A Reno-based dental practice in has been hit by a ransomware attack that denied access to dental records and images for five days. The malicious software was installed, during a ransomware attack on October 30, on one computer and one server at the Wager Evans Dental...

The protected health information of 1,750 patients of Austin Manual Therapy (AMT) may have been accessed and stolen by a criminal who gained access to the group's system. A forensic review by a leading national cybersecurity team showed access was initially gained on...

Patients of MidMichigan Medical Center (MMC) in Alpena have been warned of a potential breach of their health data. On November 18, a MMC cardiologist took patient files from the Alpena cardiology office without permission. The files were taken to the cardiologist’s...

NYU Langone Health System has found that files that included a log of presurgical insurance authorizations, relating to around 2,000 patients, was mistakenly recycled by a cleaning company in October 2017. Data in the binder included names, birth dates, dates of...

Two serious breaches of patients’ protected health information have been discoveredd in Texas and Pennsylvania. Email Account Compromised at Midland Memorial Hospital Midland Memorial Hospital has suffered a breach of a a number of patients’ protected health...

Many data breaches have been reported by HIPAA-covered entities, involving the loss or theft of physical records, in the past two months. In November, seven violations  involving paper records were made known to the HHS’ Office for Civil Rights, and another five...

The Oklahoma Department of Human Services experienced, in April 2016,  a data breach, and while alerts were sent to affected people and the DHS’ Office of Inspector General shortly after the breach was found, a breach notice was not filed to the HHS’ Office for Civil...

UNC Dermatology & Skin Cancer Center has discovered that one of its laptop computers has been stolen, exposing the protected health information of around 24,000 patients. The computer was obtained by unauthorized individuals in a break in on October 8, 2017 at the...

Two employees at Chicago’s Sinai Health System have had their email accounts compromised in a recent cyberattack. Sinai Health System reports that the phishing attack happened on October 2, and that it was quickly discovered and mitigated. Access to the compromised...

The New Jersey-based Hackensack Sleep and Pulmonary Center, experts in sleep disorders and pulmonary conditions and diseases, has suffered a ransomware attack that in the protected health information of certain clients being encrypted. The ransomware attack happened...

Louisville, KY based Baptist Health has contacted 880 patients that some of their protected health information may have been obtained by by hackers. The PHI violation was found on October 3, 2017, when irregular activity was discovered on the email account of an...

The  Henry Ford Health System has started alerting almost 18,500 patients that some of their protected health information may have been been accessed by an unauthorized person. The breach was found on October 3, 2017 when unauthorized access to the email accounts of...

The discovery has been made that the medical records of 769 patients of Lowell General Hospital in Massachusetts have been accessed by an employee without any valid work reason. In accessing the medical details, the employee violated hospital policies and breached the...

A provider of mental health treatment and support services for individuals with intellectual and developmental disabilities, Center for Health Care Services (CHCS),  has foudn that documents containing the protected health information of patients have been illegally...

Paper files with information including names, Social Security details, and medical records, along with details of cancer diagnoses and sexually transmitted diseases (STDs), have been found at a recycling center in Allentown, Pennsylvania. The files seem to have...

A breach of patients’ protected health information (PHI) at the UAB Medicine Viral Hepatitis Clinic in Birmingham, AL has been discovered. UAB Medicine uses flash drives to send data from its Fibroscan machine to another computer. On October 25, 2017, two flash drives...

ShopRite Supermarkets, Inc., has revealed that some of its clients have been impacted by a security breach following the improper disposal of a device used to record customers’ signatures. The device was stolen from the ShopRite outlet at Kingston, NY  between 2005...

Sports Medicine & Rehabilitation Therapy (SMART) has made contact with 7,000 patients to advise them of a violation of their protected health information. The breach has have affected all patients whose information was captured while attending a SMART center...

Recently published, the second draft of the revised NIST Cybersecurity, Version 1.1 of the Framework, incorporates major changes to some of the current guidelines and many new additions. Version 1.0 of the NIST Cybersecurity Framework was first released during 2014...

A HIPAA Administrative Simplification Optimization Project Pilot is being operated by The Department of Health and Human Services is currently inviting volunteers to have compliance audits. The focus of the project is to streamline HIPAA compliance audits for health...

Cottage Health will pay $2 million to settle a number of HIPAA violations in relation to state and federal laws. The group, located in Santa Barbara, was reviewed by the California attorney general’s office due to a breach of confidential patient data during 2013. The...

A recent report carried out by the Ponemon Institute has emphasized current endpoint security trends, details the ever-present threat from ransomware, and shows that fileless malware cyberattacks are increasing. Annually, endpoint attacks cost the healthcare sector...

It has been discovered that an unencrypted laptop has been stolen from one of the employees of Rocky Mountain Health Care Services of Colorado Springs . This is the second such theft incident to be found in the space of just three months. This incident was first...

The House Committee on Energy and Commerce has pleaded with the HHS to move forward on all recommendations for medical device security proposed by the Healthcare Cybersecurity Task Force, seeking quick action to be taken to address existing dangers. The Cybersecurity...

An unencrypted laptop has been stolen from one of its employees in a theft, the second such incident to be discovered in the space of three months, at Rocky Mountain Health Care Services of Colorado Springs. The latest breach was identified on September 28. The stolen...

A phishing attack at the Medical College of Wisconsin has lead to the exposure of approximately 9,500 patients’ protected health information. The hackers gained access to the email accounts of staff member, which included a range of private information regarding...

After a burglary at an off-site storage center in East Brunswick, NJ, Otolaryngology Associates of Central Jersey is making patients aware a breach of their protected health information. The thieves removed 13 boxes of paper medical records from the center, which...