Why does the HIPAA Privacy Rule exist?
The HIPAA Privacy Rule exists to protect the privacy and security of individuals’ health information by establishing national standards for the protection of certain health…
Read MoreThe HIPAA Privacy Rule exists to protect the privacy and security of individuals’ health information by establishing national standards for the protection of certain health…
Read MoreDNA Diagnostics Center (DDC), a leading global DNA-testing firm specializing in diagnostic and genetic testing for fertility, health, and relationship queries, has agreed to pay…
Connexin Software, doing business as Office Practicum, is currently facing another lawsuit as a result of the data breach that occurred in August 2022. The…
Democratic senators have proposed an update to HIPAA that aims to ban the disclosure of personal health information related to abortion or pregnancy loss without…
The FDA has released a report outlining the possible benefits and risks of AR/VR medical devices and its overall thinking on the emerging class of…
The Federal Trade Commission has taken action against GoodRx Holdings Inc., a telehealth and prescription drug discount provider, for failure to comply with the Health…
Robert S. Miller LICSW, ACSW (RSM), a therapist located in Washington, has recently informed 640 of his current and former clients of a phishing attack…
Fertility Centers of Illinois has offered a $450,000 settlement to resolve a legal dispute brought forward by those affected by the data breach which occurred…
Health Specialists of Central Florida Inc. (HSCF), located in Orlando, Florida, recently paid a $20,000 financial penalty to the Office for Civil Rights (OCR) at…
A settlement has been proposed by Famington, New Mexico-based San Juan Regional Medical Center (SJRMC) in hopes to resolve an ongoing class action lawsuit concerning…
Connexin Software Inc., a company that supplies pediatric physician practice groups with electronic medical records and practice management software, recently acknowledged that it had been…
The HIPAA-covered entity Community Health Network, based in Indiana, recently reported to the U.S. Department of Health and Human Services’ Office for Civil Rights that…
A settlement has been proposed by Ann & Robert H. Lurie Children’s Hospital to resolve an ongoing class action lawsuit filed following 2 unauthorized disclosures…
A class action lawsuit has been filed West Virginia-based Mon Health following a data breach where an unauthorized third party had accessed its network for…
A member of the Netwalker ransomware gang has been sentenced to 20 years in prison and is ordered to pay a forfeit of $21,500,000 for…
A data breach class action lawsuit has been settled by LifeBridge Health Inc. to resolve claims made by individuals impacted by a data breach in…
Texas-based primary care clinic network Family Health Centers (FMC) has recently notified the Department of Health and Human Services (HHS) of a data breach involving…
A class action lawsuit has been settled by Magellan Health on behalf of approximately 273,000 patients who had their protected health information exposed in a…
Iowa-based Wolfe Eye Clinic has issued a breach notification to the Department of Health and Human Services’ (HHS) Office for Civil Rights reporting a data…
The U.S. Department of Health and Human Services’ Office for Civil Rights (OCR) has announced the conclusion of three investigations into alleged violations of the…
Ohio-based law firm Bricker & Eckler LLP has agreed to settle a class action lawsuit following a data breach affecting 420,532 individuals. The law firm…
The New York-based Ambulance Service, Empress Emergency Medical Services (EMS) has recently experienced a ransomware attack. On July 14, 2022, the EMS provider discovered some…
A class action lawsuit has been settled by Ambry Genetics for $12.25 million following a data breach affecting 232,772 patients. The lawsuit stems from an…
Richmond, Texas-based Oakbend Medical Center has recently announced that they have experienced a ransomware attack. On September 1, 2022, the healthcare provider discovered a file…
Syracuse-based Practice Resources has announced that they have recently experienced a data breach involving the protected health information of 924,138 individuals. Practice Resources is a…
Detroit, Michigan-based law firm Warner Norcross and Judd (WNJ) has reported a data breach to the Department of Health and Human Services’ (HHS) affecting the…
Parma-based Health Aid of Ohio has agreed to settle a class action lawsuit to resolve claims made by individuals who had their information exposed in…
A class action lawsuit filed against Missouri-based BJC Healthcare has resulted in a settlement. The nonprofit healthcare provider has agreed to create a fund to…
A class action lawsuit filed against the Urology Center of Colorado has reach a settlement agreement. The lawsuit was filed against the healthcare provider in…
A class action lawsuit has been filed against Morristown-based Lamoille Health Partners following a ransomware attack involving the PHI of 59,381 patients. On June 13,…
