates announced on its website that it was burglarized on September 4, 2017, raising possible health data security concerns for 7,976 patients. The Melbourne, Florida-based facility stated that it was notified on September...

16K Patients Notified Following Phishing Scam in MD Facility

by Elizabeth Snell

Maryland-based Chase Brexton Health Care reported that “a number of” its employees fell for a phishing scam between August 2, 2017 and August 3, 2017. Employees received a “bogus” survey via email, which once completed,...

41% of Health Data Breaches Stem from Unintended Disclosure

by Elizabeth Snell

Unintended data disclosure, such as emails containing PHI sent to the wrong recipient or servers left publicly accessible, accounted for 41 percent of reported health data breaches the first nine months in 2017, according to research from Beazley....

Kromtech Security Discovers Health Data Breach of 150K Patients

by Elizabeth Snell

Kromtech Security researchers found a potential publicly accessible Amazon S3 repository that may have led to a health data breach impacting over 150,000 individuals, according to a company report. “Patient Home Monitoring” is...

Arkansas Facility Ransomware Attack Potentially Affects 128K

by Elizabeth Snell

Arkansas Oral & Facial Surgery Center recently announced on its website that it experienced a ransomware attack on its computer network on July 26, 2017. An investigation determined that the ransomware had been installed either earlier that...

Maintaining Healthcare Data Security with File Sharing Options

by Bill Kleyman

I still find challenges within the healthcare world when it comes to file sharing and data management. Sure, we can remove Dropbox or other types of file sharing mechanisms, but are we making the user experience worse? And, are we really plugging...

X

SIGN UP and gain free access to articles, white papers, webcasts and exclusive interviews on

HIPAA Compliance
BYOD
Cybersecurity
Data Breaches
Ransomware

Our privacy policy

no, thanks