#hipaa

[ follow ]
data-breach
TechCrunch
3 weeks ago
Information security

Health insurance giant Kaiser notifies millions of a data breach | TechCrunch

Kaiser Foundation Health Plan notified 13.4 million residents of a data breach involving unauthorized access to a network server. [ more ]
Databreaches
3 months ago
Privacy professionals

Atlanta Women's Health Group notifying patients of April 2023 data breach

Atlanta Women's Health Group (AWHG) notified over 30,000 patients of a data breach that occurred in April 2023.
The breach resulted in the unauthorized access of files containing patients' protected health information.
It is unclear why it took AWHG until January 2024 to notify patients, despite HIPAA and HITECH requiring notification within 60 days of discovery. [ more ]
Brooklyn Eagle
4 months ago
Privacy professionals

Your data has been breached ... again ... this time by NY Presbyterian Hospital

The NewYork-Presbyterian Hospital has settled for $300,000 after failing to protect patient data.
The hospital's website used tracking tools that disclosed visitors' health information to third-party tech companies. [ more ]
moredata-breach
Databreaches
2 months ago
Privacy professionals

Three recent breach disclosures remind of us how seldom timely breach notification is enforced under HITECH

Patient data breaches exceeded HIPAA notification deadline.
McDonald Hopkins reported discovery date discrepancy. [ more ]
www.engadget.com
3 months ago
Privacy professionals

HIPAA protects health data privacy, but not in the ways most people think

The P in HIPAA stands for portability, not privacy
HIPAA has limitations in terms of covered entities and covered data [ more ]
Databreaches
3 months ago
Privacy professionals

HHS' Office for Civil Rights Settles Malicious Insider Cybersecurity Investigation for $4.75 Million

Montefiore Medical Center settles with HHS for potential HIPAA violations
Data security failures led to employee stealing and selling patients' protected health information [ more ]
Washington Post
3 months ago
Privacy professionals

Texas AG's pursuit of transgender medical records stirs privacy concerns

Texas Attorney General Ken Paxton is demanding medical records from health-care providers outside of Texas who may have treated transgender youth from Texas.
Paxton's use of a HIPAA exception for law enforcement investigations may allow him to obtain the records he is seeking. [ more ]
Databreaches
5 months ago
Privacy professionals

If you're in Rock County, Wisconsin, do NOT read this post. Absolutely do not read this post.

The IT Director and Corporation Counsel of Rock County, Wisconsin are withholding information about a September ransomware attack from the public.
The county is required to notify affected individuals and the U.S. Department of Health and Human Services (HHS) within 60 days of discovering the breach. [ more ]
Databreaches
4 months ago
Privacy technologies

Attorney General James Secures $300,000 from NewYork-Presbyterian Hospital for Failing to Protect Patient Data

New York Attorney General Letitia James secured $300,000 from NewYork-Presbyterian Hospital for violating HIPAA by disclosing healthcare information of website visitors.
The hospital used advertising tools on its website that collected and shared private and personal information with third-party tech companies. [ more ]
Databreaches
5 months ago
Public health

HHS' Office for Civil Rights Settles First Ever Phishing Cyber-Attack Investigation

Lafourche Medical Group has settled with the U.S. Department of Health and Human Services following a cybersecurity breach that affected nearly 35,000 patients.
The breach was the result of a phishing attack, highlighting the vulnerability of healthcare systems to this type of cyber threat.
This settlement marks the first resolution by OCR involving a phishing attack under HIPAA Rules. [ more ]
[ Load more ]