From OCR’s newsletter today: Throughout 2020 and 2021, hackers have targeted the health care industry seeking unauthorized access to valuable electronic protected health information (ePHI). The number of breaches of unsecured ePHI reported to the U.S Department of Health and Human Service’s Office for Civil Rights (OCR) affecting 500 or more individuals due to hacking…
Category: Health Data
Arkansas AG Sues Defunct Health Provider for Mishandling Patient Records
Scott Carroll reports: Arkansas Attorney General Leslie Rutledge on Thursday announced a lawsuit against the defunct Eastern Ozarks Regional Health for failing to protect sensitive patient information after it closed. The former hospital in Cherokee Village is accused of leaving behind thousands of unsecured patient and employee records that contain social security numbers, driver’s license…
WA: Chelan Douglas Health District Warning Residents of 2021 Data Breach
Kyle Lamb reports: The Chelan Douglas Health District is warning the public of a data breach that may have led to the loss of identifiable personal and health information. The district said the hack occurred in early July of last year, with cybersecurity consultants finishing a review of the breach February 12th and the district…
East Tennessee Children’s Hospital Statement on Security Issue
Published on March 14, 2022 East Tennessee Children’s Hospital has been a victim of an information technology security issue in the evening hours of Sunday, March 13, 2022. Maintaining the safety and security of our patients and their care is our top priority. We are still able to care for our patients. Our cyber forensics teams…
Comprehensive Health Services Pays False Claims Act Settlement Involving EMR Security
Marianne Kolbasuk McGee reports: A healthcare services contractor has agreed to pay a $933,000 settlement in a federal whistleblower case involving alleged false claims by the entity about the security of electronic medical records containing the information of military personnel, diplomats and contractors. The settlement is the first under the Department of Justice’s Civil Cyber-Fraud Initiative,…
Another Technology Management Resources client reports a data breach
PhySynergy has disclosed a vendor breach involving IberiaBank’s lockbox service provider, Technology Management Resources, that may have impacted some of its customers and/or patients. From their press release: HUNTSVILLE, Ala., March 4, 2022 /PRNewswire/ — PhySynergy, LLC (the “Company”) is notifying individuals of a service provider security incident that involved the personal information of some of its patients and/or…