HIPAA Breaches

Congress Members’ Prescription Information Compromised in RXNT Data Breach
Ransomware Groups Claim Responsibility for Attacks on 3 Healthcare Providers
Verber Dental Group Notifies Patients About January Hacking Incident
Atrium Health & Interim HealthCare Affected by Business Associate Data Breaches
Mt. Spokane Pediatrics Data Breach Affects 32,000 Patients
Missouri Regulators Claim Conduent is Stonewalling State’s Data Breach Investigation
March 2026 Healthcare Data Breach Report
OpenLoop Health Data Breach Affects 716,000 Individuals
Hematology Oncology Consultants; Southcoast Health; Cunningham Prosthetic Care Announce Data Breaches
Data Breaches Announced by Four Healthcare Providers
Starr Insurance Discloses Ransomware Attack
CMS Found to Have Leaked Providers’ SSNs
Ransomware Attack on Good Samaritan Health Center Affects 10,000 Individuals
Sandhills Medical Foundation Ransomware Attack Affects 169,000 Patients
Vendor Data Breaches Announced by Six HIPAA-Regulated Entities
Medical Device Maker Medtronic Announces Data Breach
Cyberattacks Announced by Florida Physician Specialists & Mile Bluff Medical Center
HIPAA Violation Cases: Types & Consequences
OCR Fines Four Regulated Entities for HIPAA Violations That Led to Ransomware Attacks
Minidoka Memorial Hospital Recovering from Easter Cyberattack
Ransomware Attack on Hospital Caribbean Medical Center Affects 92,000 Individuals
North Texas Behavioral Health Authority Data Breach Affects 285K Individuals
Chicago’s Saint Anthony Hospital Reports Breach Affecting 146,000 Individuals
Data Breaches Announced by Mindpath Health; Springfield Hospital; Lone Peak Psychiatry
Arizona & Texas Clinics Notify Patients About Ransomware Incidents
Court Rules State Regulator’s Investigation of Blue Cross Blue Shield of Montana May Proceed
Two Senior Care Providers Affected by Ransomware Attacks
Ransomware Attack on Cookeville Regional Medical Center Affected 338K Individuals
Brockton Hospital Ransomware Attack: Downtime Procedures to Continue for Two Weeks
Stryker Cyberattack Has Impacted First Quarter Earnings
Data Breach at Rocky Mountain Associated Physicians Affects 50,000 Patients
Medical Group Announces PHI Exposure Due to Unencrypted Emails
Kettering Health Ransomware Attack: 1.7 Million Individuals Affected
Data Breaches Announced by DermCare Management; Option Care Health; Aetna
February 2026 Healthcare Data Breach Report
Data Breaches Announced by Neinstein Plastic Surgery; Atlantic Brain and Spine
New Jersey Long Term Care Pharmacy Data Breach Affects 133,800 Patients
Data Breaches Reported by Southern Illinois Dermatology; Heart South Cardiovascular Group
Woodfords Family Services Data Breach Affected Almost 42,000 Individuals
ProxyCare; Oscar Health; AccentCare Announce Data Breaches
Telehealth Giant Him & Hers Announces Data Breach
Nacogdoches Memorial Hospital Data Breach More Than 257,000 Individuals
Data Breach Reported by Orthopedic Implant Manufacturer TriMed
Data Breaches Announced by Corewell Health & Rocky Mountain Care
Healthcare Software Company Announces Breach of its Electronic Health Record Environment
Six New Healthcare Data Breaches Announced
Data Breaches Reported by New York & Texas Plastic Surgery Practices
NYC Health + Hospitals Discloses 11-week Network Compromise
Deaconess Health System Affected by Vendor Data Breach
Florida Insurance Commissioner Suspends Mirra Health for Medicare Data Transfers to Foreign Companies
National Association on Drug Abuse Problems Announces Data Breach Affecting 90,000 Individuals
Navia Benefit Solutions Discloses Data Breach Affecting 2.7 Million Individuals
Trinity Health & UPMC Notify Patients About Potential Unauthorized Data Access via HIE
GuardDog Telehealth Admits Improper Access to Medical Records
Delta Medical Systems Notifies Patients About July 2025 Cyberattack
PHI Exposed in Data Breaches at Cedar Valley Services; Community Nurse; Health Dimensions Group
CommonSpirit Health Patients Affected by Vendor Data Breach
Ransomware Group Claims Attacks on Meadowlark Hills Retirement Community & MedPeds
California Dental Care Provider; Childcare Referral Agency Announce Data Breaches
Orthopaedic Institute of Western Kentucky Patients Affected by Vendor Data Breach
Proliance Surgeons Settles Data Breach Litigation for $4,450,000
ID Care & CommuniCare Announce Data Breaches
Data Breaches Reported by Centerwell & Lakeside Pediatrics & Adolescent Medicine
February 2025 Cyberattack Affected More Than 230K Bell Ambulance Patients
Alabama Hospital Recently Informed About 2024 Data Breach
PIH Health Notifies Patients About 2024 Hacking Incident
Two California Medical Groups Announce Data Breaches
Insight Hospital and Medical Center Announces Cyberattack & Data Breach
QualDerm Partners Data Breach Affects More Than 3 Million Individuals
University of Hawai’i Cancer Center: 1.15 Million Individuals Affected by 2025 Ransomware Attack
Trizetto Data Breach: PHI of 3.4 Million Individuals Exposed
January 2026 Healthcare Data Breach Report
Apex Spine & Neurosurgery & North Central Behavioral Health Systems Announce Data Breaches
Carolina Foot & Ankle Associates Notifies Patients About December 2025 Cyberattack
Center for Advanced Eye Care; Southwest C.A.R.E Center; Evergreen Healthcare Group Announce Data Breaches
Medical Device Manufacturer UFP Technologies Confirms Data Stolen in Cyberattack
Cedar Point Health; Wee Care Pediatrics; Easterseals NI Announce Data Breaches
Greater Pittsburgh Orthopedic Associates Data Breach Affects Almost 57,000 Individuals
Vikor Scientific Affected by Ransomware Attack on Revenue Cycle Management Vendor
UMMC Shuts Clinics While it Grapples with Ransomware Attack
Granite Wellness Centers & Pediatric Home Service Settle Class Action Data Breach Lawsuits
Cyberattacks Announced by WIRX Pharmacy and Emanuel Medical Center
Three Healthcare Providers Affected by Ransomware Attacks
Norton Healthcare Settles Class Action Ransomware Lawsuit for $11 Million
Academic Urology & Urogynecology of Arizona Data Breach Affects 73K Patients
Managed Care Advisors / Sedgwick Notify Patients of Ransomware Attack
2025 Healthcare Data Breach Report
Data Breaches Announced by MedRevenu & EyeCare Partners
Aflac Data Breach: PHI of At Least 13.9 Million Individuals Compromised
ApolloMD Confirms 626,500 Patients Affected by May 2025 Ransomware Attack
83,000 Clients Affected by Cyberattack on Ohio Counseling Center
Precipio; Pit River Health Service; Tulane University Medical Group Confirm Data Breaches
Jefferson-Blount-St. Clair Mental Health Authority Data Breach Affects 30,000 Patients
DOCS Dermatology Group; Center for Neuropsychology and Learning Disclose Data Breaches
Healthcare Technology Company Discloses Ransomware Attack
Central Ozarks Medical Center Discloses Data Breach Affecting Almost 12,000 Patients
Patients Learn Their Health Data Was Compromised More Than a Year Ago
Bayada Home Health Care Affected by Doctor Alliance Data Breach
December 2025 Healthcare Data Breach Report
Healthcare Interactive: More Than 3 Million Individuals Affected by July 2025 Security Incident
Mitchell County Dept. Social Services; 360 Dental; GiaCare Announce Data Breaches
MACT Health Board Patients Affected by November 2025 Ransomware Attack
More Than 100K Munson Healthcare Patients Affected by Cerner Cyberattack
HIPAA Enforcement by State Attorneys General
Patients of Philadelphia’s Laurel Health Centers Affected by Data Breach
Columbia Medical Practice; Jupiter Medical Center Announce Data Breaches
November 2025 Healthcare Data Breach Report
Central Maine Healthcare Data Breach Affects 145,000 Individuals
Minnesota Department of Human Services Data Breach Affects Over 300K Individuals
Valley Eye Associates Confirms Patient Data Stolen in Ransomware Attack
Monroe University: 320,000 Individuals Affected by December 2024 Cyberattack
Tens of Thousands of Patients Affected by Two Business Associate Data Breaches
Vida Y Salud-Health Systems & Dublin Medical Center Confirm Data Breaches
How to Report a HIPAA Violation Anonymously
CareOregon and Health Share of Oregon Warn of Potential Insurance Fraud After Data Breach
12,000-Record Data Breach Announced by New York Plastic Surgery Practice
October 2025 Healthcare Data Breach Report
Business Associate Data Breach Affects 55K Bosch Choice Welfare Benefit Plan Members
Denton County MHMR Center Data Breach Affects 109,000 Patients
How Should You Respond To An Accidental HIPAA Violation?
Illinois Department of Human Services Exposes Sensitive Data of 700,000 Individuals Online
Covenant Health Ransomware Attack Victim Count Increases by 5,980%
Largest Healthcare Data Breaches of 2025
The 10 Most Common HIPAA Violations To Avoid
What are the Penalties for HIPAA Violations?
Singing River Health System Investigating Cyberattack
AllerVie Health Patients Affected by Ransomware Attack
Artemis Healthcare Falls Victim to Ransomware Attack
80 Hospitals May Have Been Affected by the Oracle Health Data Breach
NCH Corporation Employee Benefits Plan Member Data Stolen
Data Breach Affects Patients of Multiple Fyzical Therapy & Balance Centers
New York Attorney General Fines Capital Region Orthopedic Practice $500K for 2023 Data Breach
PHI Impermissibly Disclosed by Job-Sharing Employee
ARC Community Services Announces November 2024 Ransomware Attack
Wilbarger General Hospital & Ochsner LSU Health System Announce Data Breaches
New York Home Healthcare Provider Identifies Email Account Breach
Former Evoke Wellness Employee Obtained and Misused Patient Data
Albemarle County, VA, Confirms PHI Stolen in June Ransomware Attack
Major Data Breach Announced by Richmond Behavioral Health Authority
PHI of Almost 93,000 Patients Compromised in Cyberattack on NS Support
Data Breaches Announced by Expert MRI; McElroy & Associates
Data Breaches Announced by Victory Disability & Madison Healthcare Services
Data Breaches Confirmed by Revere Health & Health Management Systems of America
Notifications Issued About MedStar Health Data Breach
Brevard Skin and Cancer Center Announces September Cyberattack
Henry Ford Health Notifies 2,000 Patients About Insider Data Breach
Data Breaches Announced by North Atlantic States Carpenters Health Benefits Fund & Millcreek Pediatrics
Davies, McFarland & Carroll; Awakenings Center Data Breaches Impact 72,500 Individuals
Data Breaches Announced by Morton Drug Company & Physicians to Children & Adolescents
Pharmaceutical Firm Inotiv Discloses Ransomware Attack and Data Breach
Kansas City Behavioral Health Center Discloses September 2025 Data Breach
Patient Data Compromised in Cyberattacks on Sleep Specialists
Liberty Resources Announces July 2024 Data Breach
Kaiser Permanente Agrees to Pay Up to $47.5 Million to Settle Web Tracker Litigation
Health Plan Members’ PHI Exposed in Cyberattack on Fieldtex Products
Data Breaches Announced by Ennoble Care & Circa Health; Dermatology Associates of Concord
Data Breaches Announced by Heritage Communities & Metrocare Services
North Kansas City Hospital Patients Affected by Cerner Hacking Incident
Rockhill Women’s Care & Harbor Regional Center Announce Data Breaches
VITAS Hospice Services Discovers Month-Long Network Intrusion Affecting 319K Patients
Delta Dental of Virginia Data Breach Affects 146,000 Individuals
Geisinger Health & Nuance Communications Data Breach Litigation Settled for $5 Million
Vendor Breaches Announced by Illinois and Virginia Healthcare Providers
St. Anthony Hospital in Chicago Notifies Patients About February Data Breach
Nebraska AG’s Lawsuit Against Change Healthcare Survives Motion to Dismiss
EHR Vendor Identifies Business Associate Data Breach
Doctor Alliance Investigating 353 GB Data Theft Claim
DealMed Medical Supplies Announces July 2025 Cyberattack
Wakefield & Associates Announces Breach of Client Data
Tri Century Eye Care & Pittsburgh Gastroenterology Associates Announce Data Breaches
New Jersey Medical Center Suffers Ransomware Attack
Oglethorpe Hacking Incident Affects more than 92,000 Patients
OB-GYN Associates & Beverly Hills Oncology Medical Group Issue Breach Notifications
George E. Weems & Vibra Hospitals Announce Data Breaches
Sedgebrook & Heartland Health Center Hit with Ransomware Attacks
Data Breaches Announced by ModMed, LifeBridge Health & Right at Home
Yale New Haven Health Agrees to $18 Million Data Breach Settlement
Florida Hospital Fires Employees for Taking Unauthorized Photographs of Sedated Patients
Business Associate Data Breach Affects 462,000 Blue Cross Blue Shield of Montana Members
September 2025 Healthcare Data Breach Report
Oregon Eye Care Provider and New York Children’s Center Announce Hacking Incidents
City of Hope Settles Class Action Data Breach Lawsuit
Massachusetts Hospitals Experiencing Disruption Due to Cyberattack
Data Breaches Announced by Watsonville Community Hospital & Palomar Health Medical Group
Five Healthcare Providers Warn Patients About Cyberattacks & Data Breaches
Almost 26,000 Individuals Affected by Data Breach at Methodist Homes of Alabama & Northwest Florida
Fort Wayne Medical Education Program Data Breach Affects Almost 30,000 Individuals
$30 Million Settlement Agreed to Resolve Integris Health Class Action Data Breach Lawsuit
ALN Medical Management to Pay $4 Million to Settle Class Action Data Breach Lawsuit
SimonMed Imaging: 1.27M Individuals Affected by January 2025 Cyberattack
Nurse Fired for Disclosing Teenager’s Pregnancy Status to Family Member
Florida Radiology Practice Announces 171K-record Data Breach
Harris Health Notifies Patients About 10-Year Insider Data Breach
PHI Potentially Stolen in Phishing Attack on Superior Vision Services
Data Breaches Announced by Treasure Coast Hospice & Harbor
Florida Medication Management Provider Discloses 150K-record Data Breach
Connecticut Medical Rehabilitation Center Announces Hacking Incident
City of St. Joseph & Viva Health Announce Data Breaches
Veradigm Announces Data Breach Affecting Several Customers
Security Researcher Identifies Exposed 150,000-record Home Health Care Database
Cyberattack on Coos County Family Health Services Exposed Patient Data
OneBlood Will Pay Up to $1M to Settle Class Action Data Breach Lawsuit
Albany Gastroenterology Consultants: November 2024 Data Breach Affects Almost 58,000 Patients
Michigan Critical Access Hospital Suffers Two Hacking Incidents Affecting Almost 78,000 Individuals
August 2025 Healthcare Data Breach Report
New Jersey Medical Groups Warn Patients About Data Breach
Goshen Medical Center Notifies 456,000 Individuals About Hacking Incident
California Business Associate Improperly Disposed of Patient Data
Data Breaches Announced by Community Health Network; Mid South Rehab Services
Florida Eye Care Provider Data Breach Affects 153,000 Patients
California Radiology Provider Announces 13,000-Record Data Breach
Teamsters Union 25 Health Services & Insurance Plan Hacking Incident Affects 19,000 Members
Data Breaches Announced by US HealthConnect & Altos Inc.
Data Breaches Announced by Washington, Florida, and Minnesota Healthcare Providers
Wayne Memorial Hospital Notifies 163,000 Patients About May 2024 Ransomware Attack
Somerset County Children and Youth Services Department Data Breach
Cybercriminals Hit Washington Laboratory and New York Pharmacies
Florida Pediatric ENT Specialists Confirm Data Breach Affecting 44,000 Individuals
New York Blood Center Enterprises Notifies Individuals Affected by January Ransomware Attack
Business Associate Hacking Incident Affects Keys Pathology Patients
Two Disability Service Providers Announce Data Breaches Affecting 8,100 Patients
Senators Demand Answers from UHG on Aggressive Loan Repayment Tactics Following Cyberattack
Absolute Dental Confirmed Data Breach Affecting Over 1.2 Million Individuals
UI Community HomeCare Hacking Incident Affects 211,000 Patients
New York Counseling Provider and Florida Cancer Center Announce Data Breaches
Data Breaches Announced by The Black Hills Regional Eye Institute & The Children’s Center of Hamden
Florida Medical Imaging Provider Notifies 260,000 Patients About February Data Breach
Legacy Treatment Services Data Breach Affects 42,000 Individuals
Healthcare Services Group Confirms 624,500 Individuals Affected by Data Breach
Michigan Rural Health System Notifies 140,000 Patients About Hacking Incident
July 2025 Healthcare Data Breach Report
DaVita Confirms 2.7 Million Individuals Affected by Ransomware Attack
Mower County in Minnesota Confirms HIPAA-Data Compromised in June Ransomware Attack
Business Associate Data Breach Affects 87 Skilled Nursing Facilities
Cyberattack on Medical Equipment Provider Affects 90,000 Patients
Patient Data Lost in Ransomware Attack on EHR Vendor
Insider Breaches Identified by Three Healthcare Providers
Large Vision Care Provider Announces Breach of Patient Data
Arizona Orthopedics Practice Announces Data Breach
Langdon & Company; Michigan Medicine Announce Data Breaches
Data Breaches Announced by Doctors’ Memorial & Sabine County Hospitals
Data Breaches Announced by Three Oral Healthcare Practices
Cencora & The Lash Group Settle Data Breach Litigation for $40 Million
Senators Demand Answers from UnitedHealth After Second Massive Data Breach in a Year
Alera Group Notifies 155K Individuals About July 2024 Hacking Incident
Hacking Incidents Announced by Two Texas Health Clinics
Business Associate Data Breaches Affect Florida Healthcare Providers
Small Nebraska Critical Access Hospital Announces Data Breach
Medical Imaging Provider Confirms Data Breach Affecting More Than 348,000 Patients
Ransomware Attack on Arkansas Oncology Group Affects 113,500 Individuals
Florida Internal Medicine Practice Discloses November 2024 Data Breach
Dermatology Clinics Affected by Practice Management Company Data Breach
Data Breaches Announced by Florida & Colorado Mental Health Clinics
Florida Practice Management Company Announces June 2025 Data Breach
Wood River Health Notifies 55K Patients About August 2024 Data Breach
Texas Gastroenterology Clinic Falls Victim to Interlock Ransomware Attack
McKenzie Memorial Hospital Announces Data Breach Affecting Almost 59,000 Patients
Cumberland County Hospital Data Breach Affects Almost 37,000 Individuals
New York Surgery Center Pays $250K to Settle HIPAA Risk Analysis; Breach Notification Violations
Naper Grove Vision Care Falls Victim to Interlock Ransomware Attack
Business Associate Data Breach Affects Duke Regional Hospital Patients
Small Michigan Physical Therapy Practice Reports Loss of Patient Data Due to Cyberattack
Premier Health Partners Announces July 2023 Data Breach
Montana Mental Health Center Announces 87,000-Record Data Breach
Cierant Corporation Announces 232,500-Record Data Breach
Small Georgia Medical Practice Closes Due to Cyberattack
June 2025 Healthcare Data Breach Report
Cyberattack on Medical Imaging Provider Affects 1.4 Million Patients
Fake Claim from Ransomware Group About Theft of Patient Data
Multiple Life Care Services Senior Living Facilities Impacted by Data Breach
South Carolina Healthcare Providers Report Hacking Incidents
Anne Arundel Dermatology Data Breach Affects 1.9 Million Patients
Ransomware Gangs Attack Clinical and Pathology Laboratories
Email Data Breaches Reported by Three HIPAA-Regulated Entities
Ocuco Issues Notifications About 241K-Record Data Breach
Gardner Orthopedics Ransomware Attack Affects 47,000 Patients
Phishing Attack Affects Multiple Cancer Treatment Centers
Horizon Healthcare RCM Announces December 2024 Ransomware Attack
Compumedics Cyberattack Affects Almost a Dozen Healthcare Providers
Surmodics & Kentfield Hospital Fall Victim to Cyberattacks
Bankruptcy Court Approves Sale of 23andMe
Texas Centers for Infectious Disease Associates Announces 19K-Record Data Breach
Kelly Benefits Data Breach Update: More Than 553,000 Individuals Affected
CMS Notifies 103,000 Medicare Beneficiaries About Unauthorized Account Creation
Esse Health Confirms Almost 264,000 Individuals Affected by April 2025 Cyberattack
Mainline Health Systems Reports 101,000-Record Data Breach
May 2025 Healthcare Data Breach Report
Data Breaches Announced By Decisely Insurance Services & Apex Global Solutions
Albany College of Pharmacy and Health Sciences Cyberattack Affects 28,600 Individuals
McLaren Health Care Notifies Almost 750,000 Individuals About August 2024 Ransomware Attack
Erie Insurance Experiencing Business Disruption Due to Cyberattack
PHI Stolen in Sensata Technologies Ransomware Attack
Episource Cyberattack Attack Affects More Than 5.4 Million Individuals
$5.48 Million Settlement Approved to Resolve HealthEC Data Breach Litigation
Data Breaches Announced by Shelby Dermatology & Northwestern Community Services Board
Cyberattacks Announced by Renkim Corporation & The Vascular Experts
Mobile County Health Department Investigating Potential HIPAA Violation
Jackson Health System Announces Another 5-Year Insider Data Breach
Drug and Alcohol Treatment Services Facing Multiple Class Action Data Breach Lawsuits
Cumberland County Hospital Cyberattack Affects 36,600 Patients
Database Containing More Than 8 Million Patient Records Exposed Online
Brooklyn Man Indicted for Secretly Filming Patients in Northwell Health Bathrooms
Gateway Community Services Announces 34,500-Record Data Breach
Next Step Healthcare & HopeWay Foundation Notify Patients About Data Breaches
Central Maine Healthcare Investigating Potential Cyberattack
U.S. Dermatology Partners Announce June 2024 Cyberattack & Data Breach
Bradford Health Services Notifies Patients About 2023 Cyberattack
Key Systems Restored After Masimo Cyberattack
Nationwide Recovery Service Data Breach Victim List Grows: 560,000+ Individuals Affected
Cooper Health System Data Breach Affects Almost 60,000 Individuals
Massachusetts Mental Health Service Provider Suffers 46K-record Data Breach
North Carolina Pathology Laboratory Suffers 235K-Record Data Breach
April 2025 Healthcare Data Breach Report
Harbin Clinic: 210,000 Individuals Affected by Nationwide Recovery Service Data Breach
Anne Arundel County Department of Health Confirms February Ransomware Attack
Unsecured Serviceaide Database Exposed Data of 483,000 Catholic Health Patients
Tri-City Cardiology Consultants & Northeast Georgia Health System Announce 21K+ Record Data Breaches
CardioVascular Health Clinic & Hunter Health Clinic Announce Data Breaches
Weiser Memorial Hospital Data Breach Affects 59,990 Patients
Union Health System: Almost 263,000 Individuals Affected by Oracle Health/Cerner Hack
Texas Health and Human Services Commission Affected by Insider Breach at Business Associate
Georgia & Missouri Healthcare Providers Notify Patients About 2024 Hacking Incidents
Esse Health Cyberattack Disrupts Healthcare Services in St. Louis
Arizona Arthritis and Rheumatology Associates & Mon Health Report Phishing Incidents
City of Oakland Agrees Settlement to Resolve Class Action Data Breach Lawsuit
Horizon Behavioral Health Falls Victim to Ransomware Attack
Orthopaedic Specialists of Connecticut & DATS in Pennsylvania Announce 22K-Record Data Breaches
City of Long Beach Notifies Individuals Affected by November 2023 Cyberattack
Ascension Health Notifying 437K Patients About Data Breach at Former Business Partner
Verisource Services Increases Data Breach Victim Count to 4 Million
Endue Software Confirms Data Breach Affecting Multiple Providers
Alternate Solutions Health Network Notifies Patients About May 2024 Email Breach
Blue Shield of California Announces Impermissible Disclosure of PHI to Google Ads: 4.7 Million Affected
March 2025 Healthcare Data Breach Report
340,000 Individuals Affected by Security Breach at St Clair Orthopaedics & Sports Medicine
OCH Regional Medical Center Notifies 51,000 Patients About September 2023 Data Breach
Onsite Mammography Email Breach Affects 357,000 Patients
Hospital Español Auxilio Mutuo de Puerto Rico Confirms 2023 Data Breach
Email Accounts Breached at San Francisco Campus for Jewish Living & Altior Healthcare
Vitruvian Health & Erlanger Health Affected by Nationwide Recovery Service Cyberattack
Retina Group of Washington Agrees to $3.6 Million Settlement to Resolve Data Breach Lawsuit
Medical Express Ambulance Service Data Breach Affects 118K Individuals
Ransomware Attack Announced by True Dental Care for Kids and Adults
Loretto Hospital Confirms Patient Data Involved in January Hacking Incident
Central Texas Pediatric Orthopedics Hacking Incident Affects 140,000 Patients
Laboratory Services Cooperative Breach Impacts 1.6 Million People
Hamilton County (TN) & Bigfork Valley Hospital (MN) Announce Data Breaches
Mercer County Joint Township Community Hospital Cyberattack Affects Up to 88,500 Individuals
Sentara Health Identifies Job Sharing Scam and Potential Unauthorized EMR Access
Hacking Incidents Reported by Georgia Urology and Millennium Home Health Care
173,000 Patients Affected by Chord Specialty Dental Partners Email Data Breach
Healthcare Data Breaches Reported in Georgia, Washington & New Hampshire
Beacon Health System Affected by Two Business Associate Email Breaches
Numotion Reports Email Data Breach Affects 529,000 Individuals
Colorado Eye Clinic Investigating Suspected Ransomware Attack
Orthodontic Practice Management Software Provider Announces Data Breach
