Laura Gutschke reports: Hendrick Health System on Friday began notifying patients that some identifying information may have been compromised during a network security breach identified Nov. 20. An investigation determined that patient information may have been accessible between Oct. 10 and Nov. 9, the release said, including patient names, Social Security numbers, demographic and other limited…
Category: Health Data
Wisconsin Medicaid information accessed by unauthorized individual
Devin Willems reports: Gainwell Technologies announced that someone may have gained unauthorized access to some participants’ information in Wisconsin’s Medicaid program. According to a release, an unauthorized individual gained access to an account starting on Oct. 29, 2020, that may have exposed the names, member identification numbers and billing codes for services received of some…
Cz: They attacked Hospital of Aftercare in Horažďovice; police are investigating
Jan Horák reports (translation): According to the findings of Aktuálně.cz, criminal investigators are revealing the background to the hacker attack on the aftercare hospital. Hackers attacked a medical facility in Horažďovice last week, knocking out part of its information systems. The hospital now operates without restrictions. The National Office for Cyber and Information Security consulted with the facility…
Excellus to pay $5 million to settle charges stemming from breach that impacted 9.3 million
Excellus Health Plan, Inc. has agreed to pay $5.1 million to the Office for Civil Rights (OCR) at the U.S. Department of Health and Human Services (HHS) and to implement a corrective action plan to settle potential violations of the Health Insurance Portability and Accountability Act (HIPAA) Privacy and Security Rules related to a breach…
Co: Pitkin County COVID-19 case investigations inadvertently exposed online
PITKIN COUNTY, Colo., Jan. 14, 2021 /PRNewswire/ — Pitkin County learned of an incident that may affect the privacy of certain information and is providing notice so that affected individuals may take steps to better protect their personal information, should they feel it is appropriate to do so. To date, Pitkin County has seen no evidence that any personal information…
M.D. Anderson’s $4.3 Million Fine for Patient Data Loss Vacated
This is huge. Mary Anne Pazanowski reports: The University of Texas’s M.D. Anderson Cancer Center dodged a $4.3 million fine for losing over 35,000 people’s protected health information after the Fifth Circuit ruled Thursday that HHS acted arbitrarily and capriciously in finding that the provider violated two information security regulations. You can read more on…