New York Hospital Fined $2.2 Million for Unauthorized Filming of Patients
The Department of Health and Human Services’ Office for Civil Rights (OCR) has fined New York Presbyterian Hospital (NYP) $2.2 million for allowing patients to be filmed for a TV show without obtaining...
View ArticleWyoming Medical Center Phishing Attack Exposes PHI of 3,184 Patients
A phishing attack on Wyoming Medical Center of Casper in February has resulted in the exposure of 3,184 patients’ protected health information. Two employees clicked on links contained in phishing...
View ArticleFlash Drive Theft Exposes PHI of 2700 Oneida Health Center Dental Clinic...
An unencrypted flash drive containing the protected health information of 2,700 patients of the Oneida Health Center Dental Clinic has been discovered to be missing. The portable storage device is...
View ArticleMail Delivery Truck Stolen: 2400 Inland Empire Health Plan Members’ PHI Exposed
Kaiser Permanente is in the process of notifying 2,400 members of the Inland Empire Health Plan of the theft of Evidence of Coverage handbooks from a mail delivery truck. The names and addresses of...
View ArticleVail Valley Medical Center Notifies 3,118 Patients of Unauthorized PHI...
Vail Valley Medical Center (VVMC) is in the process of notifying 3,118 patients of the inappropriate disclosure of some of their protected health information (PHI). A physical therapist formerly...
View ArticleEdwin Shaw Rehabilitation Hospital Patients’ PHI Exposed
Akron General Health System is notifying 975 patients of the Akron General Edwin Shaw Rehabilitation hospital that some of their protected health information has been exposed after an employee lost an...
View ArticleMailing Error Exposes PHI of American Fidelity Customers
Oklahoma City-based American Fidelity Assurance Company has notified 2,664 customers that some of their data has been disclosed to other customers as a result of a mailing error. The mailing error,...
View ArticleJoint Commission Ends Ban on Clinician Text Messaging
For the past five years the Joint Commission has banned the use of text messaging by licensed independent practitioners (and other practitioners) due to security risks. That ban has now been lifted...
View ArticleReview of Medicare Administrative Contractors Shows 8pc Annual Rise in Data...
An annual review of Medicare administrative contractors (MAC) conducted by Pricewaterhouse Coopers (PwC) on behalf of the Office of Inspector General revealed 129 data security gaps existed in 2014,...
View ArticleHIPAA Business Associate Notifies Patients of Data Breach
EqualizeRCM Services, an Austin, TX-based vendor of billing services, is in the process of sending breach notification letters to patients to alert them to the potential exposure of their Protected...
View ArticleBuffalo Medical Group Says Alleged HIPAA Violations Are Unfounded
Last month, a breach notification letter was received by media outlets and at least one patient of the Buffalo Medical Group (BMG) warning that the protected health information (PHI) of certain...
View ArticleData Breach Class-Action Lawsuit Denied by Penn. Superior Court
A proposed class-action lawsuit filed against two health plans for the exposure of members protected health information has been rejected by the Pennsylvania Supreme Court. Avrum Baum filed a lawsuit...
View ArticleSaint Agnes Medical Center Victim of BEC Attack
Saint Agnes Medical Center of Fresno, CA., is in the process of notifying 2,812 employees of a cyberattack that occurred on May 2, 2016. On Monday this week, an employee of Saint Agnes responded to a...
View ArticleOhio MHAS Exposes PHI of 59K Patients by Mailing Surveys on Postcards
This week, patients of the Ohio Department of Mental Health and Addiction Services (OMHAS) were notified of a privacy incident that occurred on February 3, 2016. Patients were sent a satisfaction...
View ArticleBay Area Children’s Association Notifies Patients of PHI Theft
On April 1, 2016, Bay Area Children’s Association (BACA) was notified that the electronic health records of its patients may have been stolen by hackers. The notice was received from BACA’s electronic...
View ArticleAre You Prepared for A Business Associate Data Breach?
HIPAA-covered entities may be prepared to execute their breach response procedures for a security breach that exposes patients’ Protected Health Information (PHI), but what about business associate...
View ArticleTranscription Service Provider Exposes PHI of Children’s National Health...
Washington D.C.-based Children’s National Health System (CNHS) has alerted patients to a breach of their protected health information following an error by a transcription service provider which...
View ArticleClik here to view.
Brookings Offers Breach Prevention Advice to OCR and Healthcare Organizations
A recent report issued by the Brookings Institution delves into the problems faced by the healthcare industry now that so much patient data is being collected, stored, and transmitted by healthcare...
View ArticleUnityPoint Health’s Allen Hospital Discovers 7-Year Privacy Breach
An employee of UnityPoint Health’s Allen Hospital in Waterloo, Iowa, was recently discovered to have abused her access rights to patient health information over a period of seven years. During that...
View ArticleFlorida Medical Clinic Notifies 1,000 Patients of Privacy Breach
Florida Medical Clinic, PA., has notified 1,000 patients that their due balance statements were exposed online as a result of a misconfiguration of its Patient Portal. Between November 18, and January...
View Article