February 2025 Healthcare Data Breach Report
Lake Washington Vascular Ransomware Attack Affects 21,500 Patients
Cyberattack Forces North Carolina Radiology Practice to Close for More Than a Month
Cyberattack on Michigan Plastic Surgery Practice Affects Almost 20,000 Patients
Email Account Breaches Reported by Access TeleCare & Madison County, MS
The Biggest Healthcare Data Breaches of 2024
Illinois Accountancy Firm Sued Over 217,000-Record Data Breach
Healthcare Staff Database with 86,000 Records Exposed Online
15K Patients Potentially Affected by Insider Incident at New York Healthcare Provider
Hillcrest Convalescent Center Announces 106K-Record Data Breach
Cyberattack on Sunflower Medical Group Affects 222,000 Patients
Rhode Island Human Services Agency Announces 114K-Record Data Breach
PHI Compromised in Email Breaches at Bassford Remele & Scott County, Iowa
New Era Life Insurance Companies Data Breach Impacts 335K Individuals
Cyberattack Announced by Carolina Arthritis Associates
Email Accounts Compromised at Four Healthcare Orgs
Data Breaches Announced by Central New York Cardiology & Park Place Pediatric Dentistry
Cyberattack on Arizona Business Associates Affects 78,000 Individuals
VectraRx Mail Pharmacy Services Notifies 109K Individuals About Data Breach
Three Healthcare Providers Notify Patients About 2024 Data Breaches
January 2025 Healthcare Data Breach Report
Ransomware Gangs Attack Sault Ste. Marie Tribe of Chippewa Indians & SimonMed Imaging
Email Account Breaches Reported by Kansas & West Virginia Medical Centers
Data Breaches Confirmed by City of McKinney and Innovative Renal Care
Hackers Breach Systems of HIPAA-Regulated Entities in Missouri, Nevada, Texas & Wisconsin
Accendo Insurance Company Affected by Business Associate Data Breach
Data Breach at New York Medical Imaging Provider Affects 138,000 Patients
Hospital Sisters Health System: August 2023 Data Breach Affected 883K Individuals
At Least 24,400 Individuals Affected by 5 Healthcare Data Breaches
Asheville Eye Associates Hacking Incident Impacts 205K Patients
Cyberattack on River Region Cardiology Affects Up to 500,000 Individuals
Over 1 Million Patients Affected by Community Health Center Data Breach
NorthBay Healthcare Notifies 569K Individuals About February 2024 Data Breach
2024 Healthcare Data Breach Report
Frederick Health Recovering from Ransomware Attack
Tens of Thousands of Residents Affected HCF Management Cyberattack
294,000 Allegheny Health Network Patients Affected by Business Associate Cyberattack
Texas Health and Human Services Commission Fires Multiple Employees Over 3.5-Year Privacy Breach
December 2024 Healthcare Data Breach Report
Email Accounts Compromised at LifeBridge Health
Wolf Haldenstein Confirms 3.4 Million-record Data Breach
North Carolina Hospice Discovers 58,000-Record Data Breach
Tycon Medical Systems Reports Data Breach Affecting 112,847 Individuals
Dignity Health Lassen Medical Clinic Cyberattack Affects 65,482 Patients
BayMark Health Services Notifies Patients About October Ransomware Attack
Eastern Idaho Public Health Discovers Insider Data Breach
Billing Support Vendor Notifies 701K Patients About December 2023 Data Breach
408,000 Individuals Affected by Cyberattacks on NY & WY Orthpaedics Specialists
OCR Agrees $80K Settlement with Elgon Information Systems to Resolve Risk Analysis Failure
Colorado Fertility Center Ransomware Attack Affects 80,000 Patients
Las Palmas Del Sol Healthcare Discovers 2-Year Insider Data Breach
EMR Vendor Reports Breach of Patient Data
Email Accounts Breached at DAP Health; Access TeleCare; Northwest Asthma and Allergy Center
American Addiction Centers Ransomware Attack Affects Almost 411,000 Patients
Douglas County Department of Health and Human Services Discovers Insider Data Breach
November 2024 Healthcare Data Breach Report
Illinois Department of Human Services Phishing Attack Impacts 1.1 Million Customers
Hackers Obtained the Data of BU Framingham Heart Study Participants
Rocky Mountain Gastroenterology Associates Data Breach Affects 366K Patients
Ascension Ransomware Attack Affects 5.6 Million Patients
226,000 Individuals Affected by Regional Care, Inc. Cyberattack
Brockton Neighborhood Health Center Suffers Interlock Ransomware Attack
Texas Tech University Health Sciences Center Ransomware Attack Affects 1.46 Million Patients
UT Southwestern Medical Center Data Breach Affects 43,000 Patients
ConnectOnCall Announces 914K-Record Data Breach
Center for Vein Restoration Data Breach Affects Almost 450,000 Individuals
HealthAlliance Pays $550,000 for Failing to Address a Known Cybersecurity Vulnerability
Cyberattack on Fort Worth Revenue Cycle Management Firm Affects 77,000 Individuals
Anna Jacques Hospital Notifies 316K Patients About December 2023 Ransomware Attack
Californian Hospitals Continue to be Disrupted by Thanksgiving Ransomware Attacks
$8.9 Million Data Breach Settlement Agreed by Elekta & Northwestern Memorial Healthcare
VA Nurse Charged for Unlawfully Accessing a Patient’s Medical Records
OCR Phishing Investigation Uncovers HIPAA Training Failure; Children’s Hospital Colorado Fined $548,265
Atrium Health Discovers Historic Use of Tracking Technologies on its Patient Portal
Gastroenterology, Cardiology, and Nursing Care Providers Suffer Cyberattacks
Email Incidents Announced by SAG-AFTRA Health Plan & East Paris Internal Medicine Associates
Ransomware Groups Attack Multiple UK NHS Trusts
Colonial Behavioral Health & Veterans Health Administration Patients Affected by Ransomware Attacks
Patient Data Compromised in Cyberattack on New York Women’s Healthcare Providers
Email Account Breaches Reported by Atlantic Orthopaedic Specialists & York County, PA
OnePoint Patient Care Data Breach Affects 1.7 Million Individuals; Ransom Group Leaks Data
Postmeds Agrees to $7.5 Million Settlement to Resolve Data Breach Lawsuit
UMC Health Notifies Patients Affected by September Ransomware Attack
Email Data Breaches Announced by 4 U.S. Healthcare Orgs
RRCA Accounts Management Falls Victim to Play Ransomware Attack
October 2024 Healthcare Data Breach Report
Data Breaches Reported by Hopscotch; Athenahealth; Central Resources
Oak Valley Hospital & Pacific Cataract & Laser Institute Data Breach Settlements Await Final Approval
Almost 39,000 Patients Affected by Email Breach at Oklahoma Spine Hospital
TriHealth Physician Partners Confirms Patient Data Exposed in Cyberattack
Great Plains Regional Medical Center: 133,000 Patients Affected by Ransomware Attack
Judge Approves $1.5 Million One Brooklyn Health Data Breach Settlement
Embargo Ransomware Group Claims Attack on American Associated Pharmacies
Data Breaches Announced by New Jersey Rehabilitation Center & Rhode Island Orthopedic Practice
Health & Palliative Services of the Treasure Coast & Universal Health Corporation Suffer Email Breaches
Data Breaches Confirmed by South West Family Medicine Associates & Sango Family Dentistry
Planned Parenthood Ransomware Attack Affects 56,917 Patients
Presbyterian Healthcare Services & ORM Fertility Patients Affected by Data Breaches
20,000-Record Data Breaches Reported by Axis Health System & Gandara Mental Health Center
Kaiser Permanente, Soliant Health & Potomac Medical Aesthetics Report Email Breaches
Memorial Hospital and Manor Recovering from Ransomware Attack
Summit Pathology: 1.8 Million Individuals Affected by Ransomware Attack
Data Breaches Reported by Mystic Valley Elder Services & St. Anthony Regional Hospital
Wichita County and Parkland Health Suffer Data Breaches
38,000 Individuals Affected by Center for Urban Community Services Cyberattack
Long Island Plastic Surgical Group Confirms 161K-Record Data Breach
Healthcare Data Breaches Reported in New York, Florida, & Arkansas
Email Incidents Reported by Survival Flight and Jacksonville Children’s Multispecialty Clinics
Henry Schein Confirms 166,000 Individuals Affected By October 2023 Ransomware Attack
More Than 909,000 Individuals Affected by Cyberattack on New York IT Services Provider
Patient Data Compromised in Email Breaches in Indiana, New York & Wisconsin
September 2024 Healthcare Data Breach Report
BianLian Threat Group Claims Responsibility for Cyberattack on Boston Children’s Health Physicians
OCR Announces 50th HIPAA Right of Access Penalty
Email Account Breaches Reported by 5 HIPAA-Regulated Entities
Data Breaches Confirmed by Tri-City Healthcare District; TheraCom
Rhysida Ransomware Group Claims Responsibility for AXIS Health System Attack
Gryphon Healthcare Notifies 400,000 Patients About Recent Cyberattack
Data Breaches Confirmed by Omni Family Health & Signature Healthcare Services
Muskogee City County Enhanced 911 Trust Authority & PRC-Saltillo Announce Data Breaches
Weiser Memorial Hospital Investigating Cyberattack
Harvard Pilgrim Health Care Ransomware Attack Affected at Least 2,967,000 Individuals
Email Account Breaches Reported by Four HIPAA Covered Entities
VA Employees Impermissibly Accessed Vice Presidential Candidates’ Medical Records
UMC Health System Responding to Ransomware Attack
Cascade Eye and Skin Centers Settles Alleged HIPAA Violations for $250,000
CMS Confirms 3.1 Million Individuals Affected by MOVEit Hack on Wisconsin Physicians Service
Elitecare Emergency Hospital Confirms 24,750-Record Data Breach
siParadigm Notifies 26,500 Patients About PHI Exposure
August 2024 Healthcare Data Breach Report
Richland County, WI Notifies 76,000 Individuals About October 2023 Cyberattack
7,000-Record Data Breaches Reported by Seneca Nation Health System & Catholic Charities
Email Breach at Guam Seventh-Day Adventist Clinic Affects 56,000 Individuals
Email Accounts Compromised in Atrium Health Phishing Attack
Illinois Bone & Joint Institute Hacking Incident Affects 568,000 Patients
Goodwin Living and L.A. County Department of Mental Health Suffer Email Breaches
Email Accounts Compromised at Welcome Health & United Way of Connecticut
Service Access & Management Investigating Cyberattack
Researcher Identifies Exposed Database Containing Mental Health and Substance Abuse Treatment Information
Almost 2.9 Million Individuals Affected by Acadian Ambulance Cyberattack
Data Breaches Reported by VeriSource Services & CBIZ Benefits & Insurance Services
Data Breaches Reported by Three Californian Healthcare Providers
Specialty Networks Data Breach Affects 411,000 Patients
Florida Department of Health Notifies Individuals Affected by June 2024 Cyberattack
Ransomware Attack on Software Vendor Involved Medical Insurance Information of 954K Individuals
Email Breach Reported by The Facial Pain Center
Data Breaches Reported by Medical Center Barbour; Monte Nido; Allergy Medical Group of the North Area
Cyberattack on Help at Home Affects 26,700 Current & Former Patients
Welltok Data Breach Victim Count Rises to 14.76 Million
Minnesota Dental Practices Report Email Breach Affecting 277K Patients
July 2024 Healthcare Data Breach Report
Email Accounts Compromised at UConn Health and Maryville Inc.
Cyberattacks on NY & OH Senior Care Providers Affect 181,000 Individuals
Alabama Cardiovascular Group Cyberattack Affects 280,500 Individuals
Healthcare Data Breaches Affect Patients in AL, IN, MN, NC, NY, OR, and NY
Illinois, Florida, and Puerto Rico Healthcare Providers Confirm Data Breaches
Kootenai Health Ransomware Attack Affects 464,000 Individuals
Six Healthcare Providers Added to Ransomware Data Leak Sites
Franklin County, Kansas Falls Victim to Ransomware Attack
Rhysida Threat Group Auctions Data Stolen in City of Columbus Ransomware Attack
Arisa Health Confirms Data Breach Affected More Than 375,000 Patients
New Hampshire, Texas, and Oregon Healthcare Providers Fall Victim to Ransomware Attacks
Phishing Email Results in 108,000-Record Data Breach at Nebraska Life Insurer
H1, 2024 Healthcare Data Breach Report
Aveanna Healthcare Announces Breach of 11 Employee Email Accounts
HealthEquity Confirms Breach Involved PII of 4.3 Million Individuals
Debt Collection Agency Confirms 4.25 Million Individuals Affected by February 2024 Cyberattack
New Jersey Oral & Maxillofacial Surgery Notifies 74,400 Patients About PHI Exposure
Michigan Medicine Suffers Another Email Data Breach
Cyberattack on The Medibase Group Affects 35,000 Patients
June 2024 Healthcare Data Breach Report
Memorial Sloan Kettering Cancer Center Employees Tricked by Phishing Email
ITRC: More Than 1 Billion Individuals Affected by H1, 2024 Data Compromises
Publicly Accessible Database Contained 148,000 Files Related to COVID-19 Testing
ALPHV Ransomware Attack on MNGI Digestive Health Affected 766,000 Individuals
RansomHub Claims Responsibility for Rite Aid Ransomware Attack
Cyberattacks Reported by Core Dental Health; Midwest Covenant Home; Family Dynamics Counseling Services
SouthCoast Health; Call 4 Health Notify Patients About Cyberattacks
Patient Data Compromised in Palomar Health Medical Group Cyberattack
Protected Health Information Stolen in HealthEquity SharePoint Breach
Email Breach Affects 22,000 Ambulatory Surgery Center of Westchester Patients
Insider Breaches Reported by Providence Mission Heritage Endocrinology & Samaritan Health Services
PHI Exposed in Cyberattacks on Gaia Software & Pinnacle Orthopaedics & Sports Medicine Specialists
Email Breaches Reported by SkinCure Oncology & the Wisconsin Department of Health Services
Texas Retina Associates Cyberattack Affects 312,000 Patients
Mass General Brigham Terminates Two Employees for Privacy Violations
January 2024 Cyberattack on Lurie Children’s Hospital Affects 792K Individuals
Data Compromised in Cyberattacks on LivaNova and Neurobehavioral Medicine Consultants
Email Accounts Compromised at Aultman Hospital & Benefit Management LLC
May 2024 Healthcare Data Breach Report
PHI Compromised in Cyberattacks on South Texas Oncology and Hematology & Highland Health Systems
Cyberattack on Minnesota Radiology Practice Affects 584,000 Patients
Almost 20,000 Aptihealth Patients Affected by Business Associate Data Breach
Hackers Accessed 53 Los Angeles County Department of Public Health Email Accounts
Email Breaches Reported by Massachusetts and Tennessee Hospitals
Patient Data Exposed in Cyberattacks on PruittHealth & Easterseals Central Illinois
Mobile County Health Department & Special Health Resources of Texas Investigating Cyberattacks
Lynwood Manor Patients Notified About 2021 Data Breach
More Than 70,000 Adventist Health Tulare Patients Affected by Business Associate Breach
Numotion Ransomware Attack Affects More Than 602,000 Individuals
Cyberattacks Reported by Medjet; Angels Neurological Centers; Native American Health Center
Panorama Eyecare Notifies 377K Individuals a Year After Ransomware Attack
PHI Compromised in City of St. Cloud Cyberattack
Email Breach Affects 10,000 University of Chicago Medical Center Patients
RansomHub Ransomware Group Adds American Clinical Solutions to Data Leak Site
Sav-Rx Data Breach Affects 2.8 Million Individuals
Systems Now Online at Lurie Children’s Hospital Following January Cyberattack
Email Accounts Compromised at Children’s Minnesota and the LA County Dept. of Mental Health
Ransomware Attack on Texas Ophthalmology Practice Exposes Data of 80,000 Patients
Patient Data Exposed in Laptop Theft Incidents
Superior Air-Ground Ambulance Service Data Breach Affects 858K Individuals
CentroMed Falls Victim to Another Cyberattack: 400,000 Affected
FTC Finalizes Settlement with Blackbaud and Orders Deletion of Personal Data
Judge Denies Class Certification in Blackbaud Lawsuit
April 2024 Healthcare Data Breach Report
WebTPA Data Breach Affects 2.4 Million Health Insurance Policyholders
Hypertension-Nephrology Associates Warn Patients of Data Theft Incident
Singing River Health System: 895,000 Individuals Affected by August 2023 Ransomware Attack
New Jersey Dermatology Practice Suffers 380,000-Record Data Breach
Email Incidents Affect Patients of Winter Haven Hospital & The Kennedy Collective
Palomar Health Medical Group Investigating Potential Cyberattack
DocGo Says Patient Data Stolen in Recent Cyberattack
OrthoConnecticut Data Breach Affects 118,000 Patients
Email Breaches Reported by MedStar Health, Bluebonnet Trails Community Services, Bluegrass Care Navigators
Presbyterian Healthcare Services Agrees to Settle Email Breach Lawsuit
Continuum Health Alliance Data Breach Affects 377,000 Consensus Medical Group Patients
BioPlus Specialty Pharmacy Services Proposes Settlement to Resolve Data Breach Lawsuit
Federal Judge Tosses CommonSpirit Health Data Breach Lawsuit Due to Lack of Standing
Verizon 2024 DBIR: 70% of Healthcare Data Breaches Caused by Insiders
More Than 585,000 Individuals Affected by Designed Receivable Solutions Data Breach
Patient Data Stolen from Livanova in October 2023 Ransomware Attack
Email Breach at Wisconsin Dental Surgery Center Affects 13,000 Patients
Health Data Analytics Firm Reports 1.1-Million Record Data Breach
Bipartisan Coalition of Attorneys General Call for UHG to Take Decisive Action to Help Providers and Patients
Phishers Gain Access to 23 L.A. County Department of Health Services Email Accounts
BianLian Threat Group Claims Responsibility for Cyberattack on Tennessee Eye Clinic Network
March 2024 Healthcare Data Breach Report
Kisco Senior Living & Island Ambulatory Surgery Center Disclose Summer 2023 Cyberattacks
Email Accounts Compromised at UW Health and Medical Home Network
Cyberattacks Reported by Healthcare Providers in North Carolina, Rhode Island, & California
Cyberattacks Reported by UT Health Science Center; SysInformation Healthcare Services; Jackson Medical Center
Michigan’s Largest FQHC Suffers Ransomware Attack Affecting 184,000 Patients
Ernest Health Sued Over 2024 Ransomware Attack and Data Breach
MedData Settles Class Action Data Breach Lawsuit for $7 Million
Orrick, Herrington & Sutcliffe Agree $8 Million Settlement to Resolve Class Action Data Breach Lawsuit
Email Incidents Reported by Randolph Health & Rutgers Robert Wood Johnson Medical School
Health Plan Data Exposed in Cattaraugus-Allegany Board of Cooperative Education Services Cyberattack
Children’s Healthcare of Atlanta Sued for Disclosing Health Information to Facebook
Medicare Data Exposed in Data Breach at Boston Consulting Firm
Healthcare Data Breaches Up 53% from Q1, 2023
Atlanta Women’s Health Group Sued Over 2023 Ransomware Attack
Seattle Children’s Hospital Website Tracking Technology Lawsuit Dismissed with Prejudice
Group Health Cooperative of South Central Wisconsin Ransomware Attack Affects 533K Patients
Medusa Ransomware Group Leaks Data Stolen from American Renal Associates
Planned Parenthood Los Angeles Settles Class Action Data Breach Lawsuit for $6 Million
Contract Class Certified in CareFirst Data Breach Lawsuit 9 Years After Legal Action was Initiated
Data Breach at New York Medical Billing Service Provider Affects 284K Individuals
One-third of Healthcare Websites Still Use Meta Pixel Tracking Code
Otolaryngology Associates Data Breach Affects Almost 317,000 Patients
Email Accounts Compromised at Aveanna Healthcare and UNC Hospitals & School of Medicine
Malicious Actor Steals Patient Data from Multiple Ernest Health Hospitals
City of Hope Cyberattack Affects 827,000 Individuals
Senators Demand Answers from the United Network for Organ Sharing About 1 Million+ Record Data Breach
Lamoille Health Partners Settles Class Action Data Breach Lawsuit for $540,000
Chattanooga Heart Institute Increases April 2023 Breach Total to 547,000 Individuals
New Jersey Nursing Facility to Pay $100,000 CMP to Resolve HIPAA Right of Access Violation
OCR Settles HIPAA Right of Access Investigation with Phoenix Healthcare for $35,000
MFA Bypassed in Cyberattack on L.A. County Department of Mental Health
California and North Dakota Hospitals Report Cyberattacks
Benefytt, EMSA, Lindsay Municipal Hospital Affected by Cyberattacks
Med-Data Settles Data Breach Lawsuit for $7 Million
Roper St. Francis Healthcare Settles Data Breach Lawsuit for $1.5 Million
Avem Health Partners Agrees $1.45 Million Settlement to Resolve Class Action Data Breach Lawsuit
February 2024 Healthcare Data Breach Report
R1 RCM Data Breach Impacts 16,000 Patients
Valley Oaks Health Reports 50,000-Record Data Breach
Humana Reports Mailing Errors Affecting More than 10,000 Members
Data Breaches Reported by Rebound Orthopedics, CCM Health, BCBST & Orsini Pharmaceutical Services
White House Meets with Healthcare Community to Discuss Change Healthcare Ransomware Attack Mitigations
Patient Data Exposed in Phishing Attack on UC San Diego Health
Cyberattacks on Eastern Radiologists and UNITE HERE Affect 1,680,000 Individuals
177,000 Patients Affected by Breach at Northeast Orthopedics and Sports Medicine
Lurie Children’s Hospital Restores EHR System a Month After Ransomware Attack
Multiple Class Action Lawsuits Filed in Response to Change Healthcare Ransomware Attack
Personal Touch Holding Corp. Settles Class Action Data Breach Lawsuit
235,000 Individuals Affected by Yakima Valley Radiology Data Breach
Cogdell Memorial Hospital Cyberattack Affects 87,000 Patients
Grace Lutheran Communities Falls Victim of ALPHV/Blackcat Ransomware Attack
Egyptian Health Department Cyberattack Affects Up to 100,000 Individuals
Colorado Department of Health Care Policy & Financing: 4,662,668 Individuals Affected by MOVEit Hack
OCR Reports to Congress on HIPAA Compliance and Data Breaches in 2022
Ransomware Attack on Maryland Psychotherapy Provider Results in HIPAA Penalty
Medical Management Resource Group (American Vision Partners) Breach Affects 2.35M Patients
Greater Cincinnati Behavioral Health Services Reports 62,000-Record Data Breach
January 2024 Healthcare Data Breach Report
Connexin Software Proposes Class Action Lawsuit Settlement to Avoid Bankruptcy
Harvard Pilgrim Health Care Ransomware Victim Count Rises to 2.6 Million
February 14, 2024 Healthcare Data Breach Round-Up
Azura Vascular Care Reports Data Breach Affecting 348,000 Patients
462,000 Hawai’i Residents Affected by Data Breach at Navvis & Company
U.S. Fertility Proposes $5.75 Million Settlement to Resolve Class Action Data Breach Lawsuit
Malicious Insider Incident at Montefiore Medical Center Results in $4.75 Million HIPAA Penalty
Des Moines Orthopaedic Surgeons Notifies Patients About February 2023 Data Breach
ITRC: Data Compromises Reach All-time High in 2023
Ann & Robert H. Lurie Children’s Hospital Responding to Cyberattack
LockBit Ransomware Gang Claims Responsibility for Attack on Saint Anthony Hospital
Security Breaches in Healthcare in 2023
Concentra Confirms Almost 4 Million Patients Affected by PJ&A Data Breach
Keenan & Associates Data Breach Affects More Than 1.5 Million Individuals
314,000 Patients Affected by Cyberattack on CompleteCare Health Network
Plaza Radiology Data Breach Affects Up to 569,000 Patients
Columbus Regional Healthcare System Reports 133K Record Data Breach
1.3 Million-Record Database of Netherlands COVID-19 Testing Lab Exposed Online
Transformative Healthcare Sued Over Fallon Ambulances Service Data Breach
Lincare Holdings Proposes $7.25 Million Settlement to Resolve Data Breach Lawsuit
Meridian Behavioral Healthcare Discloses 99,000-Record Data Breach
December 2023 Healthcare Data Breach Report
Singing River Health System Confirms Ransomware Attack Affected 895,000 Patients
Electrostim Medical Services Data Breach Impacts 543,000 Patients
ConsensioHealth Ransomware Attack Affects 61,000 Patients
Novant Health Settles $6.6 Million Pixel Privacy Breach Lawsuit
LockBit Ransomware Group Behind Capital Health Cyberattack
ReproSource Fertility Diagnostics Proposes $1.25 Million Class Action Data Breach Settlement
HMG Healthcare Data Breach Affects 80,000 Individuals
PHI Exposure Reported by Lone Peak Physical Therapy and First Choice Dental
Former Executive Sentenced to Probation for HIPAA Violation
Refuah Health Center Pays $450K HIPAA Fine; Agrees to $1.2 Million Cybersecurity Investment
Orrick, Herrington & Sutcliffe Data Breach Affected 637,000 Individuals
Email Accounts Compromised at The Foleck Center, Mountain Dermatology Specialists
Parathon by JDA eHealth Systems Confirms July 2023 Cyberattack
At Least 141 Hospitals Directly Affected by Ransomware Attacks in 2023
Class Action Lawsuits Filed Against ESO Solutions Over Data Breach
Michigan Attorney General Calls for New Data Breach Notification Law
Anna Jaques Hospital Suffers Christmas Day Cyberattack
ProSmile Holdings Notifies Patients About July 2022 Data Breach
Pan-American Life Insurance Group Reports 105,000-Record Data Breach
Retina Group of Washington Data Breach Affects 456,000 Patients
Fred Hutchinson Cancer Center Lawsuits Mount After Cyberattack and Data Breach
Website Pixel Use Leads to $300K Fine for New York Presbyterian Hospital
Another Corewell Health Business Associate Suffers Million-Record Data Breach
December Healthcare Data Breach Round-Up
Ransomware Groups Attack 3 Healthcare Providers
Heart of Texas Behavioral Health Network Cyberattack Affects 63,776 Individuals
November 2023 Healthcare Data Breach Report
Cardiovascular Consultants Data Breach Affects 484,000 Individuals
MedStar Mobile Health Data Breach Settlement Proposed
Horizon Actuarial Services Proposes $8.73M Settlement to Resolve Class Action Data Breach Lawsuit
