A survey carried out by Ovum for analytics firm FICO has pointed to the fact that there has been a sharp rise in companies signing up for cybersecurity insurance, but the healthcare sector in general has been slow to follow this trend. In 2017 when the previous survey...

Central Colorado Dermatology (CCD) has made contact with over 4,000 clients that some of their protected health information (PHI) has possibly been obtained by cyber criminals during a ransomware attack on its IT systems. An unauthorized person obtained access to...

InterAct of Michigan, a provider of mental health and substance abuse treatments through health centers in Kalamazoo and Grand Rapids, has found an unauthorized person has obtained access to the email account of a staff member and may have viewed and copied the...

Over 258,000 people have had their personal health information, personal identification information and/or tax information accessible online due to a data security incident in Adams County, Wisconsin. A possible security breach was discovered on March 28, 2018 after...

A group of urgent care clinics in Atlanta, Chicago, Austin, Dallas, Fort Worth, and Houston, MedSpring Urgent Care has identified a breach that occurred when an unauthorized individual has gained access to an email account due to an employee being tricked by a...

Jefferson City, Missouri based SSM Health St. Mary’s Hospital is contacting hundreds of thousands of patients to warn them that some of their protected health information has been left unprotected and may have have been accessed by unauthorized parties. On November...

A huge UnityPoint Health phishing attack has been reported to the HHS’ Office for Civil Rights (OCR) , one in which the protected health information of up to 1.4 million patients could have been obtained by cyber criminals. So far, this phishing incident is the...

A mistake has resulted in the exposure of more than 19,000 patients’ protected health information (PHI) took place during a software upgrade on a server owned by a transcription service provider. Patients impacted by the breach had attended Orlando Orthopaedic Center...

A class action lawsuit submitted after a staff-member related data breach at Flowers Hospital in Dothan, Alabama in 2014 is likely to be settled. The settlement is awaiting final court approval, although approval seems imminent and a resolution to this four-year legal...

AK-based billing company, Golden Heart Administrative Professionals, a Fairbanks is alerting 44,600 people that some of their protected health information has potentially been obtained by unauthorized people due a recent ransomware attack. The ransomware was placed on...

An employee's email account, that contained the protected health information of approximately 8,400 patients of Billings Clinic in Billings, MT has been illegally accessed. The breach was discovered by the clinic’s cybersecurity systems on May 14, 2018, with unusual...

Cass Regional Medical Center in Harrisonville, MO suffered a ransomware attack at Around 11am on Monday July 9 that impacted its communication system and stopped staff from logging onto its electronic medical record (EHR) system. The clinic had measures in place for...

A former staff member of Arkansas Children’s Hospital is being investigated by law authorities in relation to the theft and misuse of patients’ protected health information. The breach notice submitted to the Department of Health and Human Services’ Office for Civil...

In 2016, Radnor, PA-based Main Line Health Inc., fired a member of staff for breaching Health Insurance Portability and Accountability Act (HIPAA) Rules by viewing the personal records of a co-worker without authorization on two different occasions. In such instances,...

Manitowoc County in Wisconsin has revealed that protected health information has been illegally obtained due to a successful phishing attack. The incident happened close to January 14, 2018, although the attack and data breach was not identified until April 24. While...

Humana is contacting members across the US to notify them that their PHI may have been been accessed during a ‘sophisticated’ spoofing campaign. A spoofing attack refers to a concerted effort by a threat actor or bot to gain access to a system or data using illegally...

In the past few days, Associated Dermatology & Skin Cancer Clinic of Helena, MT, has reported a breach of physical protected health information (PHI) that may have impacted up to 1,254 patients. A journal managed by an employee of Associate Dermatology was taken...

Med Associates the health billing company, located in Latham, NY-based, which provides claims services to over 70 healthcare providers, has found that an employee’s computer has been logged onto by an unauthorized individual. It is possible that the hacker obtained to...

After what is believed to have been inappropriate accessing of patient health records by staff members, Washington Health System has decided to suspend several staff members while the privacy breach is reviewed. While it has not been revealed how many staff members...

New guidance for HIPAA-covered bodies to streamline HIPAA authorizations for uses of protected health information for research purposes has been released by the Department of Health and Human Services’ Office for Civil Rights , as required by the 21st Century Cures...

A phishing attack has been experienced by the Florida Agency for Persons with Disabilities (FAPD), which provides support services for people with disabilities such as autism, cerebral palsy, spina bifida, and Downs syndrome. The phishing attack took place on April...

A former member of staff at the Veteran Affairs Medical Center located in Long Beach, CA who illegally stole the protected health information (PHI) of over 1,000 patients has been given a three-year jail sentence. Albert Torres, 51, was working as a clerk in the Long...

Two HIPAA-covered organizations are making their patients aware that some of their protected health information (PHI) has been stolen by unauthorized individuals in recent times. PHI Stolen from Staff Member of Christus Spohn Hospitals The protected health information...

HealthEquity Inc. has been hit by a phishing attack leading to the exposure of members’ protected health information. The data breach was restricted to one email account, although a review of the messages in the account showed a range of PHI was potentially stolen by...

A staff member at Phoenix-based Terros Health was tricked by a phishing scam and mistakenly handed over login credentials to the hacker. That person accessed the employee’s email account and may have viewed or obtained a range of protected health information listed in...

The results of a recent survey conducted by Black Book Research show that  90% of hospitals and 94% of physicians have implemented mobile technology and believe that it is helping to enhance patient safety and outcomes, . The survey was carried out on 770...

3,700 plan members of Rise Wisconsin are being warned that some of their protected health information may have been obtained by unauthorized people during a recent ransomware attack. It is estimated that the ransomware was placed on on its IT systems around April 8,...

A nurse who shared patient data with her new employer has been suspended for 12 months by the New York State Education Department, while her former employer has been fined $15,000 for the breach of Protected Health Information. In April 2015, Martha C. Smith-Lightfoot...