HIPAA Journal has a piece highlighting some findings from Crowdstrike’s 2021 report. It begins: CrowdStrike has released its annual threat report which shows there was a major increase in data leaks following ransomware attacks in 2021, rising 82% from 2020. CrowdStrike observed 2,686 ransomware attacks in 2021 compared to 1,474 in 2020. There were more…
Category: Health Data
QRS Data Breach Exposed Psych Care Consultants Patient Information – Class Action Allegations
DataBreaches.net does not report on most potential class action lawsuits because many of them will not survive motions to dismiss. This case, however, is a bit more interesting to me because it involves sensitive mental health data, ransomware, leaked data, and claims about inadequate monitoring of a business associate. The case is K.L. v. Psych…
HHS Cybersecurity Program: Electronic Medical Records in Healthcare
HHS has published a new cybersecurity threat brief, available for download on their site. The topics include: • What Is an EMR, and How Is It Used in Healthcare? • Top EHR Software Used in Hospitals • Benefits & Risks of Using EMR/HER • Why EMRs/EHRs Are Valuable to Cyber Attackers • How Are EMR/EHRs…
“DC Health Launches New Portal for Residents to Access COVID-19 Vaccination Records” and it’s not going well – two reports of being sent someone else’s vaccine record
Readers of PoPville report: “Just applied for the new DC digital SMART Health Card and was sent someone else’s vaccine record?! Hopefully you’re not sending my vaccine card to other random people??” and “Received notification from DCHealth about digital vaccine record. Went to the site and signed up using DOB; PIN; and first and last name. Received…
HIPAA: The Who: Plans, Providers, and Clearinghouses, and the First of the Rule of 3s.
With all the wildly erroneous claims made by people about what is covered by HIPAA, here’s a great explainer by attorney Jeff Drummond on exactly what kinds of entities ARE covered by HIPAA (Spoiler alert: yes, your local bar CAN ask you your vaccination status without violating HIPAA because they are not covered by HIPAA)….
PA: Bible Fellowship Church Homes notifies residents of data security incident
The following press release is not really clear about whether this was a ransomware incident or not, and as yet, we have no numbers for this one. This post may be updated as more information becomes available. WHITEHALL, Pa., Feb. 17, 2022 /PRNewswire/ — Bible Fellowship Church Homes, Inc., dba Fellowship Community (“Fellowship Community”), a faith-based continuing care…