Optum Medical Care of New Jersey Settles OCR HIPAA Right of Access Investigation
Delta Dental of California Data Breach: 7 Million Individuals Affected
December 14, 2023, Healthcare Data Breach Round Up
Harrisburg Medical Center Data Breach: PHI of 148,000 Individuals Compromised in 2022
Pan-American Life Insurance Group Data Breach Affects 200,000 Individuals
Healthplex Settles Data Breach Investigation with NY Attorney General for $400,000
Ransomware Attacks Reported by Foursquare Healthcare and Hi-School Pharmacy
9 Prime Healthcare Hospitals Affected by MOVEit Data Breach
23andMe Updates Terms of Service to Prevent Class Action Lawsuits
OCR Imposes First HIPAA Penalty in a Phishing Attack Investigation
CarePointe ENT Settles HIPAA Lawsuit with Indiana Attorney General
East River Medical Imaging Cyberattack Affects 606,000 Patients
6.9 Million 23andMe Users Affected by Data Breach
Almost 440,000 Individuals Affected by Cyberattack on Proliance Surgeons
State of Maine Reports 450,000-Record Data Breach
Hundreds of Thousands of Blue Shield of California Members Affected by MOVEit Hack
Capital Health’s New Jersey Hospitals Affected by Cyberattack
NY Attorney General Warns New Yorkers About Identity Theft Risk from PJ&A Data Breach
Iowa Community HomeCare Sued Over March 2023 Ransomware Attack
Ardent Health Services Ransomware Attack Affects Hospitals in Multiple States
Multiple Healthcare Providers Affected by Thanksgiving Ransomware Attack
Mission Community Hospital Alerts Patients About May 2023 Cyberattack
Daviess Community Hospital Investigating Potential Cyberattack
St. Joseph’s Medical Center Pays $80,000 HIPAA Fine for PHI Disclosure to a Reporter
October 2023 Healthcare Data Breach Report
Healthcare Data Breach Round-Up: November 16, 2023
Sutter Health Confirms 84K Individuals Affected by Cyberattack on Business Associate
Ransomware Gangs Hit Debt Collection Firm and Mental Healthcare Provider
New York’s Largest Health System Affected by PJ&A Data Breach
State of Maine Says 1.3 Million Individuals Affected by MOVEit Hack
November 8, 2023, Healthcare Data Breach Round-Up
BlackCat Ransomware Group Claims Responsibility for Attack on Henry Schein
Okta: Third-Party Vendor Incident and Breach of Customer Support System
Cook County Health Says Information of 1.2 Million Patients Has Potentially Been Compromised
Ransomware Attack on Texas Mental Health Service Provider Impacts 172K Patients
Western Washington Medical Group Reports 350,000-Record Data Breach
Doctors’ Management Services Settles OCR HIPAA Probe for $100,000
Data Breaches Reported by Peerstar, La Red Health Center, Fredericksburg Foot & Ankle Center
12 Million Medical Laboratory Records Exposed Online
PHI of University of Michigan Health Service and School of Dentistry Patients Exposed
Cyberattacks Reported by Brooklyn Premier Orthopedics & Atlas Healthcare
Wright & Filippis Proposes $2.9 Million Class Action Data Breach Settlement
City of Philadelphia Says PHI Potentially Compromised in May 2023 Email Breach
Ambulances Diverted After Westchester Medical Center Health Network Cyberattack
New York AG Settles HIPAA Case with Home Health Company for $350,000
September 2023 Healthcare Data Breach Report
236,000 Individuals Affected by Fairfax Oral and Maxillofacial Surgery Ransomware Attack
Healthcare Clearinghouse Settles Multi-state HIPAA Investigation for $1.4 Million
Cook County Health Patients Affected by Cyberattack at Medical Transcription Firm
McLaren Health Facing Multiple Class Action Lawsuits over Ransomware Attack
Lack of Antivirus Software Behind PhilHealth Ransomware Attack
Marietta Area Health Care Settles Class Action Data Breach Lawsuit for $1.75 Million
176,200 Ortho Alaska Patients Affected by Data Breach
HIPAA Civil Monetary Penalty Adjustments for 2023
Arietis Health Notifies 54 Entities About Exposure of Patient Data
McLaren Health Care Ransomware Attack Affects 2.1 Million Patients
Prospect Medical Holdings Cyberattack Puts Connecticut Hospital Deal at Risk
Bienville Orthopaedic Specialists Sued Over March 2023 Data Breach
Amerita Named in Class Action Lawsuit Over Data Breach at PharMerica
Community First Medical Center Suffers 216K-Record Data Breach
CareSource Facing Multiple Class Action Lawsuits Over MOVEit Data Breach
Oak Valley Hospital District Cyberattack Impacts 284K Patients
IBM and Johnson & Johnson Health Care Systems Sued Over August 2023 Data Breach
CommonSpirit Health Increases Ransomware Attack Cost Estimate to $160 Million
Snatch Ransomware Group Behind Mount Desert Island Hospital Cyberattack
PurFoods Sued Over 1.2 Million-Record Mom’s Meal Data Breach
August 2023 Healthcare Data Breach Report
PHI of Almost 75,000 Individuals Exposed in Email Incident at AmeriBen
Nuance Communications: 13 Healthcare Clients In North Carolina Affected by MOVEit Hack
Judge Grants Preliminary Approval of Salud Family Health’s Proposed Data Breach Settlement
Amerita Confirms 219,700 Patients Affected by PharMerica Cyberattack
60,000 Individuals Affected by Texas Medical Liability Trust Data Breach
Schneck Medical Center Settles HIPAA Lawsuit with Indiana AG
L.A. Care Health Plan Settles Multiple HIPAA Violations for $1.3 Million
Kaiser Pays $49 Million to Settle Improper Disposal Investigation
Lifeline Systems Company Notifies Patients About August 2022 Cyberattack
Cyberattacks Reported by Bienville Orthopaedic Specialists and Just Kids Dental
IBM Notifies Janssen CarePath Patients About Unauthorized Database Access
CentroMed Facing 2 Class Action Lawsuits Over 350,000-Record Data Breach
Employee Health Plan Data Exposed in Forever 21 Data Breach
Orrick, Herrington & Sutcliffe Sued Over Ransomware Attack and Data Breach
PHI Included in Mom’s Meals Data Breach
Medical Records from Prospect Ransomware Attack Appear on Dark Web
Ransomware Attack Key Factor in H1 Operating Losses of $102.6 Million for Point32 Health
Mississippi Health System Investigating Cyberattack
Morris Hospital & Healthcare Centers Notifies Almost 249,000 Patients About April Cyberattack
CentroMed Notifies 350,000 Individuals About PHI Exposure
July 2023 Healthcare Data Breach Report
Cummins Behavioral Health Reports 157K Record Data Breach
Tift Regional Medical Center Patients Notified About August 2022 Cyberattack
Records of 4 Million Coloradans Compromised in MOVEit Transfer Attack
Ottumwa Fire Department Fires Employees for Misconduct and HIPAA Violations
Missouri Department of Social Services Confirms Medicaid Recipients’ Data Compromised in MOVEit Hacks
LockBit Ransomware Group Threatens to Publish Stolen Cancer Patient Data
Ransomware Attack on Prospect Medical Holdings Affects Facilities in Multiple States
1.7 Million Oregon Health Plan Members Affected by MOVEit Hack
Sutter Senior Care and Allegheny County Have Data Compromised in MOVEit Transfer Hacks
411,400 Patients Affected by Cyberattack on the Chattanooga Heart Institute
700,000 Highly Sensitive School Records Exposed Online
Up to 11 Million Health Records Compromised in Cyberattack on Government Contractor
Florida Senator Urges FBI to Prioritize Investigation of Tampa General Hospital Cyberattack
98,000 UT Southwestern Medical Center Patients Affected by MOVEit Cyberattack
24,400 Rite Aid Customers Had Personal Information Compromised in May Cyberattack
IBM: Average Cost of a Healthcare Data Breach Increases to Almost $11 Million
June 2023 Healthcare Data Breach Report
Tampa General Hospital Says Hackers Exfiltrated the Data of 1.2 Million Patients
168,000 Patients Have PHI Exposed in Phishing Attack on Henry Ford Health
Pension Benefit Information Confirms PHI of 1.2 Million Individuals Stolen in MOVEit Transfer Hack
Phoenician Medical Center Cyberattack Affects Up to 162,500 Patients
Naked Patient Photos Published After Ransomware Attack on Plastic Surgery Clinic
First Lawsuit Filed Against HCA Healthcare Over 11 Million-Record Data Breach
Healthcare Providers and Vendors Confirm Recent PHI Disclosure Incidents
11.27 Million HCA Healthcare Patients Affected by Recent Cyberattack
Advanced Medical Management Reports Data Breach Affecting 319,485 Individuals
$6 Million Settlement Proposed to Resolve UKG/Kronos Data Breach Lawsuit
Imagine360 Suffers Breaches of Two File-Sharing Platforms
559,000 Individuals Affected by Murfreesboro Medical Clinic & SurgiCenter Cyberattack
Cyberattacks Reported by Precision Imaging Centers, Marshall & Melhorn, and Atrium Health Wake Forest Baptist
Cyberattack Affects Multiple Residential Care Facilities in Pennsylvania
Activate Healthcare Reports Security Breach Affecting up to 93,761 Patients
HIPAA Business Associate Fined $75,000 for Maintaining ePHI on an Unsecured Server
Great Valley Cardiology Sued over 181,000-Record Data Breach
Good Samaritan Hospital Settles Class Action Data Breach Lawsuit
15-Year Employee Privacy Breach Discovered by Metro Health System
Atlantic General Hospital Increases Ransomware Victim Count to Almost 140,000 Individuals
Intellihartx Facing Class Action Lawsuit Over 490K-Record Data Breach
Kannact & Vincera Institute Fall Victim to Cyberattacks
Atlanta Women’s Health Group Data Breach Impacts 33,800 Patients
Onix Group Sued for Failing to Prevent Ransomware Attack and 320K-Record Data Breach
May 2023 Healthcare Data Breach Report
Great Valley Cardiology Notifies 181,700+ Individuals About PHI Exposure
Washington Hospital Pays $240,000 HIPAA Penalty After Security Guards Access Medical Records
Johns Hopkins Investigating Cyberattack and Data Breach
21,000-Record Data Breach Sparks Trinity Health Class Action Lawsuit
Ransomware Attack Key Factor in Decision to Close Rural Illinois Hospital
320,000 Patients Affected by Ransomware Attack on Onix Group
Intellihartx Victim of Fortra GoAnywhere Hack: 490,000 Individuals Affected
Peachtree Orthopedics Suffers Data Theft and Extortion Incident
Patient Data Likely Lost Due to Cyberattack on Mercy Medical Center – Clinton
Multiple Data Breaches Reported by Iowa Medicaid and South Jersey Behavioral Health Resources
Settlement Agreed to Resolve Comprehensive Health Services Data Breach Lawsuit
$30,000 Penalty for Disclosing PHI Online in Response to Negative Reviews
Clinical Test Data of 2.5 Million Individuals Stolen in Enzo-Biochem Ransomware Attack
28,000 Clarke County Hospital Patients Affected by April Cyberattack
Idaho Hospitals Divert Ambulances and Clinic Temporarily Closes Due to Cyberattack
IL, KY, and TN Healthcare Orgs Recovering from Recent Cyberattacks
Managed Care of North America Hacking Incident Impacts 8.9 Million Individuals
Ransomware Gangs Claim Three Healthcare Victims
Doctor Fined for Privacy Violations Following Abortion on 10-Year-Old Rape Victim
Point32Health: 2.5 Million Harvard Pilgrim Health Care Members Affected by Ransomware Attack
19,000 Amazon PillPack Customer Accounts Compromised
NY AG Fines Medical Management Company $550,000 for Patch Management Failures
April 2023 Healthcare Data Breach Report
Apria Healthcare Breach Affects Up to 1.8 Million Individuals
$200,000 Penalty for Impermissible Sharing of Premom App Users’ Health Data
5 Healthcare Providers Suffer PHI Breaches
Oklahoma Institute of Allergy Asthma and Immunology Halts Operations After Cyberattack
Debt Collection Agency Data Breach Affects 345,523 Individuals
NextGen Healthcare Facing Multiple Class Action Data Breach Lawsuits
Almost 6 Million Individuals Affected by PharMerica Data Breach
EyeMed Vision Care Settles Multistate Data Breach Investigation for $2.5 Million
OCR Fines Arkansas Business Associate $350,000 for Impermissibly Disclosing ePHI
Maxim HealthCare Services Proposes Settlement to Resolve Email Breach Lawsuit
SuperCare Proposes $2.25 Million Settlement to Resolve Data Breach Lawsuit
Data Breaches Reported by University Urology and McPherson Hospital
University of Iowa Hospitals and Clinics Sued for Unlawful Disclosures of PHI to Facebook
NextGen Healthcare Reports Breach Affecting More than 1 Million Patients
NationsBenefits Holdings Confirms 3 Million Record Data Breach
Brightline: At Least 964,300 Individuals Affected by Fortra GoAnywhere Hack
Ransomware Attack Results in 2 Week Shutdown of Operations at TN Medical Clinic
Patient No Longer Seeking Injunction to Force Healthcare Provider to Pay Ransom
Healthcare Data Potentially Compromised in 5 Hacking Incidents
Credential Stuffing Attack Exposed United HealthCare Member Data
Organizations Face Increased Scrutiny of Health Data Breaches
Mailing Error at CMS Vendor Affects 10,000 Medicare Beneficiaries
Breach Notifications Increasing Lack Actionable Information on Breach Cause
277,000 Santa Clara Family Health Plan Members Affected by GoAnywhere Hack
Former Methodist Hospital Employees Plead Guilty to Criminal HIPAA Violations
One Brooklyn Health Notifies Patients About November 2022 Cyberattack
Major Massachusetts Health Insurer Suffers Ransomware Attack
March 2023 Healthcare Data Breach Report
Medtronic Alerts InPen App Users About Disclosures of Personal Data to Google
DC Health Link Data Breach Caused by Human Error
Lawsuit Filed Against Conifer & Tenet Healthcare Over Email Account Breach
Online Alcohol Counseling Service Provider Reports 109K-record Tracking Tool Data Breach
ILS Data Breach Affects Almost 21K Iowan Medicaid Recipients
Unlimited Care and Nonstop Administration and Insurance Services Confirm PHI Exposure
Cyberattacks Affect BrightSpring Health Services, PharMerica, & Sarah D. Culbertson Memorial Hospital
NuLife Med Settles Class Action Data Breach Lawsuit
CommonSpirit Health Issues Update Confirming 164 Facilities Affected by Ransomware Attack
Hacking Incidents Reported by Chippewa County and Frideres Dental
99% of Hospitals Use Website Tracking Code That Transmits Data to Third Parties
Tallahassee Memorial Healthcare: Patient Data Stolen in Cyberattack
Montgomery General Hospital Suffers Ransomware Attack and Data Leak
Hospitals Notify Patients About 2021 Phishing Attack on Adelanto HealthCare Ventures
Website Tracking Technology Breach Affects 54,000 New York Presbyterian Hospital Patients
US Wellness Inc & Blue Shield of California Victims of GoAnywhere Hack
Hacking Incidents Reported by Atlantic General and Lawrence General Hospitals
New York Law Firm Pays $200,000 to State AG to Resolve HIPAA Violations
Associates in Dermatology Patients Affected by Business Associate Ransomware Attack
SundaySky Cyberattack Impacts 37,000 Health Plan Members
FBI: Losses to Cybercrime Increased by 49% in 2022 to $10.3 Billion
February 2023 Healthcare Data Breach Report
Alabama Healthcare Provider Announces 441,000-Record Data Breach
UC San Diego Health Announces Impermissible Disclosure of Patient Data Due to Website Analytics Code
Employee of Beacon Health System Impermissibly Accessed 3,100 Patients Records
Three Healthcare Providers Report Phishing Attacks
Protected Health Information Exposed in 5 Recent Hacking Incidents
Settlement Agreed with Florida Children’s Health Insurance Website Contractor to Resolve False Claims Act Allegations
More Than 4 Million Individuals Affected by Cyberattack on Independent Living Systems
ZOLL Medical Says 1 Million Patients Affected by January Cyberattack and Data Breach
Ransomware Attack Announced by Codman Square Health Center
Pixel Use Results in Impermissible Disclosure of the PHI 3.1 Million Cerebral Platform Users
Community Health Systems to Notify Up to 1 Million Individuals About GoAnywhere Data Breach
PII of Lawmakers and Capitol Hill Staff Stolen in DC Health Link Data Breach
Asante Discovers 9 Years of Unauthorized Medical Record Access by a Physician
Dental Health Management Solutions Notified Patients About Historic Data Breach
BetterHelp Settlement Agreed with FTC to Resolve Health Data Privacy Violations
Evergreen Treatment Services Hacking Incident Affects 21K Patients
Alvaria Inc. Confirms Hive Ransomware Attack
Judge Approves FTC’s $1.5 Million Settlement with GoodRx to Resolve FTC Act and Health Breach Notification Rule Violations
Data Breaches Reported by The Hutchinson Clinic & 90 Degree Benefits
January 2023 Healthcare Data Breach Report
Hacking and Data Theft Incident Reported by CentraState Healthcare System
Lehigh Valley Health Network and MKS Instruments Recovering from Ransomware Attacks
Lack of Funding Hampering OCR’s Ability to Enforce HIPAA
OCR: HIPAA-Regulated Entities Need to Continue to Improve HIPAA Security Rule Compliance
State AGs Fine DNA Testing Lab $400,000 for Data Breach
ACLA Expands Class Action Lawsuit Against RIPTA and UnitedHealthcare New England
CommonSpirit Health Reports $150 Million Loss Due to Ransomware Attack
Mscripts Cloud Storage Misconfiguration Exposed PHI for 6 Years
Rise Interactive Media & Analytics, DotHouse Health, and Reventics Hacked
PHI Compromised in 4 Recent Ransomware and Malware Attacks
Up to 1 Million Community Health Systems’ Patients Affected by GoAnywhere MFT Hack
Few Victims of Healthcare Data Breaches Take Advantage of Free Credit Monitoring Services
Hackers Compromised Sharp HealthCare Web Server and Stole Patient Data
Regal Medical Group Ransomware Attack Affects 3.3 Million Patients
Highmark Health Phishing Attack Affects 275,000 Patients
Tallahassee Memorial HealthCare Diverts Ambulances Due to Cyberattack
Banner Health Settles Alleged HIPAA Security Rule Violations for $1.25 Million
Organizations Increasingly Opaque About Cause of Data Breaches
Ransomware Attacks, Hacks, and Pixel-Related Data Breaches Reported
Up to 184,000 Clients of Lutheran Social Services of Illinois Impacted by Ransomware Attack
Logan Health Proposes $4.3 Million Settlement to Resolve Class Action Data Breach Lawsuit
2022 Healthcare Data Breach Report
Second Class Action Lawsuit Filed Against CommonSpirit Health Over Ransomware Attack
PHI of Thousands of Patients Compromised in 4 Healthcare Data Breaches
Phishing Attack on Washington Therapist Exposes Patients’ PHI
Tracking Code Privacy Incident Affects 29,000 Insulet Corporation Customers
Mayo Clinic Settles Lawsuit Alleging Former Employee Viewed Nude Patient Images
Home Care Providers of Texas Announces 125K-Record Data Breach
December 2022 Healthcare Data Breach Report
Round Up of Recent Hacking Incidents and Email Account Breaches
Consolidated Class Action Lawsuit Filed Against Shields Health Care Group Over 2 Million-Record Data Breach
Global Healthcare Cyberattacks Increased by 74% in 2022
Hive RaaS Gang Leaks Stolen Consulate Health Care Data
Captify Health Suffers 3-Year Breach of its Your Patient Advisor Website
Email Account Breaches Reported by Legacy Hospice, Live Oak Surgery Center, University of Miami Health
Ransomware Attacks Announced by Maternal & Family Health Services and Retreat Behavioral Health
Washington Attorney General Sues Plastic Surgery Provider for HIPAA Violations and Falsely Inflating Online Ratings
CommonSpirit Health Facing Class Action Lawsuit over Ransomware Attack and Data Breach
Cyberattacks Reported by Heartland Alliance and CentraState Medical Center
Ransomware Attack at Fitzgibbon Hospital Affects 112,000 Patients
Diagnostic Lab Settles Medical Record Access Case for $16,500
Fertility Centers of Illinois Proposes $450,000 Settlement to Resolve Data Breach Lawsuit
Scripps Health Proposes $3.5M Settlement to Resolve Class Action Ransomware Lawsuit
Lake Charles Memorial Health System Cyberattack Affects Almost 270,000 Patients
Class Action Data Breach Lawsuit Settled by Morley Companies
Privacy Breaches Reported by Blue Shield of California and VA Medical Center
Lessons from Biggest HIPAA Breaches of 2022
November 2022 Healthcare Data Breach Report
Six Data Breaches Reported by Healthcare Providers and Business Associates
Avem Health Partners and Emory Healthcare Notify Patients About Data Breaches
Florida Primary Care Provider Fined $20,000 for HIPAA Right of Access Violation
Up to 254,000 Medicare Beneficiaries Affected by Ransomware Attack on CMS Subcontractor
OCR Fines California Dental Practice for PHI Disclosures on Yelp
Data Breaches Reported by CareFirst Administrators, Legacy Health & Blakehurst
Telehealth Websites are Transmitting Sensitive Health Information to Big Tech Firms
Sturdy Memorial Hospital & North Shore Pain Management Settle Data Breach Lawsuits
Receivables Performance Management Data Breach Affects More Than 3.7 Million Individuals
More than 623,000 Patients Affected by CommonSpirit Health Ransomware Attack
New York Ambulance Service Facing Multiple Class Action Lawsuits over Ransomware Attack
COVID-19 Vaccination Statuses of 500,000 VA Employees have been Impermissibly Disclosed
CommonSpirit Health Says Patient Information Accessed in October 2022 Cyberattack
OCR Confirms Use of Website and Other Tracking Technologies Without a BAA is a HIPAA Violation
Hacking and IT Incidents Affect 563,000 Patients and Health Plan Members
One Brooklyn Health Dealing with Ongoing Cyber Incident
119 Pediatric Practices Affected by Breach at EHR Vendor
Unsecured Database Exposed 16,000+ Children’s Records
PHI Potentially Compromised in Ransomware Attacks at MD, TX, and FL Healthcare Providers
Ransomware Attack on Puerto Rico Hospital Affects Almost 1.2 Million Patients
877,500 Individuals Affected by Ransomware Attack on Prosthetics & Orthotics Provider
October 2022 Healthcare Data Breach Report
Forefront Dermatology Proposes $3.75 Million Settlement to Resolve Ransomware Lawsuit
Patient Data Compromised in 5 Hacking Incidents, Ransomware Attacks, and Break-ins
6 HIPAA Regulated Entities Report Phishing Attacks and Unauthorized Email Account Access
Former Pennsylvania Medical Assistant Charged with Stealing Patient Information for Personal Gain
Update: CorrectCare Integrated Health Data Breach Affects Hundreds of Thousands of Inmates
Five Former Tennessee Hospital Employees Charged with Criminal HIPAA Violations
New York Provider of Administrative Anesthesiology Services Facing Multiple Class Action Data Breach Lawsuits
CommonSpirit Health Says EHRs Mostly Back Online Following Ransomware Attack
Lurie Children’s Hospital Proposes Settlement to End Insider Breach Lawsuit
U.S. Vision Subsidiary and Florida Addiction Treatment Center Announce 2021 Data Breaches
St. Luke’s Health Reports Third Party Data Breach
Lawsuits Filed Against OakBend Medical Center and Keystone Health Over Data Breaches
Advocate Aurora Health and WakeMed Sued Over Meta Pixel Privacy Breaches
Georgia Home Health Company Settles Phishing Investigation and Pays $425,000 Penalty
Anesthesia, Eye Care, and Telehealth Providers Announce Third-Party Data Breaches
OCR Explains HITECH Recognized Security Practices and How to Demonstrate They are in Place
PHI of Almost 34,000 Patients Potentially Compromised in Michigan Medicine Phishing Attack
California Appellate Court Confirms Trial Court’s Decision to Toss Class Action Insider Breach Lawsuit
RIPTA, UnitedHealthcare of New England Sued Over 2021 Data Breach
Hacking, Database Misconfigurations, and Improper Disposal Incidents Reported
Main Line Women’s Healthcare Employee Terminated for Photographing Patient Records
WakeMed Announces Meta Pixel-Related Breach Affecting 495,000 Patients
September 2022 Healthcare Data Breach Report
Advocate Aurora Health: Website Tracking Code May Have Impermissibly Disclosed PHI of 3 Million Patients
New York State Fines EyeMed $4.5 Million for Phishing Attack and 2.1M-Record Data Breach
235,000 Keystone Health Patients Affected by August 2022 Cyberattack
VisionWeb Data Breach Affects Up to 35,900 Individuals
Radiology Associates of Albuquerque Notifies Patients About Security Breach That Started in December 2020
70,000 Valle del Sol Community Health Patients Affected by Cyberattack
Data Breach Impacts Two Dozen Anesthesia Providers
CommonSpirit Health Confirms System Outages Caused by Ransomware Attack
United Health Centers of the San Joaquin Valley Proposes Settlement to Resolve Data Breach Lawsuit
34K-Record Data Breach Reported by Aesthetic Dermatology Associates
Email Breaches Reported by Cardiac Imaging Associates & Centerstone of Tennessee
Doctor Pleads Guilty to Criminal Violations of HIPAA for Providing PHI to Pharma Sales Rep
Wisconsin Department of Health Services Reports Breach of 12,000 Records
Email Breach at CSI Laboratories Impacts Almost 245,000 Patients
PHI Exposed in Data Incidents at Anthem, WellMed Medical Management and CareOregon
Netwalker Ransomware Affiliate Sentenced to 20 Years in Jail
Mon Health Faces Class Action Lawsuit Over 493K Record Data Breach
LifeBridge Health Agrees to $9.5 Million Settlement to Resolve 2016 Data Breach Claims
CommonSpirit Health Experiencing Widespread Outage Due to Cyberattack
Data Breaches Reported by Neurology and Fertility Centers in Nevada and California
More Than 233,000 Patients Affected by Cyberattack on FMC Services
Magellan Health Settles Class Action Data Breach Lawsuit for $1.43 Million
Physician’s Business Office Reports Data Breach Affecting 196,573 Individuals
Humana Members Impacted by Choice Health Data Breach
Cyberattacks Reported by Wolfe Clinic, Reiter Affiliated Companies, & SERV Behavioral Health System
Lubbock Heart & Surgical Hospital and NorthStar Healthcare Consulting Disclose Cyberattacks
Data Breaches Reported by Physicians’ Spine and Rehabilitation Specialists of Georgia and One Medical Inc.
