How Threat Actors Leverage AI to Advance Healthcare Cyberattacks

The HHS Health Sector Cybersecurity Coordination Center (HC3) issued a brief regarding artificial intelligence (AI) and the threats it may pose to healthcare cybersecurity. Read more here.

Read More »

Cyberattack Affects Multiple Residential Care Facilities in Pennsylvania

The Williamsport Home, a retirement village in Pennsylvania, and Senior Choice, Inc., a provider of skilled nursing care at three inpatient facilities in Pennsylvania — The Atrium in Johnstown, Beacon…

Read More »

HHS OCR Settles HIPAA Investigation with iHealth Solutions Regarding Disclosure of PHI

The US Department of Health and Human Services’ Office for Civil Rights (OCR) announced a settlement of potential violations of the Health Insurance Portability and Accountability Act (HIPAA) Privacy and…

Read More »

OIG Posts Final Rule Implementing Information Blocking Penalties

On June 27, 2023, HHS-OIG posted its final rule implementing information blocking penalties. The final rule establishes the statutory penalties created by the 21st Century Cures Act. If OIG determines that…

Read More »

Illinois Hospital Links Closing to Ransomware Attack

An Illinois hospital will close its doors this week due in part to a cyberattack two years ago, which analysts said makes it the first hospital to publicly link criminal…

Read More »

Snooping in Medical Records by Hospital Security Guards Leads to $240K HIPAA Settlement

The US Department of Health and Human Services’ Office for Civil Rights (OCR) announced a settlement with Yakima Valley Memorial Hospital, a not-for-profit community hospital located in Yakima, Washington resolving…

Read More »

HHS OCR Reaches Agreement with Healthcare Provider in New Jersey That Disclosed Patient Information

The US Department of Health and Human Services (HHS), Office for Civil Rights (OCR) announces a settlement with Manasa Health Center, LLC, a healthcare provider in New Jersey that provides…

Read More »

Arizona Man Sentenced to 54 Months in Prison after Criminal Violation of HIPAA

Rico Prunty, 41 years old, of Sierra Vista, Arizona, was sentenced by United States District Court Senior Judge James T. Moody after pleading guilty to aggravated identity theft and a…

Read More »

NY AG Recoups $550K from Medical Management Company for Failing to Protect Patients’ Data

New York Attorney General Letitia James recouped $550,000 from a medical management company, Professional Business Systems, Inc. d/b/a Practicefirst Medical Management Solutions and PBS Medcode Corp. (Practicefirst), for failing to…

Read More »

OCR Settles HIPAA Investigation with Business Associate Following Unlawful Disclosure of PHI on Unsecured Server

The US Department of Health and Human Services’ Office for Civil Rights (OCR) announced a settlement of potential violations of the Health Insurance Portability and Accountability Act (HIPAA) Rules with…

Read More »