BOSTON — A Georgia-based home health and hospice care company will pay $425,000 after it failed to implement proper security measures to protect the personal information of patients and employees, Attorney General Maura Healey announced today. The complaint and consent judgment against Aveanna Healthcare, LLC, entered today in Suffolk Superior Court, follows a series of phishing attacks that impacted more than…
Category: Health Data
Article: Factors Associated with Information Breach in Healthcare Facilities: A Systematic Literature Review
Factors Associated with Information Breach in Healthcare Facilities: A Systematic Literature Review Ahmad Khanijahani · Shabnam Iezadi· Sarah Agoglia · Spencer Barber· Courtney Cox · Natalie Olivo November 2022 Journal of Medical Systems 46(12) DOI:10.1007/s10916-022-01877-1 Abstract This systematic review aimed to identify the factors associated with information breaches in healthcare settings. We searched electronic databases, including…
Ransomware attack on Osaka General’s network stalls critical surgeries & daily operations
Teiss reports: In a press conference held on October 31st, Takeshi Shimazu, the head of Osaka General Medical Centre, said that the ransomware attack temporarily disrupted the facility’s electronic medical record system. The hospital’s officials said that while the medical centre’s Sumiyoshi Ward is still performing emergency operations, it has stopped providing outpatient care and…
OCR Releases New Recognized Security Practices Video
In recognition of National Cybersecurity Awareness Month, OCR has produced a new video this October for organizations covered under the HIPAA Rules on Recognized Security Practices. Recommended security practices can help organizations improve their ability to safeguard patient information from cyberattacks and better safeguard the health care services we all rely upon. Section 13412 of…
Healthcare provider to incarcerated people discloses breach by data security incident by claims processor
Mediko, Inc. has issued a press release concerning an unintended exposure of protected health information by their third-party claims processor, CorrectCare. According to their notice, on July 6, CorrectCare discovered that two file directories on their server had been misconfigured and were exposing files to the public. The investigation subsequently determined that the exposure occurred…
Young Finnish man detained in absentia over data breach at Vastaamo
The Vastaamo psychotherapy clinic hack and extortion attempt in Finland, first disclosed in 2020, remains one of the most sensitive and disturbing breaches DataBreaches has ever covered. Past news items about it can be found here. Now there is an update. Aleksi Teivainen of Helsinki Times reports: The District Court of Helsinki on Friday detained…