August 2022 Healthcare Data Breach Report
New York Ambulance Service Discloses Ransomware Attack and 318K-Record Data Breach
Ambry Genetics Settles Class Action Data Breach Lawsuit for $12.25 Million
Ransomware Attack on Medical Associates of the Lehigh Valley Affects 75K Patients
Oakbend Medical Center Suffers Ransomware Attack
Michigan Law Firm and Medical Imaging Companies Confirm Breaches of Patient Information
PHI Compromised in Incidents at CorrectHealth, UF Health Shands, Peter Brasseler, & Gifted Healthcare
OneTouchPoint Ransomware Victim Count Increases to 2.65 Million
Cyberattack and Data Destruction Reported by First Street Family Health
EmergeOrtho & General Health System Victims of Ransomware Attacks
PHI Exposed in Cyberattacks on Methodist McKinney Hospital and Columbia River Mental Health Services
Data Breaches Reported by the New Jersey Department of Health, Onyx Technologies & San Diego American Indian Health Center
California Department of Corrections and Rehabilitation Hack Exposed Sensitive Data
July 2022 Healthcare Data Breach Report
Cyberattacks Reported by Independent Case Management & Conifer Health Solutions
Florida Orthopaedic Institute Proposes $4 Million Settlement to Resolve Class Action Data Breach Lawsuit
Ransomware Attack on New York Billing Company Affects 942K Individuals
United Health Centers of San Joaquin Valley Notifies Patients About August 2021 Ransomware Attack
Novant Health Notifies 1.36 Million Patients About Unauthorized Disclosure of PHI via Meta Pixel Code on Patient Portal
Data Breach Affects 120,000 Priority Health Plan Members
1H 2022 Healthcare Data Breach Report
Zenith American Solutions Reports Mailing Error that Exposed SSNs of 37,000 Individuals
Salinas Valley Memorial Healthcare Settles Email Data Breach Lawsuit for $340K
Updates on Cyberattacks on Goodman Campbell Brain and Spine and Behavioral Health Group
First Choice Community Healthcare Data Breach Affects 101,000 Patients
Dental Care Alliance Settles Class Action Data Breach Lawsuit for $3 Million
Healthback Holdings Email Security Breach Affects 21,000 Individuals
Fast Track Urgent Care Confirms 258,411 Individuals Affected by 2021 PracticeMax Ransomware Attack
326,278 Aetna ACE Members Affected by Ransomware Attack at Mailing Vendor
Data Breaches Reported by Allegheny Health Network, St. Luke’s Health System, & Goldsboro Podiatry
Meta Facing Further Class Action Lawsuit Over Use of Meta Pixel Code on Hospital Websites
96 Senior Living and Healthcare Facilities Affected by Avamere Data Breach
IBM: Average Cost of a Healthcare Data Breach Reaches Record High of $10.1 Million
Recent Hacks, Malware, and Device Theft Incidents Affect 208,000 Individuals
Tenet Healthcare Cyberattack Had a $100 Million Unfavorable Impact in Q2, 2022
Benson Health Notifies 28,913 Patients About May 2021 Data Breach
Department of Justice Announces Seizure of $500,000 in Ransom Payments Made by U.S. Healthcare Providers
The Methodist Hospitals, Inc. Settles Class Action Data Breach Lawsuit for $425,000
June 2022 Healthcare Data Breach Report
BJC Healthcare Settles Data Breach Lawsuit Stemming from 2020 Phishing Attack
Oklahoma State University Settles HIPAA Case with OCR for $875,000
Carolina Behavioral Health Alliance Reports Breach of the PHI of 130,000 Health Plan Members
Tenet Healthcare Sued Over Data Breach; San Francisco Settles Data Breach Lawsuit
Associated Eye Care Partners Issues Notifications About December 2020 Data Breach
Patient Information Compromised at Phoenixville Hospital, Family Practice Center, and Southwest Health Center
Health Aid of Ohio Settles Class Action Data Breach Lawsuit
Security Breaches Reported by Benefit Plan Administrators and The People Concern
Patient Privacy Violated in Incidents at VCU Health and Cheyenne Regional Medical Center
Data Breaches Reported by University Pediatric Dentistry, OrthoNebraska, Michigan Avenue Immediate Care
657 Healthcare Providers Affected by Ransomware Attack on Professional Finance Company
Fitzgibbon Hospital, Diskriter, Christiana Spine Center Suffer Ransomware Attacks
Multiple Email Accounts Compromised at Covenant Care California and Bergen’s Promise
GAO: HHS Should Establish Mechanism for Obtaining Feedback on HIPAA Data Breach Reporting Process
FBI Thwarted ‘Despicable’ Cyberattack on Boston Children’s Hospital
Texas Tech University Health Sciences Center and Baptist Health Report Data Breaches of Over 1.2 Million Records
5 Security Breaches Reported in Which PHI was Potentially Compromised
University of Pittsburgh Medical Center Settles Data Breach Lawsuit for $450,000
5 HIPAA-Regulated Entities Announce Hacking Incidents that Exposed PHI
May 2022 Healthcare Data Breach Report
Central Florida Inpatient Medicine Email Security Incident Reported
Data Theft Incidents Reported at MCG Health, Choice Health, & Goodman Campbell Brain and Spine
Kaiser Permanente Reports Email System Breach and Exposure of 70,000 Individuals’ PHI
700,000 Patients Affected by Yuma Regional Medical Center Ransomware Attack
Data Breaches Reported by Aesto Health and Motion Picture Industry Health Plan
Email Account Breaches Reported by Allaire Healthcare Group and Platinum Hospitalists
2 Million Patients Affected by Shields Health Care Group Cyberattack
Data Breaches Reported by Alameda Health System, Aon, and Capsule Pharmacy
PHI Potentially Compromised in Security Incidents at Allwell Behavioral Health Services and WellDyneRx
Email Accounts Compromised at BJC HealthCare & Cooper University Health Care
New York Judge Dismisses Class Action PACS Data Breach Lawsuit for Lack of Standing
Former IT Consultant Charged with Intentionally Causing Damage to Healthcare Company’s Server
Email Incidents Reported by Washington University School of Medicine & Oswego County Opportunities
SAC Health Theft Incident and Multiple Ransomware Attacks Reported
Eye Care Leaders Hack Impacts Millions of Patients
Over 850,000 Individuals Affected by Partnership HealthPlan of California Cyberattack
April 2022 Healthcare Data Breach Report
Solara Medical Supplies $9.76 Million Data Breach Settlement Gets Preliminary Approval
Parker-Hannifin Cyberattack Affects Almost 120,000 Health Plan Members
AvosLocker Claims Credit for Christus Health Ransomware Attack
Cyberattacks Reported by Schneck Medical Center, NuLife Med, & FPS Medical Center
Refuah Health Center Alerts 260K Patients About May 2021 Cyberattack
Cyberattacks Reported by McKenzie Health System & Omnicell
Hacking Incidents Reported by Illinois Gastroenterology Group & the Mental Health Center of Greater Manchester
Email Security Incidents Reported by HealthPlex and Optima Dermatology
Salusive Health Closes Business Following Cyberattack
6 HIPAA-Regulated Entities Report Email Account Breaches and the Exposure of PHI
Up to 2,592,494 individuals Affected by Smile Brands Ransomware Attack
American Dental Association and Tenet Healthcare Recovering from Cyberattacks
Solara Medical Supplies Proposes $5 Million Settlement to Resolve Class Action Data Breach Lawsuit
PHI Exposed in Security Incidents at Georgia Pines CSB & Ballad Health
Adaptive Health Integrations Data Breach Affects More Than 510,000 Individuals
March 2022 Healthcare Data Breach Report
On-the-spot Email Interventions Reduce Repeat Medical Record Snooping Incidents by 95%
Deaconess Health System and Blue Earth County Notify Patients About Insider Data Breaches
Email Account Breaches Reported by Newman Regional Health and Contra Costa County
Urgent Team Holdings Reports Breach of the PHI of 166,600 Individuals
SuperCare Health Sued Over 318,000-Record Data Breach
Resources for Human Development, WellStar Health & Central Vermont Eye Care Announce Data Breaches
Increase in Class Action Lawsuits Following Healthcare Data Incidents
Data Breaches Reported by WV and CO Healthcare Providers and NJ Medical Billing Administrator
Cyberattack on SuperCare Health Affects 318,000 Patients
OCR Seeks Comment on Recognized Security Practices and the Sharing of HIPAA Settlements
Ransomware Gangs Claim Health Plan and Healthcare Provider Attacked
Spokane Regional Health District Announces Second Phishing Attack in 3 Months
CSI Laboratories and Christie Clinic Report Data Breaches; Scripps Health Sends Additional Notification Letters
Law Enforcement Health Benefits and Oklahoma City Indian Clinic Suffer Ransomware Attacks
OCR Announces 4 Financial Penalties to Resolve HIPAA Violations
Email Incidents Reported by Ultimate Care, CareOregon Advantage, and University Medical Center Southern Nevada
Horizon Actuarial Services Reports Data Theft and Extortion Incident
Patient Data Stolen in July 2021 Cyberattack on Chelan Douglas Health District
Data Breaches Reported by New Jersey Brain and Spine, Highmark Inc. and Dialyze Direct
February 2022 Healthcare Data Breach Report
JDC Healthcare Management Data Breach Affects More than 1 Million Texans
Central Indiana Orthopedics & Duncan Regional Hospital Report 80K-Record Data Breaches
Capital Region Medical Center and Labette Health Announce Potential PHI Breaches
South Denver Cardiology Associates Confirms Data Breach Affecting 287,000 Patients
Logan Health Facing Class Action Lawsuit Over Data Breach
Breach Barometer Report Shows Over 50 Million Healthcare Records Were Breached in 2021
6 Healthcare Providers and Business Associates Report Hacks and Ransomware Attacks
PHI of Over 500,000 Individuals Potentially Compromised in 4 Security Incidents
3 Email Security Incidents Reported Affecting More Than 111,000 Patients
Healthcare Organizations Report Email Compromises, Hacking Incidents and Other ePHI Exposures
Monongalia Health System Suffers Another Major Data Breach
OCR Director Encourages HIPAA-Regulated Entities to Strengthen Their Cybersecurity Posture
PHI of 10,000 Individuals Exposed Due to Houston Health Department Portal Glitch
Four Healthcare Providers Hit with Ransomware Attacks
Notifications Recently Sent to Alert Individuals About September 2020 and February 2021 Cyberattacks
Logan Health Medical Center Cyberattack Affects More Than 213,000 Patients
January 2022 Healthcare Data Breach Report
Sea Mar Community Health Centers Facing Class Action Lawsuit over 688,000-Record Data Breach
Deadline for Reporting 2021 PHI Breaches Affecting Fewer Than 500 Individuals
PHI of 521,000 Individuals Compromised in Security Breach at Morley Companies
15,000 Patients Affected by Philadelphia FIGHT Community Health Centers Cyberattack
Patient Data Compromised in Ransomware Attacks on Family Christian Health Center & Jackson County Hospital
CaptureRx Proposes $4.75 Million Settlement to End Data Breach Litigation
Hackers Gained Access to Files Containing the PHI of 115,670 South Shore Hospital Patients
Hacking Incidents Reported by AccelHealth and Pace Center for Girls
February 11, 2022: Deadline for Providing GAO With Feedback on HHS Data Breach Reporting Requirements
Data Breaches Reported by Suncoast Skin Solutions, Raveco Medical, South City Hospital, and the Colorado DHS
Taylor Regional Hospital Still Recovering from January Cyberattack
PHI of 138K Individuals Exposed in 3 Email Security Incidents
RI Attorney General Subpoenas RIPTA and UnitedHealthcare Over 22,000-Record Data Breach
Data Breaches Reported by Jefferson Health and Allegheny Health Network Home Infusion
Former South Georgia Medical Center Employee Arrested Over 41K-Record Data Breach
Concerning Healthcare Data Breach Reporting Trend
Cyberattacks and Data Theft Incidents Reported by Medical Healthcare Solutions and Advocates Inc.
Data Breaches Reported by Houston Area Community Services, County of Kings, and NYU Langone Health
Florida County Drug Screening Lab Exposed Sensitive Data Online for 4 Years
Memorial Health System Faces Class Action Lawsuit Over August 2021 Cyberattack
Settlement Reached in Excellus Class Action Data Breach Lawsuit
New York Fines EyeMed $600,000 for 2.1 Million-Record Data Breach
Email Breaches Reported by University of Arkansas for Medical Sciences and Sacramento County
Memorial Health System Confirms 216K Patients Affected by August 2021 Ransomware Attack
4 Healthcare Providers and Health Plans Report Phishing-Related PHI Breaches
Entira Family Clinics and Caring Communities Send Notification Letters About Netgain’s 2020 Ransomware Attack
Jefferson Surgical Clinic Announces June 2021 Data Breach Impacting 174,769 Patients
December 2021 Healthcare Data Breach Report
Accellion Proposes $8.1 Million Settlement to Resolve Class Action FTA Data Breach Lawsuit
Online Pharmacy Notifies 105,000 Patients About Cyberattack and Potential Theft of PHI
EHR Vendor Facing Class Action Lawsuit Over 320,000-Record Data Breach
Disruption to Services at Maryland Department of Health Continues One Month After Ransomware Attack
PHI of Anthem Members and Advocate Aurora Health Patients Potentially Compromised
Over 30 Healthcare Providers Affected by CIOX Health Data Breach
Millennium Eye Care Says Ransomware Gang Stole a Large Amount of Patient Data
BioPlus Specialty Pharmacy Services Faces Class Action Lawsuit Over Data Breach
Almost 80,000 Patients Affected by Cyberattack on Fertility Centers of Illinois
Rhode Island Public Transit Authority Data Breach to be Investigated by State Attorney General
Broward Health Notifies Over 1.3 Million Individuals About October 2021 Data Breach
2020-2021 HIPAA Violation Cases and Penalties
Saltzer Health Alerts Patients About PHI Exposure in Email Account Breach
Avalon Healthcare Settles HIPAA Case with Oregon and Utah State AGs and Pays $200,000 Penalty
Largest Healthcare Data Breaches of 2021
Over 212,500 Patients Affected by 2020 Email Account Breach at Florida Digestive Health Specialists
Patient Data Stolen in Cyberattack on the Medical Review Institute of America
Accountancy Firm Facing Class Action Lawsuit Alleging Negligence and Breach Notification Failures
Hospital, Pharmacy, and Dental Practice Report Hacking Incidents Impact More Than 355,000 Patients
PHI of Almost 400,000 Monongalia Health Patients Potentially Compromised in BEC and Phishing Attack
Hacking Incidents Reported by Southern Orthopaedic Associates and Eduro Healthcare
November 2021 Healthcare Data Breach Report
Payroll of Healthcare Providers Threatened by Ransomware Attack on Kronos
Over 535,000 Individuals Affected by Ransomware Attack on Texas ENT Specialists
Almost 50,000 Health Plan Members Affected by Ransomware Attack on Broward County Public Schools
Chicago Accountancy Firm Discovers Data was Stolen in December 2020 Ransomware Attack
PHI of 750,000 Patients of Oregon Anesthesiology Recovered Following Ransomware Attack
Ransomware Attack Affects 81,000 Howard University College of Dentistry Patients
Data Breaches Reported by UH College of Optometry and Valley Mountain Regional Center
Ransomware Attacks Reported by TriValley Primary Care and Medsurant Health
Sound Generations Reports Two Ransomware Attacks Affecting Over 100,000 Individuals
PHI of 40,000 Individuals Exposed in Email Account Breaches
400,000 Patients Potentially Affected by Planned Parenthood Ransomware Attack
Ohio DNA Testing Firm Notifies 2.1 Million People About Breach of Personal Information
HHS’ Office for Civil Rights Imposes Further 5 Financial Penalties for HIPAA Right of Access Violations
One Community Health Patients Notified About April 2021 Cyberattack and Data Theft
Sarasota MRI, Consociate Health, & Upstate Homecare Notify Patients About Data Breaches
Former Huntington Hospital Employee Charged with Criminal HIPAA Violation
Hacking Incidents Reported by Retinal Consultants Medical Group, Three Rivers Regional Commission, & ACE Surgical Supply
PHI of 57,000 Patients Potentially Compromised in TriValley Primary Care Cyberattack
Data Breaches Reported by True Health New Mexico & Educators Mutual Insurance Association
October 2021 Healthcare Data Breach Report
University Hospital Newark Notifies More Than 19,000 Individuals About Historic Insider Theft
PHI of 127,000 NorthCare Patients Potentially Compromised in Ransomware Attack
HHS Increases HIPAA Penalties for 2021 per the Inflation Adjustment Act
Data Breaches Reported by Lakeshore Bone & Joint Institute and Putnam County Memorial Hospital
PHI of 1.27 Million Patients Compromised in Two Healthcare Data Breaches
Southern Ohio Medical Center Diverts Ambulances Due to Cyberattack
New Jersey Fines Two Printing Companies $130,000 for HIPAA and CFA Violations
DOJ Indicts 2 REvil Ransomware Gang Members: State Department Now Offering $10 Million Reward for Information
Malware Infection Discovered by JEV Plastic Surgery & Medical Aesthetics
Maxim Healthcare Group Notifies 65,000 Individuals About October 2020 Email Breach
Ransomware Roundup: 5 Healthcare Organizations Fall Victim to Ransomware Attacks
PHI Potentially Compromised in Hacking Incidents at Four Healthcare Providers
PHI of 320,000 Patients Potentially Compromised in EHR Vendor Hacking Incident
Nationwide Laboratory Services Ransomware Attack Affects 33,000 Patients
Cyberattacks Reported by Las Vegas Cancer Center and Seneca Family of Agencies
PHI of 45,262 Desert Pain Institute Patients Potentially Compromised in Cyberattack
Data Breaches Reported by Family of Woodstock and Viverant
More than 650K Patients of Community Medical Centers Notified About Hacking Incident
Security Breaches Reported by Lavaca Medical Center and Throckmorten County Memorial Hospital
PHI of Employees Potentially Compromised in Tech Etch Ransomware Attack
PHI of 24,891 Specialty Surgery Center of Central New York Patients Potentially Compromised
UPMC Hacker Who Stole PII of 65,000 Employees Gets Maximum 7-Year Sentence
September 2021 Healthcare Data Breach Report
Data Breaches Reported by PracticeMax and UMass Memorial Health
Phishing Attack on Business Associate Affects Tens of Thousands of Professional Dental Alliance Patients
American Osteopathic Association Notifies 27,500 Individuals About June 2020 Data Theft Incident
350,000 Patients of ReproSource Fertility Diagnostics Affected by Ransomware Attack
Premier Patient Health Care Alerts Patients About Insider Data Breach
Elekta Faces Class Action Lawsuit over Ransomware Attack and Data Breach
Ransomware Deployed 2 Minutes After Hackers Gained Access to Johnson Memorial Health’s Network
Eskenazi Health Confirms Patient Data Was Stolen in August Ransomware Attack
Almost 54,000 Patients Affected by OSF HealthCare Ransomware Attack
Cyberattacks Reported by Schneck Medical Center and Epilepsy Foundation of Texas
Ransomware Attack on Florida Behavioral Health Service Provider Affects 19,000 Individuals
PHI of Navistar Health Plan Members Compromised in May 2021 Cyberattack
Data Breaches Reported by Horizon House and Samaritan Center of Puget Sound
PHI of 29,000 Patients Potentially Compromised in McAllen Surgical Specialty Center Ransomware Attack
Class Action Lawsuits Filed Against San Diego Health Over Phishing Attack
Fifth of Healthcare Providers Report Increase in Patient Mortality After a Ransomware Attack
Data Breaches Reported by Vista Radiology, Indian Creek Foundation & Mankato Clinic
Vice Society Ransomware Gang Attacks United Health Centers of San Joaquin Valley
Email Breaches Reported by Eastern Los Angeles Regional Center & Mercy Grace Private Practice
K and B Surgical Center & Healthpointe Medical Group Notify Patients About Hacking Incidents
Ransomware Attacks Reported by Family Medical Center of Michigan & Buddhist Tzu Chi Medical Foundation
U.S. Vision Subsidiary Reports Hacking Incident Affecting 180,000 Individuals
August 2021 Healthcare Data Breach Report
Ransomware Gangs Attack Missouri Delta Medical Center and Barlow Respiratory Hospital
Alaska DHSS Says May 2021 Cyberattack Impacts All Alaskans
Hacked Simon Eye Management Email Accounts Contained PHI of More than 144,000 Patients
Stolen Laptop Contained the PHI of Dignity Health Patients
1,738 Patients of Coalinga State Hospitals Notified About Improper Disclosure of PHI
36,500 Patients of Austin Cancer Centers Notified About PHI Exposure
Walgreens Covid-19 Test Registration System Has Been Exposing Patient Data
Desert Wells Family Medicine Ransomware Attack Causes Permanent Loss of EHR Data
HealthReach Community Health Centers Reports Improper Disposal Incident Affecting Almost 117,000 Patients
Jackson Health Investigating Nurse Social Media HIPAA Violation
OCR Announces 20th Financial Penalty Under HIPAA Right of Access Enforcement Initiative
Philadelphia Mental Health Service Provider Breach Affects 29,000 Patients
TX: Denton County Discovers COVID-19 Application Leaked Data of 346,000 Individuals
Data Breaches at Business Associates Affect LifeLong Medical Care & Beaumont Health Patients
CareATC Email Accounts Accessed by Unauthorized Individuals
Outpatient Facilities Targeted by Cyber Actors More Frequently Than Hospitals
655,000 DuPage Medical Group Patients Notified About PHI Breach
San Andreas Regional Center Victim of Ransomware Attack
48,000 Individuals Affected by Ransomware Attack on CarePointe ENT
PHI of 9,800 Patients of Atlanta Allergy & Asthma Exposed in Cyberattack
Metro Infectious Disease Consultants Reports 172,000-Record Data Breach
South Florida Community Care Plan Notifies Patients About Insider Email Breach
Revere Health Phishing Attack Impacts 12,000 Patients
California DOJ Must Be Notified About Breaches of the Health Data of 500 or More California Residents
July 2021 Healthcare Data Breach Report
HVAC Vendor Allegedly Hacked: Access Gained to Hospital Systems
Contact Tracing Survey Data of 750,000 Hoosiers Exposed Online
1.4 Million Individuals Affected by St. Joseph’s/Candler Ransomware Attack
Scripps Health Ransomware Attack Cost Increases to Almost $113 Million
Cyberattack Forces Memorial Health System to Divert Patients to Alternate Hospitals
PHI of 47,000 Individuals Potentially Compromised in Electromed Inc. Data Breach
UNM Health Data Breach Affects More than 637,000 Patients
PHI of Employees Compromised in Cyberattack on Waste Management Firm
PHI Exposed in Phishing Attack on Children’s Hospital of The King’s Daughters
University Medical Center of Southern Nevada Confirms PHI Compromised in June Cyberattack
Email Account Breaches Reported by A2Z Diagnostics and Vision for Hope
Long Island Jewish Forest Hills Hospital Notifies Patients About Insider Breach
Dynamic Health Care Malware Attack Affects Multiple Nursing and Rehabilitation Facilities in Illinois
NCH Corporation and Others Announce Data Breaches
Gastroenterology Consultants Notifies Patients About January 2021 Ransomware Attack
UF Health Says PHI Potentially Compromised in May 2021 Cyberattack
73% of Businesses Suffered a Data Breach Linked to a Phishing Attack in the Past 12 Months
Healthcare Industry has Highest Number of Reported Data Breaches in 2021
Phishing Attacks Reported by Academic HealthPlans and Wayne County Hospital
Guidehouse Reports Breach Affecting Multiple Healthcare Provider Clients
Email Account Breaches Reported by Prestera Center and Wisconsin Institute of Urology
Star Refining & Express MRI Report Phishing Attacks
Harris County, TX: PHI of 26,000 Individuals Exposed Online
More Than 447K Patients Affected by Phishing Attack on Orlando Family Physicians
PHI Potentially Compromised in Ransomware Attacks on Eye Center and Law Firm
Accidental Disclosures of PHI at LA Fire Department and Standard Modern Company
The Average Cost of a Healthcare Data Breach is Now $9.42 Million
McLaren Health Care and Greenwood Leflore Hospital Impacted by Elekta Ransomware Attack
Phishing Attacks Reported by UC San Diego Health and UnitedHealthcare
Florida Heart Associates Operating at 50% Capacity 2 Months After Ransomware Attack
Overlake Hospital Medical Center Proposes Settlement to Resolve Data Breach Case
Paperwork Containing PHI of Oklahoma Heart Hospital Patients Accidentally Donated to Charity
UNC Health and Nebraska DHHS Report Phishing Attacks
Former Scripps Health Worker Charged Over HIPAA Violation in COVID-19 Unemployment Benefit Fraud Case
June 2021 Healthcare Data Breach Report
Email Account Breaches Reported by MultiPlan and Hawaii Independent Physicians Association
Advocate Aurora Health, Jefferson Health, and Intermountain Healthcare Affected by Elekta Ransomware Attack
Sierra Nevada Primary Care Physicians Alerts Patients About Theft of PHI
Lake County Health Department Notifies 25,000 Patients About Two Data Breaches
30,000 Florida Blue Members Impacted by Brute Force Attack on Member Portal
Cyberattack on Florida Heart Associates Potentially Affects 45,000 Patients
Over 200,000 Individuals Potentially Affected by ClearBalance Phishing Attack
Wisconsin Dermatology Practice Reports Data Breach Affecting 2.41 Million Individuals
Coastal Family Health Center Cyberattack Affects 62,000 Patients
Ransomware Attacks Reported by 5 HIPAA Covered Entities and Business Associates
UW Health Discovers 4-Month Breach of Its MyChart Portal
PHI of Veterans with PTSD Potentially Compromised in OSU Data Breach
PHI Exposed in Email Incidents at Discovery Practice Management, One Medical, and Peoples Community Health Clinic
Kaseya KSA Supply Chain Attack Sees REvil Ransomware Sent to 1,000+ Companies
Dominion National Proposes $2 Million Settlement to Resolve Class Action Data Breach Lawsuit
Northwestern Memorial HealthCare and Renown Health Affected by Elekta Cyberattack
University Medical Center of Southern Nevada Suffers REvil Ransomware Attack
Email Data Breaches Reported by UofL Health and Jawonio
Ohio Hospital Worker Snooped on 7,300 Patient Records over 12 Years
Former Cedar Rapids Hospital Employee Who Weaponized Ex-Boyfriend’s PHI Sentenced to Probation
Maximus Reports Breach Affecting 334,000 Medicaid Healthcare Providers
PHI of Up to 500,000 Individuals Potentially Stolen in Wolfe Eye Clinic Ransomware Attack
PHI of 38,000 Patients Stolen in Ransomware Attack on Reproductive Biology Associates
Prominence Health Plan Data Breach Impacts up to 45,000 Individuals
San Juan Regional Medical Center Data Breach Affects 68,792 Patients
South Texas Health System and Atricure Report Email Incidents
May 2021 Healthcare Data Breach Report
NorthWest Congenital Heart Care Reports Theft of Device Containing PHI of 1,166 Patients
Arizona Asthma and Allergy Institute Notifies 70,372 Patients About Data Breach
SEIU 775 Benefits Group Data Breach Impacts 140,000 Individuals
Five Rivers Health Centers Phishing Attack Affects Almost 156,000 Patients
Humana and Cotiviti Facing Class Action Lawsuit over 63,000-Record Data Breach
Phishing Attack Affects Up to 34,862 Lafourche Medical Group Patients
Risk and Compliance Firm Reports Breach of 47,035 Records
Ransomware Attacks Affect Sturdy Memorial Hospital and UF Health
147,000 Patients Affected by Scripps Health Ransomware Attack
Diabetes, Endocrinology & Lipidology Center Pays $5,000 to Resolve HIPAA Right of Access Case
More than 3.2 Million Individuals Affected by 20/20 Hearing Care Network Data Breach
Ransomware Attacks Affect Community Access Unlimited and CareSouth Carolina Patients
4 More Healthcare Organizations Announce Patients Affected by Recent Ransomware Attacks
ZocDoc Says Programming Error Resulted in Exposure of Patient Data
Rehoboth McKinley Christian Health Care Services Notifies Patients about February 2021 Ransomware Attack
Health Plan of San Joaquin Email Security Breach Affects 420,433 Individuals
New England Dermatology Discovers Specimen Bottles Disposed of Incorrectly for 10 Years
PHI of up to 50,000 Patients of Arizona Asthma and Allergy Institute Exposed Online
UHS Data Breach Lawsuit Allowed to Proceed but only for Patient Whose Surgery was Cancelled
April 2021 Healthcare Data Breach Report
140,000 SEIU 775 Benefits Group Members’ PHI Potentially Compromised
Verizon: Healthcare Phishing and Ransomware Attacks Increase while Insider Breaches Fall
Records of 200,000 Military Veterans Exposed Online
University of Florida Health Shands Employee Accessed PHI Without Authorization for 2 Years
Ransomware Attack on New York Medical Group Impacts 330K Patients
CaptureRx Ransomware Attack Affects Multiple Healthcare Provider Clients and 1,919,938 Individuals
Network Intrusions and Ransomware Attacks Overtake Phishing as Main Breach Cause
