Five enforcement actions hold healthcare providers accountable for HIPAA Right of Access

November 30, the Office for Civil Rights (OCR) at the US Department of Health and Human Services (HHS) announced the resolution of five investigations in its Health Insurance Portability and…

Read More »

Ohio Hospital Diverting Ambulances, Canceling Appointments amid Cyberattack

Southern Ohio Medical Center was hit with a cyberattack early Thursday, Nov. 11, which forced the nonprofit provider into electronic health record (EHR) downtime procedures.

Read More »

320K Impacted in EHR Vendor Breach, Ransomware Hits Health Systems

An EHR vendor began notifying its clients of a data breach that may have exposed the personally identifiable information (PII) and protected health information (PHI) of nearly 320,000 individuals.

Read More »

Pennsylvania AG Arrests Caregiver for Stealing Intellectually Disabled Clients’ Personal Information

Attorney General Josh Shapiro, in conjunction with the 47th Statewide Investigating Grand Jury, announced that the Office of Attorney General has filed charges against Nelson Fornah for stealing the personal…

Read More »

Third-Party Vendor Ransomware Attack Impacts Humana, Anthem Members

Both Humana and Anthem began notifying members that their protected health information (PHI) had been exposed following a ransomware attack on billing and IT solutions vendor PracticeMax.

Read More »

Indicators of Compromise Associated with Ranzy Locker Ransomware

The FBI first identified Ranzy Locker ransomware in late 2020 when the variant began to target victims in the United States. Unknown cyber criminals using Ranzy Locker ransomware had compromised…

Read More »

Spoofing, Phishing, Ransomware Continue to Overwhelm Health Systems

Hospitals and health systems continue to face an overwhelming amount of cyberattacks, spoofing and phishing incidents, and breaches resulting from unauthorized email access.

Read More »

Judge Sentences Michigan Man to 7 Years in Prison for Hacking UPMC HR Databases

Justin Sean Johnson was sentenced October 15 to the statutory maximum sentence of 60 months’ incarceration for Conspiracy to Defraud the US, and the statutory maximum of 24 months for…

Read More »

Hackers gained access, deployed ransomware in just 2 minutes, Indiana health system says

It took just two minutes for hackers to breach a hospital’s network and deploy ransomware on Franklin, Ind.-based Johnson Memorial Health, according to an Oct. 4 Daily Journal report.

Read More »

Alabama Baby Died Due to Hospital Ransomware Attack, Lawsuit Claims

An Alabama baby allegedly received inadequate childbirth healthcare at an Alabama hospital and later died due to computers being crippled by a ransomware attack, according to a lawsuit.

Read More »