Naomi Diaz reports: Health systems in Indiana are joining forces to help provide small healthcare providers with actionable cybersecurity measures. The initiative, called Healthcare Cyber in a Box, was developed in collaboration with the Indiana Executive Council on Cybersecurity, a state-led effort originally established by former Gov. Mike Pence and continued under Govs. Eric Holcomb…
Category: Health Data
HHS’ Office for Civil Rights Settles HIPAA Security Rule Investigation with Health Fitness Corporation; $227k monetary penalty plus corrective action plan
From HHS’s press release today: Today, the U.S. Department of Health and Human Services (HHS), Office for Civil Rights (OCR) announced a settlement with Health Fitness Corporation (Health Fitness), located in Illinois, that provides wellness plans to clients across the country, resolving a potential violation under the Health Insurance Portability and Accountability Act of 1996 (HIPAA)…
No need to hack when it’s leaking: OrthoMinds edition
Exposed database backups discovered and reported by researcher @JayelTee are now being reported in more mainstream news after OrthoMinds issued a press about the incident. Marianne Kolbasuk McGee reports: A vendor of cloud-based orthodontic practice software is notifying an undisclosed number of patients that their data was exposed to the internet for 10 days last…
Watsonville Community Hospital still hasn’t notified all those affected by a November data breach; employees are reporting tax refund fraud
Felix Cortez reports: Just months after Watsonville Community Hospital was hit by a cyber-attack, roughly 20 employees at the hospital now say they’re the victims of identity theft. “We heard from a few of our employees that they reported there were fraudulent tax filings in their name, so someone else had tried to file a…
Former University of Michigan Football Quarterbacks Coach and Co-Offensive Coordinator Indicted on Charges of Unauthorized Access to Computers and Aggravated Identity Theft
DETROIT – Former University of Michigan Co-Offensive Coordinator Matthew Weiss—age 42, of Ann Arbor—was charged today in a 24-count indictment alleging 14 counts of unauthorized access to computers and 10 counts of aggravated identity theft, Acting United States Attorney Julie A. Beck announced. Beck was joined in the announcement by Cheyvoryea Gibson, Special Agent in Charge,…
Names, bank info, and more spills from top sperm bank
Jessica Lyons reports: One of the world’s largest sperm banks, California Cryobank, is in a sticky situation.… It’s had to tell folks their sensitive information, including names and bank account numbers, was likely stolen from it by digital intruders. The IT break-in occurred between April 20 and April 22, last year, according to a notification…