Lawmakers Call for Investigation into Breach of the Contact Tracing Data of 72,000 Pennsylvanians
Ransomware Attack on Scripps Health Disrupts Patient Care
Health Aid of Ohio Security Incident Affects up to 141,00 Individuals
Californian Healthcare Provider Discovers Patient Data was Exposed on the Internet for Over a Year
Einstein Healthcare Network Facing Class Action Lawsuit over 2020 Phishing Attack
PHI of 31,000 Individuals Potentially Compromised in River Springs Health Plans Phishing Attack
Wyoming Department of Health Announces GitHub Data Breach Affecting 1/4 of Wyomingites
Ransom Payment Increase Driven by Accellion FTA Data Exfiltration Extortion Attacks
Phishing Attack on Home Medical Equipment Provider Affects 153,000 Individuals
Manquen Vance Email Breach Impacts 7,018 Patients
Radiation Treatments Disrupted After Cyberattack on Software Vendor
Data Breaches Reported by VEP Healthcare and the American College of Emergency Physicians
March 2021 Healthcare Data Breach Report
Montefiore Medical Center Fires Employee for Unauthorized Record Access
PHI of More than 200,000 Washington D.C. Health Plan Members Stolen by Hackers
221,000 Total Health Care Members Impacted by Email Account Breach
Adventist Health Physicians Network Fined $40,000 for Privacy Breach
PHI of More Than 420,000 Individuals Potentially Compromised in Ransomware Attack on Ohio Law Firm
Malware Discovered on Networks of Squirrel Hill Health Center and La Clinica de la Raza
Orthopaedics Practice Discovers Year-Long Email Breach Affecting 125,000 Patients
Third Party Data Breaches Reported by Apple Valley Clinic & BioTel Heart
More Than 1.2 Million Health Net Members Affected by Accellion Cyberattack
Roper St. Francis Healthcare Faces Class Action Lawsuit Over Data Breach
PHI from Multiple Covered Entities Published on GitHub
Ransomware Attack on Home Healthcare Service Provider Affects 753,000 Individuals
Lexington Medical Center and CalViva Health Affected by Third-Party Data Breaches
University of Miami Health and Mott Community College Data Compromised in Ransomware Attacks
New Jersey Plastic Surgery Practice Pays $30K to OCR to Settle HIPAA Right of Access Case
SalusCare Takes Legal Action Against Amazon to Obtain AWS Audit Logs to Investigate Data Breach
Cancer Treatment Centers of America Announces 105,000-Record Data Breach
Misconfiguration Resulted in Exposure of the PHI of 65,000 Mobile Anesthesiologists Patients
Massachusetts Mental Health Clinic Settles HIPAA Right of Access Case for $65,000
Universal Health Services Ransomware Attack Cost $67 Million in 2020
Hospice CEO Pleads Guilty to Falsifying Healthcare Claims and Inappropriate Medical Record Access
California Department of State Hospitals Discovers Unauthorized Data Copying by IT Employee
February 2021 Healthcare Data Breach Report
More Health Insurers Confirmed as Victims of Accellion Ransomware Attack and Multiple Lawsuits Filed
PHI of 26,600 Individuals Potentially Copied in Colorado Retina Associates Phishing Attack
2020 Saw Major Increase in Healthcare Hacking Incidents and Insider Breaches
Reinvestigation of 2019 Metro Presort Ransomware Attack Reveals PHI May Have Been Compromised
Ransomware Gangs Claim Three More Healthcare Victims
Multistate Settlement Resolves 2019 American Medical Collection Agency Data Breach Investigation
Unsecured Amazon S3 Buckets Contained ID Card Scans of 52,000 Individuals
New London Hospital Data Breach Affects Almost 35,000 Patients
Cost of 2020 US Healthcare Ransomware Attacks Estimated at $21 Billion
207K MultiCare Health System and Woodcreek Healthcare Patients Affected by Ransomware Attack
Phishing Attack Impacts 135K Saint Alphonsus Health System and Saint Agnes Medical Center Patients
PHI of More Than 100,000 Elara Caring Patients Potentially Compromised in Phishing Attack
Up to 100,000 Individuals Affected by Cochise Eye and Laser Ransomware Attack
Tens of Thousands of Individuals Affected by AllyAlign Health Ransomware Attack
IBM X-Force: Healthcare Cyberattacks Doubled in 2020
Roundup of Recent Healthcare Phishing and Malware Incidents
Gore Medical Management Alerted to 2017 Breach of 79,100 Patients’ PHI
Email Security Breach Impacts 47,000 Covenant Healthcare Patients
Cyberattack Forces St. Margaret’s Health –Spring Valley to Shut Down Computer Systems
March 1, 2021: Deadline for Reporting 2020 Small Healthcare Data Breaches
Exploitation of Vulnerabilities in Accellion File Transfer Appliance Gave Hackers Access to Data of Kroger Customers
Ransom Paid to Recover Healthcare Data Stolen in Cyberattack on Online Storage Vendor
January 2021 Healthcare Data Breach Report
Wilmington Surgical Associates Facing Class Action Lawsuit Over Netwalker Ransomware Attack
Grand River Medical Group Email Breach Impacts 34,000 Patients
Ransomware Gangs Leaks Sensitive Data Allegedly Stolen from Two More Healthcare Providers
Email Error Results in Impermissible Disclosure of the PHI of 900 Campbell County Health Patients
21st Century Oncology Data Breach Settlement Receives Preliminary Approval
Sharp HealthCare Pays $70,000 to Resolve HIPAA Right of Access Violation
Ransomware Gang Dumps Data Stolen from Two U.S. Healthcare Providers
Renown Health Pays $75,000 to Settle HIPAA Right of Access Case
Nebraska Medicine Notifies 219,000 Patients About September 2020 Malware Attack
Class Action Lawsuit Filed Against US Fertility Over September 2020 Ransomware Attack
Email Account Breach at Law Firm Affects More Than 36,000 UPMC Patients
Ramsey County and Crisp Regional Health Services Affected by Ransomware Attacks
4 Healthcare Providers Have Started Notifying Patients About Recent Phishing Attacks
Montefiore Medical Center and Bethesda Hospital Fire Employees for HIPAA Breaches
Failure to Patch Results in 7-Year Breach of Florida Medicaid Applicants’ PHI and Exposure of 3.5 Million Records
Almost 190,000 Patients Affected by Roper St. Francis Healthcare Phishing Attack
Rady Children’s Hospital Facing Class Action Lawsuit over Blackbaud Ransomware Attack
2020 Healthcare Data Breach Report: 25% Increase in Breaches in 2020
Data Breaches Reported by Gainwell Technologies, TaylorMade Diagnostics, and Mattapan Community Health Center
HHS Increases HIPAA Penalties for 2020 to Account for Inflation
At Least 560 U.S. Healthcare Facilities Were Impacted by Ransomware Attacks in 2020
December 2020 Healthcare Data Breach Report
Excellus Health Plan Settles HIPAA Violation Case and Pays $5.1 Million Penalty
South Country Health Alliance Breach Impacts 66,874 Plan Members
MD Anderson Cancer Center Has $4.3 Million OCR HIPAA Fine Overturned on Appeal
OCR Continues HIPAA Right of Access Crackdown with $200,000 Fine
LSU Health Discovers Additional Hospital Affected by September 2020 Email Account Breach
Lake Region Healthcare Recovering from Ransomware Attack
Email Breaches Reported by Mattapan Community Health Center and Prestera Center for Mental Health Services
Breaches Reported by Northwestern Memorial Hospital, Apex Laboratory, and Five Points Eye Care
Largest Healthcare Data Breaches in 2020
More Than 114,000 Patients Affected by Wilmington Surgical Associates Ransomware Attack
Two Florida Healthcare Providers Attacked with Ransomware
484,000 Aetna Members Impacted by EyeMed Phishing Incident
Former GenRx Pharmacy Patients’ PHI Potentially Compromised in Ransomware Attack
OCR Announces its 19th HIPAA Penalty of 2020
November 2020 Healthcare Data Breach Report
OCR HIPAA Audits Industry Report Identifies Common Areas of Noncompliance with the HIPAA Rules
FTC Settles 2019 Consumer Data Breach Case with SkyMed
Lost Storage Device Contained Unencrypted PHI of Cedar Springs Hospital Patients
Email Account Breaches Reported by Meharry Medical College and MEDNAX Services
Tufts Health Plan Members’ PHI Exposed in EyeMed Phishing Attack
Dental Care Alliance Data Breach Impacts More Than 1 Million Patients
Six More Healthcare Providers Impacted by Ransomware Attacks
Insider Data Breaches Reported by Montefiore Medical Center and Mercy Health
Email Account Breaches Reported by University of Minnesota Physicians and McLeod Health
Healthcare Provider Discovers Patient Data Exposed Online for Over 4 Years
More Than 295K Patients Impacted by Cyberattack on AspenPointe
Mayo Clinic Faces Multiple Lawsuits over Insider Privacy Breach
US Fertility Reports Ransomware Attack Involving Data Theft
UVM Health Restores Electronic Health Record System One Month After Ransomware Attack
Phishing Incidents Reported by Connecticut Department of Social Services, Mercy Iowa City and LSU Care Services
Three More Healthcare Providers Suffer Cyberattacks Involving Ransom Demands
October 2020 Healthcare Data Breach Report
HIPAA Right of Access Failure Results in $65,000 Fine for University of Cincinnati Medical Center
PHI Potentially Compromised in Security Incidents at People Incorporated and My Choice HouseCalls
Ransomware Attacks Impact First Impressions Orthodontics, Kids First Dentistry & Orthodontics, and Hendrick Health Patients
North Dakota and Delaware State Departments Report Breaches of PHI
Luxottica Data Breach Impacts 829,454 Individuals in the United States
Ransomware Attack on Medicaid Billing Service Provider Impacts 116,000 Individuals
PHI Incidents Recently Reported by Healthcare Providers and Business Associates
$350,000 Settlement Reached to Resolve Saint Francis Healthcare Data Breach Lawsuit
Healthcare Providers Affected by Email Account Breach at Payment Processing Vendor
Blackbaud SEC Filing Provides Further Information on Data Breach and Mitigation Costs
Ascend Clinical and Alamance Skin Center Suffer Ransomware Attacks
Wakefern Food Corporation Settles HIPAA Breach Case with NJ Attorney General for $235,000
Email Security Breaches Reported by Arkansas Otolaryngology Center and Centerstone
Failure to Terminate Former Employee’s Access Rights Results in $202,400 HIPAA Fine for New Haven, CT
Sky Lakes Medical Center and St. Lawrence Health System Attacked with Ransomware
Aetna Hit with $1 Million HIPAA Fine for Three Data Breaches
Sonoma Valley Hospital Suffers Significant EHR Downtime Event
Dickinson County Health Suffers Ransomware Attack
Piedmont Cancer Institute Phishing Attack Impacts 5,000 Patients
Sen. Warner Seeks Answers about Suspected Universal Health Services Ransomware Attack
228,000 Individuals Impacted by Legacy Community Health Services Phishing Attack
OCR Announces 9th Financial Penalty under its HIPAA Right of Access Initiative
Community Health Systems Pays $5 Million to Settle Multi-State Breach Investigation
Former Mayo Clinic Employee Accessed Medical Records of 1,600 Patients Without Authorization
OCR Imposes $160,000 Penalty on Healthcare Provider for HIPAA Right of Access Failure
Magnolia Pediatrics and Accents on Health Suffer Ransomware Attacks
Clinical Trial Software Provider Hit with Ransomware Attack
Financial information and SSNs Potentially Accessed in Blackbaud Ransomware Attack
Anthem Inc. Settles State Attorneys General Data Breach Investigations and Pays $48.2 Million in Penalties
PHI of 26,861 Patients Potentially Compromised in Oaklawn Hospital Phishing Attack
4 More U.S. Healthcare Providers Discover Email Account Breaches
MU Health Care Reports Second Phishing Attack of the Year
Universal Health Services Ransomware Attack Cripples IT Systems Across United States
OCR Imposes 2nd Largest Ever HIPAA Penalty of $6.85 Million on Premera Blue Cross
Business Associate Fined $2.3 Million for Breach of 6 Million Records and Multiple HIPAA Failures
Montefiore Medical Center and Geisinger Fire Employees for Improper PHI Access
August 2020 Healthcare Data Breach Report
Noncompliance with HIPAA Results in $1.5 Million Financial Penalty for Athens Orthopedic Clinic
Senators Demand Answers from VA on 46,000-Record Data Breach
HIPAA Right of Access Failures Result in Five OCR HIPAA Fines
Department of Veteran Affairs Reports Breach of Payment System and Potential Theft of Veterans’ SSNs
Starling Physicians Email Breach Impacts 7,777 Patients
Inova Health System Says 1.05 Million Individuals Impacted by Blackbaud Ransomware Attack
Hennepin County Medical Center Faces Possible Legal Action Over Snooping on George Floyd’s Medical Records
Up to 308,000 Patients Potentially Affected by Baton Rouge Clinic Ransomware Attack
PHI of Almost 140,000 Individuals Potentially Compromised in Imperium Health Phishing Attack
Blackbaud Data Breach Healthcare Victim Count Rises to Almost 1 Million
Assured Imaging Ransomware Attack Affects Almost 245,000 Patients
56,000 Northwestern Memorial HealthCare Donors Impacted by Blackbaud Ransomware Attack
Utah Pathology Services Email Breach Potentially Affects 112,000 Patients
Former Nursing Home Employee Accused of Defrauding Residents Out of $25,000
Dynasplint Systems Data Breach Impacts Almost 103,000 Individuals
Personal and COVID-19 Status Data Stolen from South Dakota Fusion Center in “BlueLeaks” Hacking Incident
AI Company Exposed 2.5 Million Patient Records Over the Internet
July 2020 Healthcare Data Breach Report
R1 RCM Medical Collection Agency Suffers Ransomware Attack
Blackbaud Ransomware Attack Impacts 657,392 Northern Light Health Foundation Donors
Healthcare Data Leaks on GitHub: Credentials, Corporate Data and the PHI of 150,000+ Patients Exposed
Medical Software Database Containing Personal Information of 3.1 Million Patients Exposed Online
Protected Health Information of 129K Individuals Potentially Compromised in Behavioral Health Network Malware Attack
Data Breaches Reported by University of Maryland Faculty Physicians and Highpoint Foot & Ankle Center
Ashley County Medical Center Nurse Terminated for Improper Medical Record Access
Almost 20,000 Patients Affected by Owens Ear Center Ransomware Attack
Four Healthcare Providers and a Ventilator Manufacturer Attacked with Ransomware
Children’s Hospital Colorado Suffers Phishing Attack
PHI Exposed in Phishing Attacks on FHN and Elkins Rehabilitation & Care Center
69,777 Patients Impacted by Allergy and Asthma Clinic of Fort Worth Hacking Incident
PHI of Customers Stolen in Looting Incidents at Cub Pharmacies
6,000 Patients Notified About Email Security Breach at Beaumont Health
PHI Compromised in CVS Pharmacy and Walgreens Break-ins
OCR Imposes $1 Million HIPAA Penalty on Lifespan for Lack of Encryption and Other HIPAA Failures
University of Utah Reports Phishing Attack Involving the PHI of up to 10,000 Patients
June 2020 Healthcare Data Breach Report
Small North Carolina Healthcare Provider Fined $25,000 for HIPAA Security Rule Noncompliance
Ransomware Data Breach Lawsuit Against Sarrell Regional Dental Center Tossed by Federal Judge
47,754 Individuals Impacted by Lorien Health Services Ransomware Attack
Quantum Imaging and Therapeutic Associates Investigating Possible Facebook HIPAA Breach
36,000 Members Affected by Central California Alliance for Health Email Breach
Benefit Recovery Specialists Hacked and PHI of 274,837 Individuals Exposed
Health Plan Member Portals Accessed Using Stolen Credentials
Up to 58,000 Individuals Impacted by Healthcare Fiscal Management Ransomware Attack
30,000 Patients’ PHI Exposed in NC and TX Phishing Attacks
$185,000 Settlement Proposed to Resolve Grays Harbor Community Hospital Ransomware Lawsuit
Extent of Magellan Health Ransomware Becomes Clear: More Than 364,000 Individuals Affected
UnityPoint Health Proposes $2.8 Million+ Settlement to Resolve Class Action Data Breach Lawsuit
Breaches Reported by St. Luke’s Health-Memorial Lufkin, RiverPointe Post Acute, and Iowa Total Care
Georgia Hospital Accused of Falsification of COVID-19 Test Results Suspends Employees Over Suspected HIPAA Breach
Ransomware Attacks Reported by North Shore Pain Management & Florida Orthopaedic Institute
American Medical Technologies Email Breach Affects 47,767 Patients
May 2020 Healthcare Data Breach Report
Hacker Arrested and Charged Over 2014 UPMC Cyberattack
Breaches Reported by Hanger Clinic, Gateway Health, and Sunrise Treatment Center
Ransomware Attacks Reported by Rangely District Hospital and Electronic Waveform Lab
Cano Health Discovers 2-Year Email Account Breach
Everett & Hurite Ophthalmic Association Email Breach Impacts 34,000 Patients
University of Utah Health Suffers Further Phishing Attack
$107,000 Stolen from Kentucky Employees’ Health Plan Members in Two Recent Cyberattacks
St Joseph Health System Discovers Medical Record Storage Facility Improperly Disposed of Patient Records
Aveanna Healthcare Facing Class Action Lawsuit Over 2019 Phishing Attack
Kaiser Permanente Discovers 8-Year Employee HIPAA Breach
Mat-Su Surgical Associates Suffer Ransomware Attack
Geisinger Wyoming Valley Medical Center and District Medical Group Disclose Data Breaches
April 2020 Healthcare Data Breach Report
Mille Lacs Health System Phishing Attack Impacts 10,600 Patients
Management and Network Services Notifies 30,132 Patients About PHI Breach
Data Stolen in Magellan Health Ransomware Attack
Email Breach Impacts 35,529 Patients of Saint Francis Healthcare Partners
Healthcare Workers in Michigan and Illinois Fired for HIPAA Violations
Patients Notified Medical Records Exposed at Tornado Hit Secure Medical Record Facility
Phishing Attack at BJC HealthCare Impacts Patients at 19 Hospitals
Shareholder Sues LabCorp to Recover Losses Caused by Data Breaches
Ransomware Attackers Claim Three More Healthcare Victims
233,000 Patients Notified About PHI Breach at Genetic Testing Lab
March 2020 Healthcare Data Breach Report
Beaumont Health Notifies 112,000 Patients About May 2019 Data Breach
Washington University School of Medicine Breach Impacts 14,795 Oncology Patients
PHI of 16,600 Patients Potentially Compromised in Ransomware Attack on Andrews Braces
Phishing Attacks Reported by Hartford Healthcare and Saint Francis Ministries
Ransomware Attack Potentially Impacts More Than 113,000 Patients of Brandywine Urology Consultants
PHI Exposed in Phishing Attacks on Healthcare Resource Group and Confido
35,800 Patients of The Otis R. Bowen Center for Human Services Notified About Email Security Breach
Ransomware Attacks Reported by Stockdale Radiology and Affordacare Urgent Care Clinics
California Business Associate Reports Potential Breach of Upwards of 70,000 Records
Hawaii Pacific Health Discovers 5-Year Insider Data Breach
February 2020 Healthcare Data Breach Report
Phishing Attacks Reported by University of Utah Health, Oregon DHS, and LifeSprk
Roundup of Recent Healthcare Data Breaches
University of Kentucky and UK HealthCare Impacted by Month-Long Cryptominer Attack
53% of Healthcare Organizations Have Experienced a PHI Breach in the Past 12 Months
Relation Insurance and Rainbow Hospice Care Experience Email Security Breaches
6 Healthcare Organizations Discover PHI Has Potentially Been Compromised
Flaw in Walgreens Mobile App Secure Messaging Feature Exposed PHI
Quest Diagnostics 2016 Data Breach Settlement Receives Final Approval
HHS’ Office for Civil Rights Announces First HIPAA Penalty of 2020
Tennessee Orthopaedic Alliance Phishing Attack Impacts Over 81,000 Patients
Data Breaches Reported by Rady Children’s Hospital, Aveanna Healthcare and Endeavor Energy Resources
Medical Records of 156,400 Personal Touch Home Care Patients Compromised in Ransomware Attack on EHR Hosting Company
Maze Ransomware Attack on Accounting Firm Impacts Patients of New York Medical Group
NRC Health Recovering from Ransomware Attack
Communication Errors Result in Impermissible Disclosure of 5,300 Patients’ PHI
January 2020 Healthcare Data Breach Report
Criminal HIPAA Violation Case Sees Healthcare Worker Arraigned on 430 Counts
2020 Protenus Breach Barometer Report Reveals 49% Increase in Healthcare Hacking Incidents
PHI of 109,000 Patients Potentially Compromised in Washington Phishing Attack
MyEyeDr. Patients Notified of Ransomware Attack and Improper Disposal Incident
Wise Health System Notifies 66,934 Patients of Phishing Attack
Malware Attack Disables Servers at Physician Network Affiliated with Boston Children’s Hospital
Hospital Sisters Health System Email Breach Impacts 16,167 Patients
PHI Exposed Due to Sunshine Behavioral Health Group Amazon AWS S3 Bucket Misconfiguration
Slew of Email Security Breaches Reported by Healthcare Organizations
Health Share of Oregon Notifies 654,000 Members About Business Associate Data Breach
New York Nursing Center and Phoenix Children’s Hospital Affected by Phishing Attacks
Malware Attack Results in Corruption of Medical Records: 30,000 Patients Affected
Data Breaches Reported by Manchester Ophthalmology, UnitedHealthcare, and Cook County Health
Website Error Exposed Personal and Health Data of LabCorp Patients
Iowa Department of Human Services Notifies 4,784 Patients About Improper Disposal Incident
Beaumont Health Discovers 20-Month Insider Breach
Nearly 200,000 Patients Impacted by PIH Health Phishing Attack
December 2019 Healthcare Data Breach Report
Phishing Attack Reported by Adventist Health Sonora
Quest Health Systems Discovers Additional Patients Impacted by 2018 Phishing Attack
44,000 Patients Impacted by Phishing Attacks on InterMed and Spectrum Healthcare Partners
Phishing Attack on SouthEast Eye Specialist Group Impacts 13,000 Patients
Enloe Medical Center Continues to Experience EMR Downtime Due to Ransomware Attack
Ransomware Attacks Reported by Florida and Texas Healthcare Providers
Alomere Health Phishing Attack Impacts 49,351 Patients
Up to 25K Patients of the Native American Rehabilitation Association of the Northwest Affected by Malware Attack
Hospital Employee Pleads Guilty to Five-Year Account Hacking Spree
2019 Healthcare Data Breach Report
HIPAA Enforcement in 2019
North Ottawa Community Health System Discovers 3-Year Insider Breach
Ann & Robert H. Lurie Children’s Hospital of Chicago Fires Worker for Unauthorized Medical Record Access
New Mexico Hospital Discovers Malware on Imaging Server
Colorado Department of Human Services and Sinai Health System Alert Patients About HIPAA Breaches
November 2019 Healthcare Data Breach Report
CMS Blue Button 2.0 Coding Bug Exposed PHI of 10,000 Medicare Beneficiaries
Email Security Breaches Reported by Conway Medical Center and Equinox Inc.
Tidelands Health Recovering from Malware Attack
Truman Medical Centers Notifies 114,466 Patients of Potential PHI Exposure
Hackensack Meridian Health Recovering from Ransomware Attack
$85,000 Penalty for Korunda Medical for HIPAA Right of Access Failures
Ransomware Attack on The Cancer Center of Hawaii Delayed Radiation Therapy for Patients
Patients Notified of Phishing Attack at Cheyenne Regional Medical Center
Phishing Attacks Reported by Sunrise Community Health and Katherine Shaw Bethea Hospital
Ransomware Attack on Managed Service Provider Impacts More than 100 Dental Practices
Southeastern Minnesota Oral & Maxillofacial Surgery Ransomware Attack Impacts 80,000 Patients
Kalispell Regional Healthcare Sued Over 130,000-Record Data Breach
Nebraska Medicine Discovers Insider Data Breach
Solara Medical Supplies Sued Over 114,000-Record Data Breach
Phishing Attacks Announced by Comprehensive Sleep Care Center, McLaren Health Plan, and Ivy Rehab Physical Therapy
Great Plains Health Ransomware Attack Prevents Access to Patient Medical Records
$2.175 HIPAA Settlement Agreed with Sentara Hospitals for Breach Notification Rule and BAA Failures
Misconfigured Staff Calendars Exposed Information of Children’s Minnesota Patients for Up to 8 Years
October 2019 Healthcare Data Breach Report
IT Firm Ransomware Attack Prevents Nursing Homes and Acute Care Facilities from Accessing Medical Records
107,000 Ferguson Medical Group Patients Impacted by Ransomware Attack
Phishing Attacks Reported by Choice Cancer Care Treatment Center and CAH Holdings
Former Aegis Medical Group Employee Potentially Accessed 9,800 Records Without Authorization
Solara Medical Supplies and Select Health Network Report Phishing Attacks
Update Issued on Unsecured PACS as Exposed Medical Image Total Rises to 1.19 Billion
93,000 Files Belonging to California Addiction Treatment Center Exposed Online
Phishing Attacks Reported by UNC Chapel Hill School of Medicine and Starling Physicians
PHI Theft Incidents Reported by Loyola Medicine and Main Street Clinical Associates
Tens of Thousands of TennCare and Florida Blue Members Impacted Business Associate Phishing Attack
Salem Health Hospitals & Clinics and Delta Dental of Arizona Notify Patients About Phishing Attacks
Two Maine Healthcare Providers Report Email Security Breaches Impacting 52,000 Patients
Texas Health Resources Reports Data Breach Affecting 82,577 Patients
Brooklyn Hospital Center Malware Attack Results in Loss of Patients’ Health Records
California Mental Health Services Provider Discovers Unauthorized Email Account Access and File Deletion
Utah Valley Eye Center Hacking Incident Leads to Phishing Attack on Patients
Prisma Health Website Breach Potentially Impacts 22,000 Individuals
Quest Diagnostics $195,000 Class Action Settlement Approved by Federal Judge
Improper Disposal Incident at Smith’s Food & Drug Affects Almost 58,000 Patients
Report Suggests Augmented Security Following a Data Breach Contributes to Increase in Patient Mortality Rate
Betty Jean Kerr People’s Health Centers Ransomware Attack Impacts 152,000 Patients
Geisinger Health Plan Notifies Members About Business Associate Phishing Attack
Slew of HIPAA Violations Leads to $2.15 Million Civil Monetary Penalty for Jackson Health System
140,209 Patients Notified of Kalispell Regional Healthcare Phishing Attack
Sensitive Data of Millions of Patients Discovered to Be Freely Accessible Over the Internet
South Texas Dermatopathology Notifies 15,982 Patients About AMCA Data Breach
September 2019 Healthcare Data Breach Report
VA OIG: Records of Thousands of Veterans Exposed to 25,000 VA Employees via Shared Network Drives
Ransomware Attacks Reported by Monterey Health Center and Magnolia Pediatrics
Malicious Code on Mission Health E-Commerce Websites Enabled Data Theft for 3 Years
Roger Severino Gives Update on OCR HIPAA Enforcement Priorities
Hunt Regional Healthcare Revises May 2018 Data Breach Total
Philadelphia Department of Public Health Data Breach Exposed Data of Hepatitis Patients
68,000 Patients of Methodist Hospitals Impacted by Phishing Attack
CHI Health Ransomware Attack Impacts 48,000 Lakeside Patients
Cancer Treatment Centers of America Experiences Another Phishing Attack
UAB Medicine Phishing Attack Impacts 19,000 Patients
Goshen Health Notifies 9,160 Patients of Historic PHI Breach
DCH Health System Ransomware Attack Temporarily Cripples 3 Alabama Hospitals
391,472 Patients Impacted by Sarrell Dental Ransomware Attack
PHI Potentially Compromised in Cybersecurity Breach at North Florida OB-GYN
Wood Ranch Medical Announces Permanent Closure Due to Ransomware Attack
Senator Demands Answers Over Exposure of Medical Images in Unsecured PACS
Ransomware Attacks Reported by People’s Injury Network Northwest and Berry Family Services
Study Reveals Types of Protected Health Information Most Commonly Exposed in Healthcare Data Breaches
August 2019 Healthcare Data Breach Report
Thousands of Fetal Remains and Abandoned Medical Records Discovered in Indiana
Campbell County Health Ransomware Attack Causes Major Disruption to Patient Services
56,226 Presbyterian Health Plan Members Affected by Phishing Attacks at Magellan Health Subsidiaries
Ramsey County Expands 2018 Phishing Attack Victim Count from 599 to 117,905
Shore Specialty Consultants Pulmonology Group Breach Impacts 9,700 Patients
Phishing Incidents Reported by Fraser and East Central Indiana School Trust
Utah Ransomware Attack Impacts 320,000 Patients
OCR Settles First HIPAA Violation Case Under 2019 Right of Access Initiative
Study Confirms Why Prompt Data Breach Notifications Are So Important
Multiple Email Accounts Compromised in UC Health Phishing Attack
Artesia General Hospital Phishing Attack Impacts 13,905 Patients
122,000 Providence Health Plan Members Impacted by Dominion National Data Breach
73 Email Accounts Compromised in Major Phishing Attack on NCH Healthcare System
Ransomware Attack Impacts More Than 400 U.S. Dental Practices
33,370 Mount Sinai Hospital Patients Impacted by AMCA Breach