A class action lawsuit against California-based Salinas Valley Memorial Healthcare has resulted in a $340,000 settlement. The healthcare provider will establish the fund to resolve…
A lawsuit has been filed against Wilsonville-based Avamere Holdings for a data breach affecting 96 senior living facilities and involved the release of the protected…
A lawsuit has been filed to data broker Kochava by the U.S. Federal Trade Commision (FTC) for its alleged unlawful collection of geolocation user data,…
A class action lawsuit has been settled by Humana & Cotiviti after a data breach that disclosed the personal information of 64,654 individuals. The breach…
The Health Insurance Portability and Accountability Act’s primary enforcer, the Office for Civil Rights (OCR) has recently settled a violation case with the New England…
Henderson & Walton Women’s Center P.C. (HWWC) has recently announced that it has experienced a data breach involving the exposure of the protected health information…
Vermont-based Lamoille has recently announced that they have experienced a ransomware attack involving PHI of 59,381 patients. On June 13, 2022, Lamoille Health Partners detected…
Florida Orthopaedic Institute (FOI) has agreed to a $4 million settlement for a class-action lawsuit regarding a data breach affecting approximately 640,000 individuals. In June…
Novant Health has recently issued a notification reporting a data breach has occurred involving the PHI of over 1.36 million patients. The unauthorized disclosure of…
Telehealth solution provider, Let’s Talk, has announced that it has achieved full HIPAA compliance. The statement, issued on April 13, 2022, confirmed that the provider…
A class action lawsuit has been settled by Dental Care Alliance as the result of a data breach affecting 1.7 million individuals. Dental Care Alliance…
Fast Track Urgent Care, a network of urgent healthcare clinics based in Florida, has recently announced that it has experienced a data breach affecting 259,411…
Aetna ACE has recently announced it has been subject to a ransomware attack on a mailing vendor. The data breach involves the unauthorized disclosure of…
Professional Finance Company, a Greely, Colorado-based accounts receivable management company has announced that they experienced a ransomware attack in February 2022. The payment vendor provides…
The Cloud Security Alliance has released guidelines advising how healthcare organizations can manage risks to data security posed by third party vendors. Business associates of…
A class action lawsuit has been settled in the Harris County District Court in Texas involving the Methodist Hospitals Inc. The settlement comes as a…
Tenet Healthcare and Baptist Health have received a class action lawsuit as a result of a major data breach affecting approximately 1.2 million individuals. On…
The Government Accountability Office (GAO) has issued a report suggesting that the Department of Health and Human Services (HHS) introduces a mechanism for feedback to…
A draft bipartisan bill has been introduced to replace current data privacy laws in different U.S.states. Introduced to the house of representatives in early June,…
A new class-action lawsuit has been filed against Google in the Uk as a result of a 2016 data scandal, which involved the discovery of…
According to a recent analysis of hospital websites, a third of the top 100 hospitals in the US are sharing patient information to Facebook using…
The FDA has published a draft guidance regarding medical device cybersecurity. With the guidance entitled “‘Cybersecurity in Medical Devices: Quality System Considerations and Content of…
A class-action lawsuit has been filed against Meta for allegedly scraping PHI from hospital and medical provider websites. The case was filed in the Northern…
Shields Health Care Group is confronted with a class-action lawsuit because of the 2 million-record data breach it recently reported. This is the largest healthcare…
The protected health information (PHI) of approximately 2 million persons was possibly exposed in a cyberattack on Shields Health Care Group. Shields Health Care Group…
In March 2022, Partnership HealthPlan of California (PHC) stated that third-party forensic experts were involved to help recover the service of its IT solutions subsequent…
The medical equipment firm NuLife Med LLC located in Manchester, NH, has lately reported that it suffered a cyberattack in March 2022. It detected suspicious…
Numerous healthcare data breaches are happening, yet not all privacy and security problems originate from beyond the company. The Department of Health and Human Services’…
Deaconess Health System based in Indiana and Blue Earth County based in Minnesota have informed individuals who had their sensitive personal data has accessed by…
The law firm BakerHostetler has shared its 8th Annual Data Security Incident Response (DSIR) Report, which offers insights according to 1,270 data security incidents managed…
