A breach of patients’ protected health information (PHI) at the UAB Medicine Viral Hepatitis Clinic in Birmingham, AL has been discovered. UAB Medicine uses flash drives to send data from its Fibroscan machine to another computer. On October 25, 2017, two flash drives...
ShopRite Supermarkets, Inc., has revealed that some of its clients have been impacted by a security breach following the improper disposal of a device used to record customers’ signatures. The device was stolen from the ShopRite outlet at Kingston, NY between 2005...
Sports Medicine & Rehabilitation Therapy (SMART) has made contact with 7,000 patients to advise them of a violation of their protected health information. The breach has have affected all patients whose information was captured while attending a SMART center...
Recently published, the second draft of the revised NIST Cybersecurity, Version 1.1 of the Framework, incorporates major changes to some of the current guidelines and many new additions. Version 1.0 of the NIST Cybersecurity Framework was first released during 2014...
A HIPAA Administrative Simplification Optimization Project Pilot is being operated by The Department of Health and Human Services is currently inviting volunteers to have compliance audits. The focus of the project is to streamline HIPAA compliance audits for health...
Cottage Health will pay $2 million to settle a number of HIPAA violations in relation to state and federal laws. The group, located in Santa Barbara, was reviewed by the California attorney general’s office due to a breach of confidential patient data during 2013. The...
A recent report carried out by the Ponemon Institute has emphasized current endpoint security trends, details the ever-present threat from ransomware, and shows that fileless malware cyberattacks are increasing. Annually, endpoint attacks cost the healthcare sector...
It has been discovered that an unencrypted laptop has been stolen from one of the employees of Rocky Mountain Health Care Services of Colorado Springs . This is the second such theft incident to be found in the space of just three months. This incident was first...
The House Committee on Energy and Commerce has pleaded with the HHS to move forward on all recommendations for medical device security proposed by the Healthcare Cybersecurity Task Force, seeking quick action to be taken to address existing dangers. The Cybersecurity...
An unencrypted laptop has been stolen from one of its employees in a theft, the second such incident to be discovered in the space of three months, at Rocky Mountain Health Care Services of Colorado Springs. The latest breach was identified on September 28. The stolen...
A phishing attack at the Medical College of Wisconsin has lead to the exposure of approximately 9,500 patients’ protected health information. The hackers gained access to the email accounts of staff member, which included a range of private information regarding...
The November 2017 healthcare Breach Barometer Report has been published by Protenus. Following an unusually particularly bad September, healthcare data breach incidents fell to more normal levels, with 37 breaches recorded during the month of October. The monthly...
UPMC Susquehanna, a network of hospitals and health facilities in Williamsport, Wellsboro, and Muncy in Pennsylvania, has revealed that the protected health information of 1,200 patients has possibly been accessed by unauthorized people. Access to patient data is...
Personally identifiable information of a limited number of insurance applicants has been exposed online, according to an announcement by Blue Cross and Blue Shield of Florida, dba Florida Blue. Florida Blue was made aware of the exposure of patient data in late August...
After a burglary at an off-site storage center in East Brunswick, NJ, Otolaryngology Associates of Central Jersey is making patients aware a breach of their protected health information. The thieves removed 13 boxes of paper medical records from the center, which...
Amazon has revealed that new security measures have been added to its cloud server that will make it much more difficult for users to misconfigure their S3 buckets and mistakenly leave their data accessible. While Amazon will complete a business associate agreement...
Patients of Cook County Health and Hospitals System, a health system comprising two hospitals and more than a dozen community health centers in Cook County Illinois, have been made aware of a breach of their protected health information. The breach happened at...
There was been a 305% increase in the number of records exposed in data breaches in the 2017 according to a data breach report from Risk Based Security (RBS), a provider of real time information and risk analysis tools. For its most recent breach report, RBS analyzed...
In August 2017 malware was discovered to have been installed on one of the computer servers used by Catholic Charities of the Diocese of Albany (CCDA) in its Glens Falls office, which served patients in Saratoga, Warren and Washington Counties in New York. It was...
Attorney General Eric T. Schneiderman has introduced the 'Stop Hacks and Improve Electronic Data Security Act (SHIELD Act)' into the legislature in New York.it is hoped that Act will protect New Yorkers from unnecessary breaches of their personal data and to ensure...
Two USB drives storing the protected health information of up to 2,000 veterans have been stolen from the Man-Grandstaff VA Medical Center in Spokane, WA it has been reported. The two USB devices were being used to store protected data from a standalone, non-networked...
It has recently been discovered that a former employee of the Texas Children’s Health Plan has recieved the protected health information (PHI) of 932 members in a private email. The last known incident where the former employee emailed the data was late in 2016,...
A new WannaCry ransomware variant has been used to attack FirstHealth of the Carolinas, a Pinehurst, SC-based not for profit health network. WannaCry ransomware was used in worldwide attacks earlier in May. Over 230,000 computers were infected within 24 hours of the...
The protected health information (PHI) of almost 8,000 client of Brevard Physician Associates may have been accessed following the theft of an office computer in a recent break in. The burglary happened on September 4, 2017 – Labor Day – when the offices were shut...
A HIPAA Breach has been reported at lawnmower engine manufacturer Briggs Stratton which may have affected 12,789 of its employees and potentially resulted in the exposure of names, addresses, dates of birth, driver’s license numbers, Social Security numbers, health...
A former staff nurse, 41-year old Tangela Lawson-Brown from Midway, has been found guilty by a court in Tallahassee of the theft of patient information in order to commit aggravated identity theft and wire fraud, and to steal government funds. Between October 2011...
The San Antonio, TX, Advanced Spine & Pain Center (ASPC) has advised clients of a possible breach that could have affected as many as 8,362 patients. ASPC became aware of a potential violation of ePHI on July 31, 2017 when some clients reported receiving a...
Over the weekend of August 12-13 an individual obtained access to a file server used by Ashland, MI-based Namaste Health Care and installed ransomware software encrypting data including patients’ protected health information. However, prior to the ransomware being...
An unencrypted laptop device has been stolen from the automobile of an staff worker of Bassett Family Practice in Virginia, possible leading to the exposure of the protected health information of the Practice's clients. It is believed that the device, a laptop...
Chase Brexton Health Care has reported that the group experienced a phishing cyber attack on August 2 and August 3, 2017 and may have affected as many as 16,562 patients. The cyber attack involved multiple phishing emails being delivered to the inboxes of its...
Raise the level of HIPAA Awareness in your organization with Learner-Friendly, Comprehensive and Affordable HIPAA Training.
Used in 1000+ Healthcare Organizations and 100+ Universities
Privacy is key to everything that we do at J Flowers Health Institute. We require the highest data privacy standards in our daily operations between our team members and patients. The HIPAA compliance and cyber security training we provide to our teams with ComplianceJunction creates enormous value for our organization.
Kevin DeLoach
Chief Operating Officer
J. Flowers Health Institute