Georgia Court of Appeals to Decide Whether Athens Orthopedic Data Breach Victims Are Entitled to Damages
AMCA Data Breach Total Nears 25M as Wisconsin Diagnostic Laboratories Confirms 115K Record Breach
July 2019 Healthcare Data Breach Report
Phishing Attack on Presbyterian Healthcare Services Exposed PHI of 183,000 Patients
Massachusetts General Hospital Data Breach Impacts 10,000 Patients
Rhode Island Healthcare Provider Hacked: 3,000 Records Potentially Compromised
Medical Records of Western Connecticut Health Network Patients Exposed
30K Integrated Regional Laboratories Patients Impacted by AMCA Breach
PHI Exposed in Phishing Attacks on Michigan Medicine and Virginia Gay Hospital
Ohio Eye Care Provider Suffers Ransomware Attack
Hackers Demand $1 Million Ransom from Washington Hospital
Renown Health Discovers PHI was Stored on Lost Thumb Drive
More than 10,000 FDNY EMS Patients Notified of PHI Exposure
Email Security Breaches Expose PHI of Seattle Community Psychiatric Clinic Patients
PHI of Tens of Thousands of Patients Exposed Online Due to Database Misconfiguration
Further 185,000 Individuals Affected by AMCA Data Breach
Presbyterian Healthcare Services Data Breach Impacts 183,000 Patients
Imperial Health Ransomware Attack Impacts More Than 111,000 Patients
First Half of 2019 Sees 31.6 Million Healthcare Records Breached
More than 522,000 Puerto Rico Patients Impacted by Ransomware Attack
Kentucky Community Health Center Pays $70,000 Ransom to Recover PHI
AMCA Data Breach Victim Count Swells to Almost 25 Million Records
June 2019 Healthcare Data Breach Report
15,000 Patient Records Exposed in Phishing Attack on HIPAA Business Associate
Thousands of Patients Impacted by Breaches at Cancer Treatment Centers of America and Edgepark Medical Supplies
21,400 Patients Impacted by St. Croix Hospice Phishing Attack
Wise Health System Phishing Attack impacts 35,899 Patients
2.2 Million Clinical Pathology Laboratories Patients Affected by AMCA Breach
Penobscot Community Health Center Victim of AMCA Breach
Email Account Hack Affects 25,000 Adirondack Health Patients
Premera Blue Cross Settles Multi-State Action for $10 Million
More than 1,000 Essential Health Patients Impacted by Nemadji Research Corporation Breach
Phishing Attack on California Business Associate Impacts 14,591 DHS Patients
Sensitive Data Potentially Compromised in Tennessee Hospice Phishing Attack
2.9 Million Members Affected by Dominion National 9-Year PHI Breach
PHI of 10,893 Summa Health Patients Potentially Compromised in Phishing Attack
Student Sues Hospital for Unauthorized Use of PHI as Teaching Tool
UChicago Accused of Illegally Sharing Patient Data with Google
5 Million Records Exposed Due to Unsecured MongoDB Marketing Database
2,200 Franciscan Health Patients Notified of Unauthorized PHI Access by Employee
Ransomware Attacks Reported by California and Illinois Clinics
Phishing Attacks Reported by Broome County, NY and UMassMemorial Community Healthlink
Ransomware Attack Affects More than 60 Assisted Living Facilities
May 2019 Healthcare Data Breach Report
Oregon Department of Human Services Notifies 645,000 Clients of Phishing Breach
Potential Breach at Meditab Software Impacts 2 Maryland Healthcare Providers
AMCA Parent Company Files for Chapter 11 Protection
Shingle Springs Health and Wellness Center Ransomware Attack Impacts 21,000 Patients
Urology Practice Pays $75,000 Ransom to Regain Access to Computer Systems
Alabama Jury Awards Woman $300,000 Damages over HIPAA Breach
PHI Exposed in Union Labor Life Insurance Phishing Attack
Nurse Fired over Alleged Theft and Impermissible Disclosure of PHI
PHI Potentially Compromised at Rosenbaum Dental Group and Kingman Regional Medical Center
Mercy Health Discovers PHI of 978 Patients Was Exposed
Delta Health Systems Alerts Plan Members to Exposure of SSNs Over Internet
AMCA Data Breach Tally Passes 20 Million as BioReference Laboratories Added to List of Impacted Entities
Misconfigured University of Chicago Medicine Elasticsearch Instance Exposed More Than 1.68 Million Records
Up to 7.7 Million Patients of LabCorp Impacted by AMCA Breach
AMCA Data Breach Impacts 12 Million Quest Diagnostics Patients
7 Month Data Breach Discovered by Communities Connected for Kids
Health Quest Patients Notified of Historic Phishing Breach
Data Breaches Reported by TriHealth, Centura Health, and Columbus Community Hospital
Multi-State Action Results in $900,000 Financial Penalty for Medical Informatics Engineering
Medical Informatics Engineering Settles HIPAA Breach Case for $100,000
Boxes of Records of Today’s Vision Patients and Employees Discovered in Texas Dumpster
PHI of 1.5 Million Individuals Exposed Online by Inmediata
Phishing Attack on Hematology Oncology Associates Sees Multiple Email Accounts Breached
Another Phishing Attack Reported by Cancer Treatment Centers of America
April 2019 Healthcare Data Breach Report
Medical Oncology Hematology Consultants Notifies Patients about June 2018 Data Breach
7 Month Delay Notifying HIV Study Participants About Exposure of their Confidential Information
UMC Physicians Discovers Patient Information Was Uploaded to Unapproved and Unsecured Cloud Service
Oregon State Hospital and New York Episcopal Health Services Report Phishing Attacks
Ransomware Attack on the Southeastern Council on Alcoholism and Drug Dependence Impacts 25,148 Patients
Lawsuit Alleges Hospital Worker Disclosed Information about Woman’s Sexual Assault to her Attacker
Phishing Attack Reported by Verity Health’s St. Vincent Medical Center
Phishing Attack Impacts 1,100 Spectrum Health Lakeland Patients
Key Findings of the 2019 Verizon Data Breach Investigations Report
American Indian Health & Services and Madison Parish Hospital Discover Impermissible PHI Disclosures by Employees
Ransomware Attack Reported by American Baptist Homes of the Midwest
3,193 Employees and Dependents Affected by Bodybuilding.com Data Breach
Touchstone Medical Imaging Fined $3 Million by OCR for Extensive HIPAA Failures
Mailing Error Sees Inmediata Breach Notification Letters Sent to Incorrect Addresses
Class Action Lawsuit Filed Over Baystate Health Phishing Attack
24,000 Patients Impacted by New Jersey Ransomware Attack
Three Healthcare Phishing Incidents Result in Exposure of 10,000 Patient Records
HHS Changes HITECH Act Penalties for HIPAA Violations
Medical Billing Service Provider Suffers Ransomware Attack
MD Anderson Cancer Center Fires Three Scientists Over Concerns About Theft of Research Data
Email Hacking Incidents Result in Exposure of 8,600 Patients’ PHI
Washington State University Settles Class Action Data Breach Lawsuit for $4.7 Million
Unsecured Database of Addiction Service Provider Potentially Contained Records of 145,000 Patients
60,000 Records Exposed in EmCare Phishing Attack
Klaussner Furniture Industries Discovers Health Plan Data of 9,352 Employees Has Potentially Been Compromised
Centrelake Medical Group Discovers Servers Compromised and Virus Deployed
11,639 Individuals Impacted by Riverplace Counseling Center Malware Attack
Clearway Pain Solutions Institute Discovers Unauthorized EMR System Access
Blue Cross of Idaho Website Hacked and Attempts Made to Reroute Payments
Metrocare Services Suffers Second Phishing Attack in Two Months
Health Recovery Services Notifies 20,485 Patients About Potential PHI Breach
March 2019 Healthcare Data Breach Report
Minnesota DHS Suffers Another Phishing Attack: State IT Services Struggling to Cope with Barrage of Attacks
PHI of 17,531 Patients Potentially Compromised in Business Associate Phishing Attack
PHI of 23,811 Palmetto Health Patients Exposed in Phishing Attack
12,000 Patients of Baystate Health Notified of PHI Exposure Due to Phishing Attack
Hardin Memorial Health Cyberattack Results in EHR Downtime
Emotet Malware Potentially Exfiltrated PHI of Oregon Endodontic Group Patients
1,600 Ohio Patients Notified of Impermissible PHI Disclosure
Phishing Attack Impacts 14,305 Patients of Main Line Endoscopy Centers
Michigan Practice Forced to Close Following Ransomware Attack
Lawsuit Alleges Sharp Grossmont Hospital Secretly Recorded Patients Having Gynecology Operations
Security Breaches Reported by DePaul and Southern Hills Eye Care
67,493 Patients of Burrell Behavioral Health Impacted by Business Associate Breach
Texas Department of Aging and Disability Services Agrees to $1.6 Million Settlement Over 2015 Data Breach
Superior Dental Care Patients Informed of PHI Exposure Due to Email Account Breach
D.C. Attorney General Proposes Tougher Breach Notification Laws
PHI Exposed in Three Recent Email Security Incidents
350,000 Affected by Oregon Department of Human Services Phishing Attack
UCLA Health Settles Class Action Data Breach Lawsuit for $7.5 Million
Verity Health System Suffers Third Phishing Breach in 3 Months
Medical Device Manufacturer Notifies 277,319 Patients About PHI Exposure
Northwestern Medicine Sued Over Medical Information Disclosure on Twitter
Database of New Jersey Healthcare Provider Found to be Leaking Patient Data
Potentially Massive Breach of Protected Health Information Discovered
February 2019 Healthcare Data Breach Report
Three Healthcare Ransomware Attacks Reported: 70,000 Individuals Affected
More Than 600,000 Michigan Residents Affected by Wolverine Solutions Breach, Warns AG Nessel
Business Associate Starts Issuing Notifications About August 2018 Laptop Theft
20K Patients of Pasquotank-Camden Emergency Medical Services Impacted by Server Hack
Emerson Hospital Alerts Patients to May 2018 Breach at Claims Processing Vendor
‘Dozens’ of Northwestern Memorial Hospital Employees Fired for Accessing Jussie Smollett’s Medical Records
Covenant Care Email Account Breach Impacts 7,858 Patients
Beazley Report Reveals Major Increase in Healthcare Hacking and Malware Incidents
Ransomware Attack Impacts up to 400,000 Patients of Columbia Surgical Specialists of Spokane
Rush University Medical Center Notifies 45,000 Patients of PHI Incident
St. Francis Physicians Services Notifies Patients of Milestone Family Medicine Data Breach
UConn Health Phishing Attack Sees PHI of 326,000 Patients Exposed
Multiple Rutland Regional Medical Center Email Accounts Hacked
Insider Wrongdoing Breach at Kentucky Counseling Center Impacts 16,440 Patients
PHI of Almost 1 Million UW Medicine Patients Exposed Online
Patients Receive Notifications of PHI Theft 8 Months After Business Associate Data Breach was Detected
30,000 Patients Notified of Phishing Incident at Memorial Hospital at Gulfport
16-Month Malware Infection at Florida Pulmonary & Sleep Medicine Center Impacts 42,000 Patients
Anesthesia Associates of Kansas City Discovers Theft of Patient Schedules
United Hospital District Phishing Attack Impacts 2,143 Patients
2019 Data Breach Barometer Report Shows Massive Increase in Exposed Healthcare Records
7,000 Patients Notified About Pawnee County Memorial Hospital Malware Attack
EyeSouth Partners Email Account Breach Impacts 24,000 Patients of Georgia Eye Associates
OCR Settles Cottage Health HIPAA Violation Case for $3 Million
Settlement Reached in Community Health Systems 4.5 Million-Record Data Breach Case
Malware Attack Reported by Minnesota Infertility Clinic
23,500 Patients Impacted by Connecticut Eye Clinic Ransomware Attack
January 2019 Healthcare Data Breach Report
12,000 Patients Impacted by Valley Professionals Community Health Center Phishing Attack
13 Accounts Compromised in Roper St. Francis Healthcare Phishing Attack
Aetna Settles HIV Status Breach Case with California AG for $935,000
FABEN Obstetrics and Gynecology Informs 6,092 Patients of Ransomware-Related Data Loss
Thieves Stole Devices Containing PHI of 7,200 Patients of Integrity House
PHI Exposed in Verity Health System Phishing Attack
Analysis of 2018 Healthcare Data Breaches
23,300 Patients Affected by Critical Care, Pulmonary & Sleep Associates Email Hack
Stolen Hard Drive Contained PHI of 76,000 Texas Patients
Alaska Department of Health and Social Services Revises 2018 Breach Victim Total from 501 to 500K-700K
Valley Hope Association Notifies Patients of Email Account Breach
December 2018 Healthcare Data Breach Report
Physician Receives Probation for Criminal HIPAA Violation
PHI of Almost 1,000 Lebanon VA Medical Center Patients Impermissibly Disclosed
New Massachusetts Data Breach Notification Law Enacted
111K Individuals Notified of 4-Month Email Account Compromise
Sacred Heart Rehabilitation Center Notifies Patients of Phishing Incident
Solis Mammography Notifies 500 Patients of PHI Exposure
Phishing Attack Impacts 2,200 Kent County Community Mental Health Authority Patients
31,876 Managed Health Services of Indiana Health Plan Members Notified of Impermissible Disclosure of PHI
1,080 Chaplaincy Health Care Patients Potentially Impacted by Phishing Attack
Ransomware Attack on Podiatric Offices of Bobby Yee Impacts 24,000 Patients
Advertising Expenditures Increase 64% Following a Healthcare Data Breach
Blue Cross Blue Shield of Michigan Members Notified of Business Associate Ransomware Attack
Email Account Breach Impacts Thousands of Choice Rehabilitation Residents
Vendor of Dental Center of Northwest Ohio Suffers Ransomware Attack
Orlando Family Physicians Group Phishing Attack Impacts 8,400 Patients
15,000 Customers Notified About Blue Cross Blue Shield of Michigan Data Breach
Largest Healthcare Data Breaches of 2018
Data of More Than 500,000 Staff and Students Compromised in San Diego School District Phishing Attack
Massachusetts Attorney General Issues $75,000 HIPAA Violation Fine to McLean Hospital
November 2018 Healthcare Data Breach Report
Credit Card Numbers Exposed in BJC Healthcare Breach
Up to 32,000 Patients Impacted by Elizabethtown Community Hospital Email Account Breach
PHI Accessed by Contra Costa Health Plan Contractor Who Falsified Identity to Win Contracts
16,000 Mind & Motion Patients Impacted by Ransomware Attack
EmblemHealth Pays $100,000 HIPAA Violation Penalty to New Jersey for 2016 Data Breach
48,000 Patients of Frisco Medical Center Notified of Breach of Payment Information
6,450 Prairie Fields Family Medicine Patients Notified About Email-Related Privacy Breach
16,000 Redwood Eye Center Patients Impacted by MSP Breach
PHI of 41,000 Patients of Cancer Centers of America Potentially Compromised in Phishing Attack
Ransomware Attacks Reported by Healthcare Providers in Illinois and Rhode Island
12 State Attorneys General File HIPAA Breach Lawsuit Against Medical Informatics Engineering
7,000 Patients Affected by Georgia Spine and Orthopaedics of Atlanta Phishing Attack
DOJ Indicts Two Iranian Hackers for Role in SamSam Ransomware Attacks
2.65 Million Atrium Health Patients Impacted by Business Associate Data Breach
Tandigm Health Website Vulnerability Exposed 7,000 Patients’ PHI
Mercy Medical Center North Iowa Notifies 1,900 Patients About Potential PHI Exposure
OCR Fines Allergy Practice $125,000 for Impermissible PHI Disclosure
53% Of Healthcare Data Breaches Due to Insiders and Negligence
October 2018 Healthcare Data Breach Report
Key Dental Group Alerts Patients About Potential HIPAA Violation
Stolen FHN Healthcare Laptop Contained the PHI of 4,458 Patients
128,400 Employees and Patients Impacted by Phishing Attack on Albany Cancer Treatment Center
Email Hacking Incident Reported by Episcopal Health Services
HealthEquity Notifies 165,800 Individuals of Email Security Breach
2,393 Patients of Southwest Washington Regional Surgery Center Impacted by Phishing Attack
HealthCare.gov Data Breach Exposed Personal Information of 94,000 Individuals
30,000 Patients Impacted by May Eye Care Center Ransomware Attack
1,800 Patients’ PHI Compromised in Metrocare Services Phishing Attack
Former Chilton Medical Center IT Worker Gets 5 Years’ Probation for Theft of Equipment Containing ePHI
Health First Phishing Attack Impacts 42,000 Customers
1,216 Patient Records Impermissibly Accessed by Former Upstate University Hospital Employee
Billing Records of 12,331 Patients of Inova Health System Have Been Compromised
Altus Hospital Baytown Suffers Dharma Ransomware Attack
566,217 Customers of Chicago-Based Health Insurer Impacted by Data Breach
Q3 Healthcare Data Breach Report: 4.39 Million Records Exposed in 117 Breaches
Ransomware Attacks Increase: Healthcare Industry Most Heavily Targeted
Missouri Department of Health and Senior Services Contractor Improperly Retained 10,400 Individuals’ PHI
Stolen Raley’s Pharmacy Laptop May Have Contained PHI of 10,000 Patients
PHI of 40,000 Patients of Sioux City Eye Clinic Potentially Compromised
Catawba Valley Medical Center Phishing Attack Impacts 20,000 Patients
Email Error Exposed the PHI of 8,000 Members of FirstCare Health Plans
Phishing Attack on Children’s Hospital of Philadelphia Results in Double Account Breach
September 2018 Healthcare Data Breach Report
OIG Publishes 2016 Medicaid Data Breach Report
1.25 Million Records Exposed in Employees Retirement System of Texas Data Breach
Ransomware Attack Impacts 16,000 National Ambulatory Hernia Institute Patients
$16 Million Anthem HIPAA Breach Settlement Takes OCR HIPAA Penalties Past $100 Million Mark
Email Accounts Compromised at Biomarin Pharmaceutical and Envision Healthcare Corporation
Minnesota DHS Notifies 21,000 Patients That Their PHI Has Potentially Been Compromised
Michigan Medicine Notifies 3,600 Patients of PHI Disclosure Due to Mailing Error
California HIV Patient PHI Breach Lawsuit Allowed to Move Forward
PHI of 37,000 Gold Coast Health Plan Members Potentially Compromised
Summary of Recent Healthcare Data Breaches
PHI of 1,800 Patients Found Abandoned in Houston Street
Study Reveals 70% Increase in Healthcare Data Breaches Between 2010 and 2017
Claxton-Hepburn Medical Center Fires Several Employees for Inappropriate PHI Access
Protected Health Information Stolen in Aspire Health Phishing Attack
UMass Memorial Health Care Pays $230,000 to Resolve Alleged HIPAA Violations
August 2018 Healthcare Data Breach Report
$999,000 in HIPAA Penalties for Three Hospitals for Boston Med HIPAA Violations
Phishing Attack on Ohio Living Exposed PHI of 6,500 Individuals
Brooklyn Emergency Room Worker Accused of Stealing and Selling Patients’ PHI
Mailing Vendor Blamed for Blue Cross and Blue Shield of Rhode Island Privacy Breach
Independence Blue Cross Notifies 17,000 Members of Online Exposure of Their PHI
CMS: Fairview Southdale Hospital Videotaped Patients Without Knowledge or Consent
Fetal Diagnostic Institute of the Pacific Experiences Ransomware Attack
Email Security Breaches Reported by Hopebridge (IN) and United Methodist Homes (NY)
Texas Nurse Fired for Social Media HIPAA Violation
Phishing Attack on Acadiana Computer Systems Exposed the PHI of 31,000 Individuals
Reliable Respiratory Phishing Attack Impacts 21,000 Patients
Medical Records from New Mexico Hospital Found Scattered in Street
NY Attorney General Fines Arc of Erie County $200,000 for Security Breach
Mailing Error Resulted in Impermissible Disclosure of 19,570 Missouri Care Members’ PHI
1,790 Patients Impacted by Phishing Attack on Los Angeles Drug and Alcohol Treatment Center
July 2018 Healthcare Data Breach Report
Central Colorado Dermatology Ransomware Attack Potentially Resulted in PHI Access
Phishing Attack on Legacy Health Results In Exposure of 38,000 Patients’ PHI
9,350 Patients of Gordon Schanzlin New Vision Institute Notified of Data Breach
Court Approves Anthem $115 Million Data Breach Settlement
InterAct of Michigan Discovers Email Account Compromise
258,000 Wisconsin Residents Notified of Adams County Government Data Breach
417,000 Individuals Affected by Augusta University Health Phishing Attack
Lawmakers Accuse Oklahoma Department of Veteran Affairs of Violating HIPAA Rules
MedSpring Urgent Care Breach Impacts 13,034 Patients
At Least 3.14 Million Healthcare Records Were Exposed in Q2, 2018
The Cost of SamSam Ransomware Attacks: $17 Million for the City of Atlanta
Protected Health Information of Three Hundred Thousand SSM Health Patients Exposed
Hacktivist Convicted for DDoS Attack on Children’s Mercy Hospital
Phishing Attack, Lost Devices, and System Error Exposed PHI of 9,400 Patients
Orlando Orthopaedic Center Suffers 19,000-Record Breach Due to Business Associate Error
1.4 Million Patients Warned About UnityPoint Health Phishing Attack
Confluence Health Informs Patients of Phishing Incident
Lane County Health and Human Services and New England Dermatology Alert Patients to PHI Exposure
Flowers Hospital Proposes $150,000 Settlement for 2014 Data Breach
Blue Springs Family Care Ransomware Attack Impacts 45,000 Patients
Boys Town National Research Hospital and NorthStar Anesthesia Discover PHI Compromised in Phishing Attacks
Golden Heart Administrative Professionals Ransomware Attack Impacts 44,600 Patients
New York Physician Notifies Patients of Exposure of their PHI
Investigation Launched Over Snapchat Photo Sharing at M.M. Ewing Continuing Care Center
June 2018 Healthcare Breach Report
Several Email Accounts Compromised in Sunspire Health and UPMC Cole Phishing Attacks
LabCorp Cyberattack Forces Shutdown of Systems: Investigators Currently Determining Scale of Breach
Two Employees of the Alive Hospice in Tennessee Fooled by Phishing Scam
Email Account of Billings Clinic Worker Hacked During Overseas Trip
Children’s Mercy Hospital Sued for 63,000-Record Data Breach
UMC Physicians Discovers Hacker Accessed PHI of Up to 18,000 Patients
Health Information of Thousands of HIV Patients Exposed by Employee Error
Healthcare Data Breach Costs Highest of Any Industry at $408 Per Record
MedEvolve Notifies Patients of PHI Exposure Through Unsecured FTP Server
Cass Regional Medical Center EHR Out of Action Due to Ransomware Attack
Former Arkansas Children’s Hospital Employee Investigated Over Potential Theft of 4,500 Patients’ PHI
Coding Error by EHR Vendor Results in Impermissible Sharing of 150,000 Patients’ Health Data
PHI Stolen As a Result of Manitowoc County Phishing Attack
Sophisticated Cyber Spoofing Attack Reported by Humana
Zeus Trojan Infection Potentially Resulted in Theft of PHI from Alaska DHSS
Healthcare Worker Charged with Criminally Violating HIPAA Rules
Associated Dermatology & Skin Cancer Clinic of Helena Discloses PHI Breach Impacting 1,254 Patients
Business Email Compromise Attacks Dominate 2017 FBI Internet Crime Report
Michigan Medicine Informs Hundreds of Patients of PHI Exposure
Protected Health Information Sent to Incorrect Fax Recipient Over Several Months
Unencrypted Hospital Pager Messages Intercepted and Viewed by Radio Hobbyist
Washington Health System Suspends Several Employees for Inappropriate PHI Access
Florida Agency for Persons with Disabilities and Black River Medical Center Report Phishing Incidents
May 2018 Healthcare Data Breach Report
3-Year Jail Term for VA Employee Who Stole Patient Data
PHI Stolen in San Francisco and Corpus Christi Burglaries
PHI Compromised in HealthEquity Phishing Attack
1,600 Patients Potentially Impacted by Terros Health Phishing Attack
3,700 Rise Wisconsin Plan Participants Potentially Impacted by Ransomware Attack
Impostor, Burglar, and Hackers Obtain PHI of Patients
Healthcare Employees Accused of Taking PHI to New Employers
Multiple Data Breaches Reported by Dignity Health
Purdue University Uncovers Data Security Incidents that Potentially Compromised PHI
42,600 Patients Potentially Impacted by Aultman Health Foundation Phishing Attack
More than 6,500 Patients Potentially Impacted by Minnesota Ransomware Attack
OCR Plans to Share HIPAA Violation Settlements with Breach Victims
538,000 Patients Notified of LifeBridge Health Data Breach
Indiana Physicians Group Suffers SamSam Ransomware Attack
Healthcare Data Breach Report: April 2018
Former Employee of Nuance Communications Stole PHI of 45,000 Patients
Eye Care Surgery Center Data Breach Impacts 2,553 Patients
8,300 Cerebral Palsy Research Foundation of Kansas Patients Informed of 10-Month Exposure of PHI
Spate of Phishing Attacks on Healthcare Organizations Sees 90,000 Records Exposed
Class Action Lawsuit Claims UnityPoint Health Mislead Patients over Severity of Phishing Attack
Capital Digestive Care Notifies 17,639 Individuals of PHI Exposure
3 University of Arkansas Medical Sciences Employees Fired for Violation of Patient Privacy
Protenus Report Highlights Extent of Insider Breaches in Healthcare
2,889 Patients of Scenic Bluffs Community Health Centers Notified of PHI Breach
PHI of 3,000 Patients Exposed Due to Mailing Printing Error
Malware Installed on Florida Hospital Websites May Have Provided Access to PHI
Employee Sent PHI After Being Fired
85,000 Patients Impacted by California Ransomware Attack
Web Portal of Transcription Service Provider Discovered to be Leaking PHI
Report: Healthcare Data Breaches in Q1, 2018
1,000 Mental Health Patients’ PHI Accidentally Disclosed for 3 and a Half Years
California Dept. of Developmental Services Notifies 582,000 Patients of Potential PHI Compromise
Texas Health Resources Notifies 4,000 Patients of Email Account Breach
Analysis of March 2018 Healthcare Data Breaches
Several Employee Email Accounts Compromised in UnityPoint Health Phishing Attack
Oxygen Equipment Manufacturer Discovers Credential Theft Incident Potentially Impacts 30,000
Integrated Rehab Consultants Takes 16 Months to Notify Patients of PHI Breach
Baptist Health Alerts Almost 1,500 Patients to Possible Abuse of Credit Card Details
63,500 Patients Impacted by Middletown Medical Data Breach
2 to 6 Year Jail Term for Receptionist Who Stole PHI from Dentist Office
Chesapeake Regional Healthcare Reports PHI of 2,100 Patients Was Stored on Lost Hard Drives
Oregon Data Breach Notification and Information Security Laws Updated
Verizon PHI Breach Report Confirms Healthcare Has Major Problem with Insider Breaches
Law Enforcement Notifies Cambridge Health Alliance About PHI Breach
6,800 CareFirst BCBS Members Impacted by Phishing Attack
Security Breaches in Healthcare in the Last Three Years
3,751 Patients’ PHI Exposed on Internet for More Than 30 Months
Data Breach Impacts Almost 14,000 Family Members of Subscribers
Server Misconfiguration Results in the Exposure of 42,000 Patients’ PHI
Research Suggests Healthcare Data Breaches Cause 2,100 Deaths a Year
Class Action Lawsuit Seeks Damages for Victims of CVS Caremark Data Breach
Theft of Unencrypted Laptop Sees Pathology Lab Patients’ PHI Exposed
ATI Physical Therapy Data Breach Impacts 35,000 Patients
Insider Data Breaches Continue to Plague the Healthcare Industry
Ransomware Attack on Finger Lakes Health Cripples Computers
RoxSan Pharmacy Notifies 1,049 Patients About 2015 Email Breach
Analysis of February 2018 Healthcare Data Breaches
Multiple Email Accounts Compromised at Primary Health Care
Almost 10,000 Individuals Notified of Improper PHI Disposal Incident by ShopRite
QuadMed Discovers PHI of More than 9,850 Patients Was Impermissibly Disclosed to Employees
PHI of 33,420 BJC Healthcare Patients Exposed on Internet for 8 Months
HIMSS Survey Reveals Top Healthcare Security Threats
Alabama Data Breach Notification Act Passed by State Senate
EmblemHealth Fined $575,000 by NY Attorney General for HIPAA Breach
16,000 Individuals Impacted by Two Email-Related Breaches
New York Surgery & Endoscopy Center Discovers 135,000-Record Data Breach
Window Envelope Privacy Breach Exposes ID Numbers of 70,320 Tufts Health Plan Members
Hacking Responsible for 83% of Breached Healthcare Records in January
Ransomware Attack Impacts 6,550 Jemison Internal Medicine Patients
Medical University of South Carolina’s Hard Line on HIPAA Violations Sees 13 Fired in a Year
Patients Notified of White and Bright Family Dental Server Hack
1,900 UVA Patients’ PHI Accessed by Hacker Behind FruitFly Malware
Sutter Health Notifies Patients of Business Associate Phishing Incident
AJMC Study Reveals Common Characteristics of Hospital Data Breaches
Another Major Triple-S Advantage Data Breach Has Occurred: 36,000 Affected
January 2018 Healthcare Data Breach Report
Coastal Cape Fear Eye Associates Ransomware Attack Impacts 925 Patients
$100,000 Settlement Shows HIPAA Obligations Don’t End When a Business Closes
How Many HIPAA Violations in 2017 Resulted in Financial Penalties?