An audit of the Health Insurance Exchange of Connecticut, Access Health CT, by the state auditor showed that Access Health CT encountered 44 data breaches…
Healthcare hacking incidents are considerably increasing for several years. Hacking/IT incidents went up by 45% from 2019 to 2020. In 2021, 66% of breaches relating…
The HIPAA Breach Notification Rule necessitates the issuance of a data breach notification letter to the Secretary of the HHS “without unnecessary delay” and no…
New York Attorney General Letitia James reported the first settlement of 2022 involving a healthcare data breach. The vision benefits company in Ohio, Med Vision…
QRS, a healthcare technology services firm and EHR vendor in Tennessee, is confronted with a class-action lawsuit related to a cyberattack in August 2021 that…
The CyberPeace Institute has published new information on cyberattacks in the healthcare sector. As per the most current stats, 295 cyberattacks are identified to have…
In March 2021, Broward County Public Schools located in Florida suffered a ransomware attack resulting in the encryption of its data files. Based on the…
Four people – David Woroboff of Del Rey, California, George Willard of Brooklyn, Michigan, Randall Mills of Plano, Texas, and Dr. Le Thu, a licensed…
Family of Woodstock (FOW), a New York company providing crisis intervention, information, protection, and support solutions, has encountered a cyberattack that caused the potential exposure…
Based on the Verizon Data Breach Investigations Report, 80% of all reported cyberattacks in 2019 are caused by phishing and from the start of the…
Healthcare companies that must abide by the California Consumer Privacy Act (CCPA) are dealing with difficulties reaching compliance, based on a new study publicized in…
Jackson Health has begun looking into a patient privacy violation case after a nurse posted images on Facebook of a baby that has a birth…
Overlake Hospital Medical Center in Bellevue, WA has offered a settlement to take care of a class-action lawsuit it is facing. Victims of a breach…
A man from Texas was sentenced to 48 months imprisonment right after pleading guilty to one count of conspiracy to acquire data from a protected…
Dominion National in Virginia, an insurance provider, a health plan manager, and a dental and vision benefits manager, has consented to resolve a class-action lawsuit…
Many U.S. employers have put in place a policy that calls for their workers to be vaccinated against COVID-19, which includes a number of big…
A Michigan male has confessed to hacking into the human resource data storage of the University of Pittsburgh Medical Center from 2013 to 2014 and…
SEIU 775 Benefits Group in Washington has informed around 140,000 of its members regarding the exposure of some of their protected health information (PHI). Around…
The Pennsylvania Department of Health along with its COVID-19 contact tracing vendor are being sued due to a breach of the personal and health information…
The new information blocking and interoperability rules created by the Department of Health and Human Services included in the 21st Century Cures Act became effective…
University of Pittsburgh Medical Center (UPMC) and the Charles Hilton and Associates law company are confronting a class action lawsuit due to a breach of…
A former nurse at Roswell Park Comprehensive Cancer Center admitted to a crime of tampering with a consumer item in a case that involves fraudulence…
On March 4, 2021, Senator Robert Menendez (D-New Jersey), and Reps. Mikie Sherrill (D-New Jersey) and Bonnie Watson Coleman (D-New Jersey) authored a letter recommending…
A female who was employed in a medical research laboratory at the Nationwide Children’s Hospital in Columbus, OH was sent to jail for theft of…
In May 2020, the cloud software corporation Blackbaud encountered a ransomware attack. As is typical in human-operated ransomware attacks, the attackers exfiltrated files before file…
The U.S. Court of Appeals for the Fifth Circuit has reversed the $4,348,000 HIPAA violation charges enforced by the Department of Health and Human Services’…
On January 5, 2020, President Trump signed a bill (HR 7898) that makes changes to the Health Information Technology for Economic and Clinical Health Act…
A vulnerability was found in Zyxel devices such as firewalls, VPN gateways, and access point (AP) controllers that hackers may take advantage of to get…
The DHS’ Cybersecurity and infrastructure Security Agency has published a website with resources concerning the recent activities of the advanced persistent threat (APT) group liable…
The Department of Health and Human Services’ Office for Civil Rights (OCR) has arrived at a settlement deal with Peter Wrobel, M.D., P.C., dba Elite…
A seasonal staff at a tech firm in Virginia got sentenced to 42 months imprisonment for accessing patient files, theft of personally identifiable information (PII),…
Rave Mobile Safety has introduced a COVID-19 Vaccine Distribution Solution that will make it possible for public health agencies to determine who should receive priority…