The HIPAA Breach Notification Rule necessitates the issuance of a data breach notification letter to the Secretary of the HHS “without unnecessary delay” and no longer than 60 days following the discovery date of a data breach. An identical period of time is applicable to sending breach notification letters to affected people. There is a …
About the Healthcare Data Breach Reporting Concern Read More »
New York Attorney General Letitia James reported the first settlement of 2022 involving a healthcare data breach. The vision benefits company in Ohio, Med Vision Care, will pay $600,000 as a financial penalty to resolve a data breach in 2020 that resulted in the exposure of the personal information of 2.1 million people across the …
EyeMed Pays $600,000 Penalty to Resolve 2.1 Million-Record Data Breach Read More »
QRS, a healthcare technology services firm and EHR vendor in Tennessee, is confronted with a class-action lawsuit related to a cyberattack in August 2021 that led to the compromise and potential theft of the protected health information (PHI) of around 320,000 individuals. The data breach investigation affirmed that a threat actor had obtained access to …
Class Action Lawsuit Filed Against QRS Because of 320,000-Record Data Breach Read More »
The health data management services provider CIOX Health suffered a data breach that has impacted a minimum of 32 healthcare companies. Last July 2021, CIOX Health learned an unauthorized individual had obtained access to the email of a staff in the customer service section. The email account was quickly made secure, with the succeeding investigation …
About 30 Healthcare Companies Impacted by CIOX Health Security Breach Read More »
Fertility Centers of Illinois (FCI) has just informed 79,943 existing and former patients regarding unauthorized individuals that may have viewed or obtained some of their protected health information (PHI). FCI discovered suspicious network activity on February 1, 2021, and took immediate action to protect its systems. Independent forensic investigators were then called in to know …
About 80,000 Patients Affected by Fertility Centers of Illinois Cyberattack Read More »
The Medical Review Institute of America (MRoiA) encountered an alleged ransomware attack in November 2021 that resulted in the theft of sensitive patient data. MRoiA is given access to patient information by HIPAA-covered entities due to the clinical peer evaluation process of medical care services. According to a data breach notice given to the Vermont …
Patient Records Stolen in a Cyberattack on the Medical Review Institute of America Read More »
The CyberPeace Institute has published new information on cyberattacks in the healthcare sector. As per the most current stats, 295 cyberattacks are identified to have been done on the healthcare market in the earlier 18 months from June 2, 2020, to December 3, 2021. The attacks were happening at a rate of 3.8 every week …
New Data Shows Magnitude of Ransomware Attacks on the Healthcare Industry Read More »
In March 2021, Broward County Public Schools located in Florida suffered a ransomware attack resulting in the encryption of its data files. Based on the breach investigation findings, unauthorized persons first acquired access to the school system on November 12, 2020. Ransomware was launched on March 6, 2021. Broward County Public Schools discovered the attack …
Sound Generations based in Seattle, WA, has reported that unauthorized people have acquired access to its internal networks and have utilized ransomware for file encryption. Sound Generations is a not-for-profit organization that assists senior adults and adults with handicaps to get free to inexpensive healthcare solutions. The organization is the biggest supplier of comprehensive services …
Sound Generations Encounters Two Ransomware Attacks Impacting More Than 100,000 Persons Read More »
One Community Health located in Sacramento, CA has lately informed patients about the compromise of its systems from April 19 to April 20, 2021. It was uncovered that an unauthorized person has obtained access to systems comprising the personal information and protected health information (PHI) of a number of staff and patients. A detailed forensic …