Ron’s Pharmacy Services Notifies Patients of Email Account Breach
Aetna Seeks At Least $20 Million in Damages from Firm Responsible for HIV Status Data Breach
24,000 Decatur County General Hospital Patients Notified About Malware-Related Data Breach
PHI of 842 Western Washington Medical Group Patients Exposed
Partners HealthCare Notifies 2,600 Patients About May 2017 Breach of PHI
11,200 CarePlus Health Plan Members Notified of PHI Breach
Lawsuit Over HIPAA Breach by Mail Service Survives Motion to Dismiss
Phishing Attack on Business Associate Exposes Forrest General Hospital Patients’ PHI
PHI of 660 Eastern Maine Medical Center Patients Exposed
Massachusetts Online Breach Reporting Tool Launched: Data Breaches Soon to Be Publicly Listed
Class Action Lawsuit against Allscripts Filed following Ransomware Attack
Malware Causes 5,200-Record Data Breach at DC Assisted Living Facility
Aetna Agrees to Pay $1.15 Million Settlement to Resolve NY Attorney General Data Breach Case
Senate Attorney Judiciary Committee Advances South Dakota Data Breach Notification Bill
Pedes Orange County Discovers Physician Accessed and Disclosed PHI Without Authorization
Analysis of Q4 2017 Healthcare Security Breaches
Allscripts Ransomware Attack Impacts Cloud EHR and EPCS Services
Email Hack Sees PHI of 53,000 Pharmacy Patients Exposed
Summary of Healthcare Data Breaches in December 2017
Aetna Settles Class Action Lawsuit Filed by Victims of HIV Status Data Breach
Deadline for Reporting 2017 HIPAA Data Breaches Approaches
1,300 Patients’ Medical Records Viewed Without Authorization by Palomar Health Nurse
Indiana Health System Pays $55K Ransom to Recover Files
20% of RNs Had Breaches of Patient Data at Their Organization
43,000 Patients of Coplin Health Systems Potentially Impacted by Laptop Theft
St. Rose Dominican Hospital Patients Impacted by DJO Global PHI Breach
Lack of Encryption on Hard Drive Results in the Exposure of 9387 Patients’ PHI
Oklahoma State University Center for Health Sciences Informs Patients of PHI Breach
Phishing Attack on Florida Agency for Health Care Administration Impacts 30,000 Medicaid Recipients
Compassion Care Hospice Hack Impacts 1,128 Patients
Kaiser Permanente Reports Two Security Incidents Impacting 5,000 Members
Largest Healthcare Data Breaches of 2017
29,000 Patients Notified of Employee-Related Data Breach at SSM Health
Colorado Practice Hacked Twice in a Week
24,000 Patients Impacted by Emory Healthcare Data Breach
Jones Memorial Hospital Alerts Patients to Ongoing Cyberattack
Scrub Nurse Fired for Photographing Employee-Patient’s Genitals
Children’s Hospital Los Angeles Alerts Parents to Impermissible Disclosure of Children’s PHI
Phishing Attack on Colorado Mental Health Institute Sees PHI Exposed
Access to Dental Records Lost for 5 Days Due to Ransomware
Protenus Releases November Healthcare Data Breach Report
Almost 10,000 Patients Impacted by Nebraska Ransomware Attack
Potential Data Theft Incident Reported by Austin Manual Therapy
1,900 MidMichigan Medical Center Patients Notified After Documents Found in the Street
6,600 Patients Discover PHI Has Been Exposed
$2.3 Million 21st Century Oncology HIPAA Settlement Agreed with OCR
Texas and Pennsylvania Data Breaches Exposed More than 5,000 Patients’ PHI
Illinois Physicians Network Discovers Paper Records Missing from Storage Facility
November 2017 Healthcare Data Breach Report
Noncompliance with HIPAA Costs Healthcare Organizations Dearly
AMA Study Reveals 83% of Physicians Have Experienced a Cyberattack
Email Top Attack Vector in Healthcare Cyberattacks
Oklahoma Health Department Re-Notifies 47,000 of 2016 Data Breach
UNC Health Care Breach Potentially Impacts 24,000 Patients
11,350 Sinai Health System Patients Potentially Impacted by Phishing Attack
New Jersey Sleep Medicine Specialists Experience Ransomware Attack
880 Patients Potentially Impacted by Baptist Health Louisville Phishing Attack
18,500 Patients PHI Exposed After Multiple Email Accounts Were Compromised
Hospital Employee Fired for Accessing Medical Records Without Authorization
PHI of 28,000 Mental Health Patients Allegedly Stolen by Healthcare Employee
Medical Records from Pennsylvania Obs/Gyn Clinic Found at Public Recycling Center
UAB Medicine Alerts 652 Patients of PHI Exposure
Personal Information of New York Pharmacy Customers Exposed in Improper Disposal Incident
7,000 Patients Impacted by Extortion Attempt on Sports Medicine Provider
Cottage Health Fined $2 Million By California Attorney General’s Office
Second Unencrypted Laptop Stolen from Rocky Mountain Health Care Services
9,500 Patients Impacted by Medical College of Wisconsin Phishing Attack
November Healthcare Breach Barometer Report Highlights Seriousness of Insider Data Breaches
Suspected Phishing Attack on UPMC Susquehanna Exposes 1,200 Patients’ PHI
Florida Blue Data Breach Impacts 939 Individuals
Boxes of Medical Records Stolen from New Jersey Medical Practice
October 2017 Healthcare Data Breaches
MongoDB and AWS Incorporate New Security Controls to Prevent Data Breaches
Cook County Health and Hospitals System Patients Impacted by Experian Health Breach
2017 Data Breach Report Reveals 305% Annual Rise in Breached Records
Long-Term Malware Infection Discovered by Catholic Charities of the Diocese of Albany
Aging Agency Reports Ransomware Attack: 8,750 Patients Impacted
Healthcare Data Breach Analysis Questioned
Former Employees of Virginia Medical Practice Inappropriately Used Patient Information
TJ Samson Community Hospital Discovers Inappropriate Accessing of 683 Patients’ PHI
Stop Hacks and Improve Electronic Data Security Act (SHIELD Act) Introduced by NY AG
Lawnmower Engine Manufacturer Reports HIPAA Breach
Tips for Reducing Mobile Device Security Risks
8,000 Patients Notified of PHI Exposure After Office Burglary
932 Texas Children’s Health Plan Members’ PHI Emailed to Personal Account by Employee
Data Breach Highlights Danger of Using USB Drives to Store PHI
FirstHealth Attacked with New WannaCry Ransomware Variant
Beazley Publishes 2017 Healthcare Data Breach Report
RiverMend Health Email Breach Impacts 1300 Patients
Healthcare Phishing Attack Potentially Impacts 16,500 Patients
Healthcare Data Breaches in September Saw Almost 500K Records Exposed
Theft of Unencrypted Laptop Potentially Results in PHI Exposure
Namaste Health Care Pays Ransom to Recover PHI
8,362 Patients Potentially Impacted by Advanced Spine & Pain Center Breach
Q3, 2017 Healthcare Data Breach Report
Bill Introduced to Standardize State Data Breach Notification Laws
PHI of 10,500 Patients of an Illinois Psychiatrist Exposed
47GB of Medical Records and Test Results Found in Unsecured Amazon S3 Bucket
Summary of September 2017 Healthcare Data Breaches
Network Health Phishing Attack Impacts 51,000 Plan Members
Resold Fax Machine Prints Documents Containing PHI
Texas Patients Just Informed of 2015 CoPilot Data Breach
13,000 Patients Potentially Impacted by Mercy Health Love County Hospital Breach
Our Lady of the Angels Hospital Breach Impacts 1,140 Patients
PeaceHealth Employee Accessed Medical Records Without Authorization for Almost 6 Years
Ransomware Attack Potentially Impacts 128,000 Arkansas Patients
Another Healthcare Organization Attacked by The Dark Overlord
Lost Laptop Sees PHI of 3,725 Veterans Exposed
HIPAA Business Associate Data Breach Impacts 21,856 Individuals
Fall in Healthcare Data Breaches in August: Rise in Breach Severity
1,081 St. Louis Patients Alerted About Improper PHI Disclosure
Florida Healthy Kids Corporation Announces 2,000 Patients’ Impacted by Phishing Scam
5 Months to Notify Patients of Augusta University Medical Center Phishing Attack
Phishing Attack Results in the Exposure of PHI at Morehead Memorial Hospital
Hospital Employee Fired Over 26,000-Record Arkansas DHS Privacy Breach
Hospital Staff Discovered to Have Taken and Shared Photographs of Patient’s Genital Injury
Hand Rehabilitation Specialists Suffers Breach of Almost 13,000 Patients’ PHI
New York Hospital Sued for Disclosing Patient’s HIV Status to Employer
Patient Health Records Discovered in a Denver Alley
CareFirst Data Breach Lawsuit May be Heading to the Supreme Court
Healthcare Industry Tops List for Class Action Data Breach Lawsuits
3,400 Patients of Children’s Hospital Colorado Potentially Impacted by Email Hack
Mailing Error and PHI Breach Underscores Need for Greater Oversight
Community Memorial Health System Phishing Attack Reported
OCR Head Expects Major HIPAA Settlement for a Big, Juicy, Egregious Breach in 2017
Alaska DHSS Discovers Malware Infection and Possible PHI Breach
Former Employee of The Neurology Foundation Discovered to Have Obtained Patient Data
19,000 Impacted by Medical Oncology Hematology Consultants Ransomware Incident
106,000 Mid-Michigan Physicians’ Patients Potentially Impacted by Breach
Lawsuit Filed Against Aetna for Disclosure of HIV Status of Patients
Researchers Call for Updates to Guidelines for Emailing Patients
Website Update Exposes PHI of 8,800 Silver Cross Hospital Patients
Ransomware Attack on Salina Family Healthcare Impacts 77,000 Patients
Third-Party Mailing Error Sees Aetna Plan Members’ HIV Status Disclosed
Credit Monitoring Services Must Now Be Offered to Breach Victims in Delaware
MJHS Phishing Attack Result in the Exposure of 28,000 Individuals’ PHI
34,000 Impacted by Ransomware Attack at St. Mark’s Surgical Center
Institute for Women’s Health Hacked: PHI Potentially Compromised
Healthcare Hacking Incidents Overtook Insider Breaches in July
Lake Health Informs OB Patients of TriPoint Medical Center Breach
Ransomware Attack Suffered by Cove Family and Sports Medicine
August Sees OCR Breach Reports Surpass 2,000 Incidents
Surgical Dermatology Group Informs Patients of Cloud Services Provider Breach
Pacific Alliance Medical Center Announces Ransomware Attack
Missouri Care Notifies Medicaid Recipients of Subcontractor Breach
Documents Containing PII Discovered in Used Office Furniture
3,400 Patients’ PHI Potentially Compromised in City of Hope Phishing Attack
Maryland Data Breach Notification Law Updated
4,271 UC Health Patients Notified of Insider Data Breach
Northwest Rheumatology Discovers PHI Potentially Accessed During Ransomware Attack
Phishing Email Response Compromises PHI of 2,800 Patients
Protenus Provides Insight into 2017 Healthcare Data Breach Trends
Beazley Insights: 133% Increase in Healthcare Ransomware Demands
CareFirst Can Be Sued for Breach, Rules Court of Appeals
Nuance Communications Decides Not to Report NotPetya Attack to OCR
47% of Healthcare Organizations Have Experienced A HIPAA Data Breach in the Past 2 Years
10,000 Plastic Surgery Patients Informed of Ransomware-Related PHI Breach
Anthem Business Associate Data Breach Impacts 18,500 Plan Holders
Phishing Scam Fools University of Vermont Medical Center Employees into Revealing Login Credentials
4-Month Data Breach Discovered During Ransomware Investigation: 300,000 Patients Impacted
Protected Health Information Stolen in Vision Care Specialists Burglary
Hospital Employee Discovered to Have Accessed Medical Records Without Authorization for 14 Years
NotPetya Attack Continues to Disrupt Nuance Communications’ Services
U.S. Data Breaches Hit Record High
Ransomware Attack Investigation Reveals 15-Month Security Breach
Rosalind Franklin University of Medicine and Science Phishing Attack Sees PHI Compromised
Detroit Medical Center Discovers Agency Employee Disclosed Patients’ PHI
Ivinson Memorial Hospital Affected by FastHealth Security Breach
PHI of 15,000 UC Davis Health Patients Compromised in Phishing Attack
University of Iowa Health Care Discovers PHI Was Exposed Online for 2 Years
Almost 12,000 Records Compromised in Two New Ransomware Attacks
Lost Backup Drive Contained PHI of More than 500 EEG Patients
Indiana Medicaid Recipients Alerted to Potential Data Breach
Tampa Bay Surgery Center Notifies 26,000 of PHI Theft
White Blossom Care Center Notifies Residents of Improper PHI Access
Cleveland Medical Associates Attacked with Ransomware
Family Tree Health Clinic Announces Ransomware Attack
Experian Health Accidentally Sends PHI to Incorrect Individuals
Aetna Error Sees PHI of 5,000 Individuals Exposed Online
Airway Oxygen Inc. Ransomware Attack Impacts up to 500,000 Individuals
World’s Largest Data Breach Settlement Agreed by Anthem
Hard Drive Theft Sees Data of 1 Million Individuals Exposed
2,859 Patients Impacted by Improper Disposal at St. Thomas Rutherford Hospital
Texas Health and Human Services Commission Reports Improper Disposal of 1,800 Patient Records
Healthcare Data Breach Costs Fall to $380 Per Record
May’s Healthcare Data Breach Report Shows Some Incidents Took 3 Years to Discover
Torrance Memorial Medical Center Reports Email Account Compromise
Delayed Breach Notification Sees CoPilot Fined $130,000 by NY AG
OCR’s Wall of Shame Under Review by HHS
Sound Community Services Discovers Email Account Breach
Double Burglary Sees Connecticut Patients’ PHI Exposed
Austin Medical Center Discovers Patient Data Was Accessible Via Internet
WannaCry Ransomware Continues to Cause Problems for U.S. Hospitals
North Dakota Department of Human Services Notifies 2,452 Medicaid Recipients of PHI Exposure
Plastic Surgery Clinic Employee Suspected of Stealing 15,000 Patient Records
Trios Health Discovers Employee Accessed EHR Without Authorization for 41 Months
Molina Healthcare Patient Portal Discovered to Have Exposed Patient Data
Children’s Mercy Hospital Discovers Unauthorized Website Exposed 5,500 Patients’ PHI
Beacon Health Employee Improperly Accessed 1,200 Patient Records Over 3 Year Period
Arizona Department of Health Services Notifies 2,500 Patients of Potential Loss of PHI
Stolen Electromyography Device Contained 836 Patients PHI, says SSM Health
Impermissible Disclosure of HIV Status to Employer Results in $387,000 HIPAA Penalty
Leading Cause of Healthcare Data Breaches in April was Hacking
HIPAA and Ransomware: Healthcare Organizations Reminded of HIPAA Rules Relating to Ransomware
Rite Aid Announces Breach of Its Online Store
Patients’ Email Addresses Accidentally Disclosed by Rutland Regional Medical Center
Coney Island Hospital Supervisor Allowed Unvetted Volunteer to Access PHI
Ransomware Attack Reported by Dallas Senior Living Community
PHI of Thousands of Patients of Bronx Lebanon Hospital Center Exposed Online
Security Breach Highlights Need for Patient Portals to be Pen Tested
Memorial Hermann Health System Hit with $2.4 Million HIPAA Fine
New Jersey IVF Clinic Hack Sees PHI of 14,000 Patients Potentially Compromised
Unencrypted Hard Drive Stolen from LSU Health New Orleans: 2,200 Individuals Impacted
Bitglass Publishes 2017 Healthcare Data Security Report
Survey Explores Trust in Healthcare Organizations’ Ability to Keep Data Secure
Two Harrisburg Practices Report Potential ePHI Breach
Greenway Health Ransomware Attack Stops 400 Clients from Accessing EHRs
Hill Country Memorial Hospital Discovers Email Account Compromise
PHI Potentially Compromised in Atlantic Digestive Specialists Ransomware Attack
Unencrypted Portable Devices are a HIPAA Breach Waiting to Happen
Lifespan Laptop Theft Exposes ePHI of 20,000 Patients
Wireless Health Services Provider Settles HIPAA Violations with OCR for $2.5 Million
OCR Settlement Highlights Importance of Obtaining Signed Business Associate Agreements
Cardiology Center of Acadiana Ransomware Attack Impacts 9,700 Patients
Employee Terminated for Improperly Dumping PHI
Amedisys Notifies Patients of Improper Disposal Incident
21 Employees Found to Have Accessed PHI Without Authorization
Protenus Publishes Healthcare Data Breach Report for March 2017
Ashland Women’s Health Reports Ransomware Attack
Virus Infection at Erie County Medical Center Forces Computer System Shutdown
918,000 Patients’ Sensitive Information Exposed Online
2017 Shaping Up to Be Another Record-Breaking Year for Healthcare Data Breaches
3,365 Patients’ Billing Records Potentially Stolen by Hacker
Mental Health Histories and Therapy Session Notes of 3,000+ Patients Sold On Darknet
Large Hospitals and Teaching-Focused Hospitals Face Greater Risk of Data Breaches
More than 55,000 Patients Impacted by ABCD Pediatrics Ransomware Attack
Phishing Attack Potentially Impacts 80,000 Patients of Washington University School of Medicine
Patients’ PHI Accidentally Sent to Media Outlets by Mecklenburg County
Estill County Chiropractic Patients Impacted by Ransomware Attack
Former Employee Accused of Stealing PHI of up to 160,000 Med Center Health Patients
Urology Austin Ransomware Attack Announced
Flowers Hospital Data Breach Lawsuit Awarded Class-Action Status
UNC Health Care Reports Exposure of 1300 Prenatal Patients’ PHI
Snapshot of Healthcare Data Breaches in February 2017
Back Up Drive Stolen: PHI of 1,291 Patients Exposed
Almost 18,000 Metropolitan Urology Patients Impacted by Ransomware Attack
Snooping St. Charles Health System Employee Accessed Almost 2,500 Patient Records
Zest Dental Solutions Alerts Customers to Payment Card Information Breach
Lack of Email Encryption Exposes PHI of 644 Raising St. Louis Participants
Unencrypted Backup Drive Containing 7 Years of PHI Stolen from Denton Heart Group
Server Compromise at Tarleton Medical: PHI Potentially Accessed
Virginia Commonwealth University Health System Discovers 3-Year HIPAA Breach
Email Error Impacts 6,500 Saliba’s Extended Care Pharmacy Patients
Sharp Healthcare Says Stolen Devices Contained PHI of Patients
Improper Disposal of PHI Discovered by Minneapolis Heart Institute
Healthcare Employee Accessed ePHI Without Authorization for 5 Years
Vendor Configuration Error Results in Exposure of 14,000 Individuals’ ePHI
North Carolina Department of Health and Human Services Email Breach Impacts 12,700
Vanderbilt University Medical Center Employees Inappropriately Accessed 3,000 Patients’ PHI
Berkeley Medical Center Employee Inappropriately Accessed 7,445 Patients’ Records
Theft, Hacking, Ransomware and Improper Accessing of ePHI – Attacks Coming from All Angles
American Senior Communities Says 17,000 Employees Impacted by W-2 Scam
Horizon BCBS of New Jersey Pays $1.1 Million for HIPAA Violation
Three Breaches of Physical Medical Records Impact at Least 4,100 Individuals
Citizens Memorial Hospital Latest Victim of W-2 Phishing Scam
Faxing Error Sees PHI Sent to Local Media Outlet
South Fulton Mental Heath Center Discovers Dumped Medical Records
Covered Entities Flirting with Fines for Late Data Breach Reports
Summary of January 2017 Healthcare Data Breaches Released
Automatic Email Forwarding Rule Sent 1,700 Patients’ PHI to Employee’s Personal Account
Singh and Arora Oncology Hematology Breach Notifications Sent After 5 Months
New York Giants Star and ESPN Agree to Settle Privacy Breach Lawsuit
Hacker Gains Access to Records of 4,668 Princeton Pain Management Patients
WellCare Health Reports Security Breach Affecting 24,800 Patients
Verity Health System Announces Details of 10K-Record Data Breach
Family Medicine East, Chartered Alerts 6,800 Patients to ePHI Exposure
$3.2 Million HIPAA Civil Monetary Penalty for Children’s Medical Center of Dallas
Email Account Compromised: 1,200 MultiCare Patients Affected
Hospital Employee Discovered to Have Improperly Accessed 6,200 Patient Records
Mailing Error Sees 1,126 Letters Sent to Patients’ Previous Addresses
South Carolina Hospital Reports Loss of Camera Containing Babies’ PHI
ePHI Improperly Accessed, Copied, and Lost by Employee
Theft of Unencrypted Laptop Exposes Wonderful Health & Wellness Patients’ ePHI
Court of Appeals Rules Horizon BCBS Class Action Has Standing Without Evidence of ID Theft
CoPilot Provider Support Services Alerts 220,000 Patients to Historic ePHI Incident
Hacking Group Attempts to Extort Funds from Cancer Services Provider
Protenus Releases 2016 Healthcare Data Breach Report
$2.2 Million Settlement for Impermissible Disclosure of ePHI
Potential ePHI Breach Impacts 3,600 Children’s Hospital Los Angeles Patients
Sentara Healthcare Informs 5,454 Patients of ePHI Breach
Highmark BCBS of Delaware Investigates Data Breach Affecting 19,000 Individuals
Brandywine Pediatrics Alerts 27,000 to Potential ePHI Breach
OCR HIPAA Enforcement: Summary of 2016 HIPAA Settlements
Atmore Community Hospital Employee Inappropriately Accessed 1,000 Patient Records
Cosmetic Surgery Center Reports Ransomware Infection: 11,400 Patients Impacted
Emory Healthcare Joins 28,000 Other Victims of MongoDB Ransom Attacks
Foreign Government-Backed Hacker Was Behind 2015 Anthem Breach
Fetal Tissue Firms Guilty of Systemic HIPAA Violations
11GB of Sensitive Data Left Unprotected by Department of Defense Subcontractor
Massachusetts Data Breach Notification Archive Now Available Online
108 L.A. County Employees Fall for Phishing Attack: 756,000 Impacted
Healthcare Pages Intercepted and Posted Online
Regular PHI Access Log Audits Can Prevent Major PHI Breaches
Ransomware Encrypts Health Data for Three Months; PHI Still Inaccessible
Patient Posts PHI of New Hampshire State Psychiatric Hospital Patients Online
UCLA Medical Center Investigates Potential Breach of Kanye West’s Medical Records
Increase in Ransomware and Cyberattacks Linked to Fall in Price of Health Data
Fairbanks Hospital Alerts Patients to Potential 3-Year Internal HIPAA Breach
Website Glitch Exposes Personal Information of KP Members
Community Health Plan of Washington Announces 400,000-Record Data Breach
Identity Thief Sentenced to 4 Years for Selling Stolen Rotech Healthcare Data
Oak Cliff Orthopaedic Associates Alerts Patients to Potential PHI Breach
November 2016 Worst Month for Healthcare Data Breaches: 57 Incidents Reported
Princeton Medicine Ransomware Attack Reported
Quest Diagnostics Announces 34,000-Record ePHI Breach
Further 4,100 Cardiac Patients Notified of Breach of ePHI
Lost CD Contained Social Security Numbers of 18,854 Health Plan Members
Ransomware Attack Reported by East Valley Community Health Center
Tampa General Hospital Settles Class Action Data Breach Lawsuit
Glendale Adventist Medical Center Fires Nurse for Inappropriately Accessing ePHI
Sagewood Retirement Community Attacked with Ransomware
OptumHealth New Mexico Announces 2000-Record Data Breach
1,745 Berkshire Medical Center Patients Impacted by Ambucor Health Solutions Breach
CHI Franciscan Health Alerts Patients to ePHI Exposure
Vascular Surgical Associates Hacking Incident Reported
Privacy Breach Reported by Wentworth-Douglass Hospital
Chiropractic Clinics Alert Patients to Billing Vendor Breach
Briar Hill Management Notifies 2,000 Individuals of February Laptop Loss
Eye Institute of Marin Notifies Patients of Ransomware Data Loss
Patients Notified of KinetoRehab Physical Therapy Laptop Theft
Healthcare Data Breaches Fell in October
Emblem Health Mailing Error Exposes Members’ Social Security Numbers
Horizon BCBS of New Jersey Privacy Breach Impacts 170,000 Members
Best Health Physical Therapy Fires Billing Service Provider for PHI Breach
Austin Pulmonary Consultants Reports Improper Disposal of PHI
Seguin Dermatology Announces Ransomware Attack: ePHI Access Likely
Ambucor Health Solutions Breach Impacts 2,500 Greenville Health System Patients
Broward Health Discovers Breach ‘Linked’ to Florida Identity Theft Gang
Kaiser Permanente Notifies Members of ePHI Exposure
Theft of Unencrypted Laptop Results in Exposure of 3,100 Patients’ ePHI
Subpoena Issued Demanding Release of OPM’s Anthem Audit
Seattle Indian Health Board and Florida Hospital Announce Privacy Breaches
Health Access Network Employee Fired for Improperly Accessing Patient Files
Physical Therapy Provider Discovers Cloud Storage Account Breach
BayState Health Discovers 13,000 Patients Impacted by Phishing Attack
2016 Set to be A Record Breaking Year for Healthcare Data Breaches
CalOptima Discovers Breach That Impacts 56,000 Members
Rainbow Children’s Clinic Ransomware Attack Resulted in Data Loss
Integrity Transitional Hospital Learns of Data Breach
St. Francis Health System Announces Extortion Attempt
Baxter Regional Home Health Alerts Patients to Potential PHI Exposure
Peachtree Orthopedics Discovers Patient Database Was Hacked
Boxes of Abandoned Veterans Services’ Files Discovered
Georgia Eye Center Discovers Insider Breach: 10,891 Patients Impacted
PHI of 6,000 Patients Unlawfully Accessed
Healthcare Vendor Pays Ransom After Backup System Failure
Urgent Care Clinic of Oxford Notify Patients of Hacking Incident
Central Ohio Urology Group Informs 300K Patients of PHI Theft
Martin Army Community Hospital Notifies Patients of Historic Data Breach
Action Taken Against Healthcare Employees for Fraud and Privacy Breaches
New Jersey Spine Center Pays Ransom to Unlock EHR
Ransomware Attack Announced by Keck Medical Center of USC
PHI Improperly Accessed via New England Healthcare Exchange Network
2,800 Members Affected by Geisinger Health Plan Mailing Error
California Anesthetist Alerts Patients to Improper Disposal of PHI
University Gastroenterology Reports Cyberattack
U.S. HealthWorks Announces Theft of Encrypted Laptop and Decryption Key
Californian Healthcare Provider Informs Patients of Ransomware Attack
King of Prussia Dental Associates Announces Potential PHI Breach
8.8 Million Healthcare Records Breached in August
Decatur Health Systems Inform 707 Patients of Potential PHI Theft
Highline Medical Center Notifies Patients of PHI Exposure
Medical College of Wisconsin Reports Email Breach
Patients Notified of Burrell Behavioral Health Cyberattack and PHI Exposure
Children’s Mercy Hospital Announces Breach of Children’s PHI
MedStar Health Cardiology Associates Terminates Employee for PHI Theft
New York State Psychiatric Institute Reports 22K-Record PHI Breach
PHI Breach Reported by LA County USC Medical Center
Appalachian Regional Healthcare Experiences Cyberattack
OCR Investigation into Bizmatics Data Breach is Closed
Dominican Hospital Informs Patients of Accidental PHI Disclosure
Orleans Medical Clinic Notifies 6,890 Patients of PHI Breach
Scan Health Plan Reports PHI Breach
PHI of Pulse Victims Improperly Accessed by Orlando Health Employees
Outer Banks Hospital Reports Loss of Two Thumb Drives Containing PHI
Rotech Healthcare Reports 967-Record PHI Breach
Cyberattack Reported by The Center for Neurological and Spinal Disorders
OCR to Increase Investigations of Small PHI Breaches
Potential PHI Exposure Reported by Californian Dentist
Valley Anesthesiology and Pain Consultants Reports 882,590-Record Data Breach
Athens Orthopedic Clinic Breach: No Money to Pay for Identity Theft Protection Services
655,000 Bon Secours Patients Notified of Potential PHI Breach
BA Error Exposes PHI of Patients for Four Months
Hacker Steals PHI of 23,000 Patients of Prosthetic and Orthotic Care
Potential 2,000 Record PHI Breach Reported by California Physician
Ransomware Infection Reported by Professional Dermatology Care P.C.
Banner Health Class-Action Claims 12 Months ID Theft Protection is Insufficient Reparation
Psychiatrist Violates Privacy of Oregon State Hospital Patients
Marin Medical Practice Concepts Pays Ransom for Decryption Keys
3.3 Million Record Breach Reported by BCBS Vendor
Largest Ever HIPAA Settlement: Advocate Health to Pay OCR $5.5 Million
Massive 3.7 Million Record Healthcare Cyberattack Discovered
Ukrainian Hacking Group Dumps 156GB of Central Ohio Urology Group Data
Uncommon Care PA Informs 13,674 Patients of Potential PHI Breach
American Family Care Announces 7200-Patient PHI Breach
Two Cases of Unauthorized PHI Access by Employees Reported
StarCare Specialty Health System Reports Potential PHI Breach
Farmington Medical Group Confirms Cyberattack
Details Emerge on Laser Dermatologic Surgery Center Data Breach
Athens Orthopedic Clinic Confirms Cyberattack: TDO Dumps More Data
Midland Healthcare Providers Inform Patients of Privacy Breach
2.75 Million Dollar HIPAA Settlement Reached with UMMC
Sunbury Plaza Dental Discovers Theft of Patient Files
Medical Office Documents Discovered in Rock Springs Dumpster
Lasair Aesthetic Health Notifies Patients of Privacy Breach
CareFirst Inc. Data Breach Lawsuit Dismissed for Lack of Standing
Arkansas Spine & Pain Informs Patients About Bizmatics Security Breach
PHI Exposed Due to Retirement Systems of Alabama Website Error
Pennsylvania Ambulatory Surgery Center Alerts 13K Patients to Ransomware Attack
Stolen Ultrasound Machines Contained PHI, says Kaiser Permanente
Major 2016 Healthcare Data Breaches: Mid Year Summary
Another Hacked Healthcare Database Listed for Sale: Some Victims Confirmed
North Ottawa Medical Group Notifies 22,000 of Bizmatics Breach
Midland Memorial Hospital Announces Potential PHI Breach
California Dept. of Corrections and Rehabilitation Reports Health Care Facility Privacy Breach
Colorado Allergy Clinic Reports Ransomware Attack
Potential Privacy Breach at Planned Parenthood Dubuque Health Center
Philadelphia Business Associate Agrees to $650,000 OCR Settlement
Massachusetts General Hospital Reports PHI Incident
Pruitt Health Alerts Patients to Potential Privacy Breaches after Two Break-ins
Criminal HIPAA Case: Conviction for Respiratory Therapist
Three Hospitals’ Medical Devices Hacked Using Ancient XP Exploits
655,000 Health Records from Unreported Data Breaches For Sale on Darknet
Case Manager Duped naviHealth; Dignity Health Alerts Patients to Privacy Breach
Bizmatics Data Breach Victim Count Rises to Almost 177,000
Nurse Charged with Bank Fraud: HIPAA Breach Trial for Respiratory Therapist
Texas Health and Human Services Commission Notifies 600 of PHI Exposure
Indiana Attorney General’s Office Investigates Dumping of Medical Records
16K ENT and Allergy Center Patients Affected by Bizmatics Breach
BA Printing Error Exposed PHI of Walmart Pharmacy Patients
Aspen Hospital Sued for HIPAA Breach by Former Employee
Ponemon Institute Publishes 2016 Cost of Data Breach Study
Kern County Mental Health Department Announces Privacy Breach
Two More Healthcare Organizations Inform Patients of Bizmatics Breach
Cloud-Based EHR Company Settles with FTC over Alleged Privacy Violations
12,500 Drug and Alcohol Abuse Program Patients Impacted by San Juan County Hack
Washington DC VA Medical Center Breach Exposes PHI of 1,062 Veterans
Two Healthcare Providers Announce Billing-Related PHI Breaches
Up to 400,000 Prisoners’ PHI and SSNs Exposed
Anthem Data Breach Lawsuit Heading for Trial
Head of House Select Investigative Panel Calls for HIPAA Investigation into Abortion Clinic PHI Disclosures
ProMedica Uncovers Unauthorized Accessing of PHI by 7 Employees
Integrated Health Solutions Notifies 20K Patients of EHR Breach
40K Podiatry Patients Warned of PHI Exposure
Class-Action Lawsuit Filed Against Sharp Grossmont Hospital for Video Privacy Breach
Tucson Emergency Room Patients’ PHI Stolen from Physician’s Vehicle
Medical Colleagues of Texas Hacking Incident Impacts 68K Patients
95K More Patients Discovered to Have Been Impacted by Bizmatics Data Breach
ACLU Claims Myriad Genetics Violated HIPAA Rules by Withholding Genetic Data
Apology Issued by Sharp Grossmont Hospital for Filming and Sharing Videos of Obstetrics Patients
4000 Michigan Chiropractic Patients Notified of Potential Data Breach
Zocdoc Notifies Patients of Breach Discovered in June 2015
Department of Veteran Affairs Seeks Vendors to Search for Stolen Data
2,100 Veterans Had Their PHI Exposed in April
Laptop Thefts Expose the PHI of California Healthcare Patients
Ponemon: 89 Percent of Healthcare Organizations Have Experienced a Data Breach
Florida Medical Clinic Notifies 1,000 Patients of Privacy Breach
UnityPoint Health’s Allen Hospital Discovers 7-Year Privacy Breach
Transcription Service Provider Exposes PHI of Children’s National Health System Patients
Are You Prepared for A Business Associate Data Breach?
Bay Area Children’s Association Notifies Patients of PHI Theft
Ohio MHAS Exposes PHI of 59K Patients by Mailing Surveys on Postcards
Saint Agnes Medical Center Victim of BEC Attack
Data Breach Class-Action Lawsuit Denied by Penn. Superior Court
Buffalo Medical Group Says Alleged HIPAA Violations Are Unfounded
HIPAA Business Associate Notifies Patients of Data Breach
Verizon: Human Error the Main Cause of Security Incidents
Mailing Error Exposes PHI of American Fidelity Customers
Edwin Shaw Rehabilitation Hospital Patients’ PHI Exposed
Vail Valley Medical Center Notifies 3,118 Patients of Unauthorized PHI Disclosure
Mail Delivery Truck Stolen: 2400 Inland Empire Health Plan Members’ PHI Exposed
Flash Drive Theft Exposes PHI of 2700 Oneida Health Center Dental Clinic Patients
Wyoming Medical Center Phishing Attack Exposes PHI of 3,184 Patients
New York Hospital Fined $2.2 Million for Unauthorized Filming of Patients
Patient Treatment Centers of America Notifies Patients of Hacking Incident
A Decade of Data Breaches: Healthcare Industry Data Breaches Have Exposed 176.5 Million Records
PHI of Alabama CVS Pharmacy Patients Exposed
VA Monthly Information Security Report Shows Fall in Breach Victims in March
Atique Orthodontics Reports Potential Breach of Patient PHI
Federal Court Rules Data Breach Covered by CGL Insurance Policy
1400 Healthcare Organizations Notified of American College of Cardiology Privacy Breach
Buffalo Medical Group Patients Notified of Alleged HIPAA Violation
Anthem’s Request to Access Breach Victims’ Computers Denied
Florida Department of Health Notifies Palm Beach County Patients of PHI Breach
OptumRx and Einstein Health Network Inform Patients of Recent PHI Breaches
Rogue Employee Steals PHI of 2,000 Pointe Medical Services Patients
7,500 Patients Notified of Indian Health Service PHI Theft
Phishing Attack Reported by Metropolitan Jewish Health System Inc.
Ransomware and HIPAA: Are Attacks Reportable?
Vendor Error Places Mind Springs Health Patients’ PHI in Search Engines
2,200 Michigan Dental Patients Notified of PHI Breach
Data-Capturing Virus Discovered by Mercy Hospital in Iowa City
February Information Security Report Released by VA
St. Joseph Health Settles Class Action Data Breach Lawsuit
JASACare Email System Breach Impacts 1,154 Patients
Virtua Medical Group Vendor Error Puts Patient Data in Search Engines
OCR Announces $3.9 Million Settlement with Feinstein Institute for Medical Research
6,893 Patient Records Exposed Due to Centers Plan for Healthy Living Laptop Theft
EHR of Geauga Medical Center Improperly Accessed by Employee
$1.55 Million HIPAA Settlement for Lack of BAA and Risk Analysis Failures
Stolen Premier Healthcare Laptop Returned: No PHI Accessed Says Pondurance
Laborers Funds Administrative Office of Northern California Reports HIPAA Breach
Lost Flash Drive Exposes Data of Karmanos Cancer Center Patients
80% of Organizations Concerned About Large Data Breaches
Almost 13000 Affected by Recent Pharmacy Data Breaches
Ponemon: 48% of Healthcare Organizations Suffered a PHI Breach in the Past Year
Patients Warned of PHI Exposure After Premier Healthcare Laptop Theft
21st Century Oncology Advises 2.2M Patients of Hacking Incident
Nursing Home Residents’ PHI Accidentally Disclosed by Iowa DHS
Staff Email Accounts Compromised in City of Hope Hospital Phishing Attack
Data Breach Discovered by the Eye Institute of Corpus Christi
FHN Memorial Hospital Announces Hard Drive Theft and PHI Exposure
Cost of the Excellus BlueCross BlueShield Data Breach Reaches $17.3M
HIPAA-Breaching Email Exposed BJC HealthCare Patients’ Data
Privacy Breach Reported by Bay Area Chiropractic Center
Valley Hope Association Notifies Patients of Unencrypted Laptop Theft
Mississippi’s Magnolia Health Fires Employee for PHI Disclosure
480,000 Patients Notified of Radiology Regional Center PHI Exposure
Man Indicted for 5 Year Identity Theft Spree Used Memphis Neurology Data
Healthcare Ransomware Infection Removed After $17K Ransom Paid
California Attorney General Publishes 4-Year Data Breach Report
Alliance Health Reports 30-Month Health Data Exposure
Magnolia Health Victim of Spoofed Email Scam
Cyberattackers Demand $3.6M Ransom from Hollywood Hospital
911 Dispatcher Fired for Privacy Violation
OHSU Hard Drive Stolen: PHI of Neonatal Patients Exposed
Rogue Employee Steals 24000 Jackson Health System Patient Records
HIPAA Business Associate Reports 31K Record Data Breach
Apple Health HIPAA Breach Affects 91K Medicaid Recipients
Oceans Acquisitions Announces Laptop Theft and Data Breach
Two Employees Fired for Jason Pierre-Paul HIPAA Breach
OIG Publishes Findings of Utah Department of Health Security Audit
Borgess Rheumatology Informs 700 Patients of Mailing Error
Louisiana Healthcare Connections Breach Affects 13K Medicaid Recipients
Another Tampa General Hospital Employee Indicted for PHI Theft and Fraud
Medicap Pharmacy Warns Des Moines Customers of Potential Data Breach
Lincare Inc to Pay $239,800 CMP for HIPAA Violation
Prime Healthcare Services Hit with Privacy Breach Lawsuit
Hawai‘i Medical Service Association Privacy Breach Affects 10,800
Wayne Memorial Hospital Fires Nurse Aide for Inappropriate PHI Access
98 Percent of Compromised Healthcare Records Due to Hacking
Community Mercy Health Partners Notifies Patients of November Data Breach
St. Luke’s Cornwall Hospital Notifies 29K Patients of Data Exposure
Six Missing Hard Drives Reported by Centene: 950,000 Members Affected
Patients of Alaska Orthopedic Specialists Advised of PHI Breach
Californian Oncologist Announces PHI Theft
Snapchat Video Posting Gets Nursing Assistant Fired
Phishing Attack Suffered by Brigham and Women’s Hospital
Department of Veteran Affairs 2015 Privacy Violations
VA Reports Fall in Privacy Breach Victims in December
MaineGeneral Discovers Additional PHI Was Exposed in November Data Breach
25K Affected by New West Health Services Data Breach
Telephone Phishing Scam Impacts 21K Blue Shield of California Subscribers
New Oregon Breach Notification Law Comes Into Effect
IU Health Arnett Security Breach Impacts 29K Patients
Exposure of PHI Grounds to Sue for Damages, Rules Mass. Judge
Breach of Washington Township Health Care District Data
Child Welfare Agency Employee Emails 970 Records to Personal Email Address
Potential VA PHI Breach Impacts 1,000 Oregon Veterans
Improper Dumping of Patient Medical Records Continues
Repeat HIPAA Violators Revealed: Database of Offenders Created
Mailing Error Results in PHI Exposure of Belgrade Regional Health Center Patients
Dermatologist Email Error Exposes 14,910 Patients’ SSNs
Mailing Error Exposes PHI of PHP Health Plan Subscribers
Allina Health System Alerts 6,000 About Improper PHI Disposal
HealthSouth Rehabilitation Hospital Announces 1,359-Record Data Breach
Mental Health Counseling Records Stolen in Office Burglary
Nursing Home Snapchat Photo Sharing Scandal Uncovered
Hundreds of Medical Records Found Scattered in Street
New Mexico Department of Health Data Breach Affects 561 Individuals
November VA Information Security Report: 693 Veterans’ Data Exposed
Only Half of Companies Have a Computer Security Incident Response Team
Texas Healthcare Employee Facing Jail for Disclosure of Patient Health Information
New Study Highlights Potential Fallout After a Data Breach
$750,000 HIPAA Fine for University of Washington Medicine
Former Northwest Primary Care Employee Stole 5,372 Patient Records
Record Breaking Healthcare Data Breaches in 2015 May be Eclipsed in 2016
Five New Cases of Healthcare Employee Data Theft Reported
Healthcare Email Phishing Scam Claims 946 Victims
UCHealth Employee Violates HIPAA Privacy Rule
MaineGeneral Health Hacked
Another HIPAA Breach Courtesy of a Printing Error
Cyberattack Simulation Exercise Tests Incident Response Readiness
Californian Health Plan Administrator Announces 35K-Record Data Breach
Santa Barbara Public Health Dept. Announces HIPAA Privacy Rule Violation
Cottage Health System Security Audit Reveals 11K-Record Data Breach
Centegra Data Breach Exposes PHI of 3,000 Patients
HIPAA Violation Fine of $3.5 Million for Triple-S
Pathways Professional Counseling Reports Theft of Laptop Containing SSNs
Healthcare Industry Data Breaches in 2015
OCR Settlement Reached with Lahey Hospital
Howler of a HIPAA Breach: 15K Social Security Numbers Emailed to Patients
PHI Data Breaches Occur in Most Industry Sectors
FTC Data Breach Case Against LabMD Dismissed
VA Privacy and Security Incidents Decreased in October
Boxes of PHI Left Unprotected at Former Children’s Psychiatric Facility
Even HHS Involvement Did Not Stop Months of Fax Privacy Breaches
Major Data Exfiltration Discovered at Muhlenberg Community Hospital
North Carolina DHHS Reveals 524-Patient Record Data Breach
University of Cincinnati Email Errors Result in 1,064-Patient Data Breach
Senators Demand Answers from CMS and OCR About Medical Identity Theft and Fraud
Healthcare Provider Not Liable for Social Media HIPAA Violation
16K Children’s Medical Records Potentially Stolen in East Texas
Conn. OIG Reaches $90K Settlement with Hartford Hospital and BA Over 2012 Laptop Theft
Huntington Medical Research Institutes Discovers Two HIPAA Breaches
Answers Demanded From Dept. Veteran Affairs After Social Security Numbers Exposed
BeHealthy Mailing Error Sees PHI Printed On Outside of Envelopes
Nevada Lab Technician Indicted on Healthcare Data Theft Charges
Woodhull Medical and Mental Health Center Data Breach Report
St. Francis Health Employee Fired for 20 Month Privacy Violation
Hack Discovered by Emergence Health Network: 11K Records Exposed
September VA Information Security Report Shows Increase in Privacy Incidents
Aspire Home Care and Hospice Cyberattack Announced
Unencrypted Device Theft Continues to Plague HIPAA CEs
Baptist Health Data Breach Announced: 6500 Records Exposed
PHI of 1,615 Medicaid Patients Potentially Exposed by NC DHHS
Unencrypted Laptop Theft Exposes PHI of 9,300 University of Oklahoma Patients
Cost of Health System Cyberattacks to Rise to $305 Billion
Data Breach Laws in California Updated
Encryption Almost Prevents Humana Data Breach in Wisconsin
Alleged Intimidation and Potential VA HIPAA Violations Investigated
CarePlus Discovers Privacy Breach Affecting 1400
Doctors Stand Accused of Using EHR to Steal Patients
Ponemon 2015 Cost of Cyber Crime Study Published
Printing Errors Cause 3 Health Plan Data Breaches
Class-Action Lawsuit for Flowers Hospital Data Breach Moves to Discovery Phase
Sentara Heart Hospital Reports Theft of Two Portable Hard Drives
UCLA Health Cleared in Landmark Patient Privacy Case
How to Respond to a Healthcare Data Breach
Breach of Patient Data Reported by Barrington Orthopedic Specialists
Document Scanner Error Exposes PHI of Silverberg Surgical and Medical Group Patients
Bogus Doctors Behind Horizon Blue Cross Blue Shield of New Jersey Data Breach
Car Theft Results in Exposure of PHI of 2900 Individuals
Healthcare Data Breach Report: August 2015
New Data Breaches Reported by Kindred Healthcare and Rite Aid
Glidewell Laboratories Reports Breach of Employee Data
PHI of 54K Molina Healthcare Members Stolen by Former CVS Employee
Senator Calls for Answers over Excellus Data Breach; Lawyers Seek Damages for Victims
Systema Software Data Breach: 1.5M+ Medical Records Accessible via AWS
Healthcare Industry Tops 2015 Data Breach List
VA Data Breaches Fell Dramatically in August
LSU Health Laptop Theft Exposes PHI of at Least 5,000 Minors
Burglary of Vermont Medical Practice Reported: PHI of 2,000 Patients Exposed
Sutter Health Discovers 2013 HIPAA Breach Affecting 2.5K Patients
Sony Data Breach Lawsuit Settlement Agreed
Oakland Family Services Phishing Attack Claims 16K Victims
10M-Record Cyberattack Reported by NY Health Insurer
VA: PHI Incidents Fall in July; Breach Notification Letters Increase
UCLA Health Cleared in Data Breach Lawsuit
The UCLA Health Data Breaches Continue: Further 1,242 Records Exposed
The Age of the Healthcare Data Breach: 40% of Americans Now Victims
Frisco Psychiatrist’s Computer Stolen from Vehicle Trunk: PHI Exposed
Employee Data Theft Announced by Merit Health
UCLA Health Patient Receives 9 Incorrect Breach Notification Letters
Akron Children’s Hospital Reports Loss of Voice Recordings
University of Oklahoma Department of Obstetrics and Gynecology Announces Data Breach
Potential PHI Disclosure After Employee Works from Home with Hospital Data
Mass Violations of Patient Privacy at Virginia Clinic
CareFirst Blue Cross Blue Shield Breach Lawsuit Filed
HIPAA Breach Notice Issued After Colorado Medicaid Mailing Error
Class-Action for Advanced Data Processing Breach Denied
HIPAA Data Breach Report July 2015
Increased Risk of Harm Not Grounds For Advocate Health Breach Lawsuit
Massachusetts Hospital Reports Missing Unencrypted Thumb Drive
UCLA Health Data Breach Lawsuits Mount
Hospital Employee Steals Protected Patient Data to Commit Identity Theft
Illegal Dumping of Medical Records Exposes PHI of Ohio Drug Rehab Clinic Patients
Prima Care Discovers Improper Dumping of PHI: 1,651 Patients Affected
Urology Associates Reports 6500-Record Data Breach
HIPAA Breach: 1,111 Veteran Records Improperly Dumped
Husband-Wife Tax Fraudsters Get 231 Months Jail Time
Foreign Hacker Responsible for Siouxland Pain Clinic Data Breach
North East Medical Services HIPAA Breach Reported: 69,246 Affected
Data Breach Sparks Medical Informatics Engineering Lawsuit
Hackers Stole Anthem Data for Espionage; Not Fraud
Email Error Results in Massachusetts General Hospital Data Breach
Unauthorized Email Exposes PHI of 855 Advanced Radiology Consultants Patients
East Bay Perinatal Medical Associates Data Breach Announced
Indiana Attorney General Advises Hoosiers to Exercise Extreme Caution after MIE Data Breach
Lawsuit Filed Against Children’s National Medical Center for 2014 Data Breach
McLean Hospital Brain Donators Have PHI Exposed
OhioHealth Reports Loss of Flash Drive Containing 1,006 Protected Health Records
New Information Released on Medical Informatics Engineering Data Breach
HealthFirst Notifies 5,300 Patients of 2-Year Data Breach
Georgia Division of Aging Services Data Breach Affects 3,000
Class Action Filed Against UCLA for 4.5 Million-Record Data Breach
Pharmacy Technician Suspended over 100-Patient Data Theft
Mailing Error Exposes PHI of Integral Health Plan Members
Class Action Filed Against Charleston Area Medical Center for 2013 Data Breach
Plea Deal Taken by Hospital ID Thief after Filing $489,000 in False Tax Claims
UCLA Health System Hacked: 4.5 Million Patient Records Exposed
PHI Retention by Employees not a HIPAA Breach Says Ark. Court
Insurance Service Office Announces Breach of Social Security Numbers
2015 Biannual Healthcare Data Breach Report Released
BCBSA Offers Identity Theft Protection Services to All 106 Million Members
UPMC Health Plan Data Breach Affects 722 Subscribers
Computer Theft Exposes Data of 560 ABCBS Applicants
Healthcare Data Breach Report: June 2015
PHI Falls from Sky at Soccer Parade
Study Highlights Importance of Conducting Regular Malware Scans
Mailing Error Causes Howard University Privacy Breach
New OCR HIPAA Settlement: St. Elizabeth Medical Center to Pay $218,400 for Violations
Ohio University Hospitals Worker Fired for Improper EHR Access
Florida Hospital Submits Motions to Dismiss Two Data Breach Lawsuits
Jason Pierre-Paul Finger Amputation Disclosure Violates HIPAA Rules
Stolen UCSF Laptops Contained PHI of Research Participants
Rhode Island Identity Theft Protection Act Updates Breach Notification Laws
Another Orlando Health Data Breach Reported: 3,200-Records Exposed
Ill. Insurer Discovers PHI Disclosure Caused by Software Glitch
Healthcare Providers Seek Protection from HIPAA Breaches
Privacy Incident Reported by Meritus Medical Center
CFO Sentenced to Jail for False Meaningful Use Claims
27 Year Sentence Issued for PHI Theft and Fraud
Flash Drives Go Missing from Lancaster County EMS
Penn State Hershey Medical Center Announces HIPAA Breach
HIPAA Breach for Handbags: Manhattan DA Indicts 8 in ID Theft Ring
Akorn Database for the Highest Bidder: Hacker Holds Pharma Data Auction
L.A. Medical Center Employee Causes 4,859-Record HIPAA Breach
MDL Established for Anthem Data Breach Class Action Lawsuits
Florida Hospital Group Notifies Patients of Employee Data Theft
Texas Department of Aging and Disability Services Discovers Potential 8-Year HIPAA Breach
Hackers Steal Patient Data from Medical Software Company
Website Error Exposes PHI of Blue Shield of California Members
Billing Business Associate Exceeds Breach Notice Period by 7 Months
Success 4 Kids & Families Reports Data Breach
Arkansas Medical Assistant Pleads Guilty to Defrauding Patients
Employee Causes 4K Data Breach at Metropolitan Hospital Center
PHI Potentially Exposed in Fred Finch Youth Center Break-In
Crown Point Medical Tests Discovers HIPAA Violation
UPMC Data Breach Not Grounds for Class Action Says Judge
Conn. Data Breach Bill Demands Year of ID Theft Protection for Victims
OPM 4M-Record Data Theft Linked to Recent HIPAA Data Breaches
Rite Aid Announces PHI Exposed in Baltimore Riots
2015 Healthcare Data Breaches Pass 100-Incident Milestone
Medical Records Used for Telephone Phishing Scam in Chicago
Department of Veteran Affairs Reports 158% Hike in Data Breaches
65 Boxes of Improperly Dumped Medical Records Discovered
Alaskan Drug Kingpin and Aide Jailed for HIPAA Violations
U.S HealthWorks HIPAA Breach Raises Issue of Data Encryption
Patients’ Patience Pays Off: Class Action Payout for InSync HIPAA Breach
Buffalo Heart Group Suffers Insider HIPAA Breach
Class Action Lawsuit Prepared for 20K-Record MML Data Breach
Unity Recovery Group Discovers 12-Month HIPAA Breach
Ohio Radiologist Disciplined for HIPAA Violation
Ponemon: Data Breach Cost Increases to $154 per Record
Philadelphia Judge Tosses Class Action Data Breach Lawsuit
Beacon Health System Learns of Cyberattack Spanning 14 Months
800 Patients of Pittsburgh Jefferson Hospital Affected by HIPAA Breach
URMC Employee Breaches HIPAA Providing PHI to New Employer
Careless Talk Sees University of Iowa Worker Fired for HIPAA Privacy Violation
Hospital HIPAA Breaches Go Haywire: 40 CEs Notified of MML Breach
Quantifying the Effect of a Data Breach on Brand Image
Sutter Health Physician Suffers Second 2015 Data Breach
Employee Email Causes Second HHC Hospital HIPAA Breach
CareFirst BCBS Reveals 1.1 Million-Record Cyberattack
Consolidated Tribal Health Project Learns of Employee HIPAA Breach
Burglary at Minn. Associated Dentists Exposes Patient Health Records
Jacobi Medical Center Reports 90,060 Patient Records Compromised
White Plains and Conemaugh MMC Hospitals Announce HIPAA Breaches
Thomas Boyd Hospital: Potential HIPAA Violations; Theft Allegations; No exposed PHI
Holston Valley Medical Center Reports HIPAA Breach
No Insurance Cover for Cottage Health HIPAA Breach?
UT Southwestern Medical Center Announces Data Disclosure
Metro Health System HIPAA Breach: Malware Claims 981 Victims
Brown County Supervisors Meet to Discuss Potential HIPAA Privacy Violation
Indiana State Medical Association HIPAA Breach Update
Cost of Data Breaches to Hit $2.1 Trillion by 2019
Illinois AG Files Improper Dumping Lawsuit Against HIPAA Business Associate
2014 HIPAA Privacy and Security Breach Report
Human Error Main Cause of Data Breaches Says Baker Hostetler Report
Orlando Health Notifies 68 After PHI Found in Neighborhood Driveway
Hacking Tops List of 2015 Data Breach Causes
The Cost of HIPAA Non-Compliance
Surprising Results from 2014/2015 HIPAA Breach Analysis
Oregon CO-OP Suffers Laptop Theft and Breach Notification Snafu
Phishing Attack Causes Partners HealthCare System HIPAA Breach
LCO Health Center Investigates Potential HIPAA Violations
Saint Agnes Health Care Hack Exposes 25,000 HIPAA Records
Improper Disposal Nets Small Pharmacy $125K OCR HIPAA Penalty
26 Percent of Healthcare Organizations Have Suffered a Data Breach
Seton Family Of Hospitals Announces 39K HIPAA Breach
New HIPAA Breach Report Confirms Healthcare Hacking Increase
Symantec Study Shows Data Breaches Increased 23% in 2014
Class Action Lawsuit Filed Against Anthem with Evidence of Harm
HIMSS 2015: HIPAA Security: A Decade of Breaches
Denton County Health Dept Reports HIPAA Data Breach
HIPAA Violation Charge for ProMedica Bay Park Hospital Employee
Horizon Class Action Claim for HIPAA Breach Tossed
Current Risk of Fraud from 2012 Philadelphia Ambulance HIPAA Breach
HIPAA Breach Report: January 2015
Hattiesburg Clinic Notifies Patients of HIPAA Privacy Breach
March Sees Massive Hike in Healthcare Data Hacking
5 Class-Action Lawsuits Filed Against Premera for HIPAA Breach
Anthem 78.8 Million Breach Notification Letter Mailing Almost Finished
Investigations Mount into LifeWise HIPAA Breach
HIPAA Violation Warning Issued About Medical Record Subpoenas
Employees Steal 9,000 Patient Records From Florida Hospital
Premera HIPAA Breach: Insurer Certified as HIPAA Compliant
65% of Patients Would Avoid Companies that Suffered a HIPAA Breach
91 Million HIPAA Data Breach Victims Reported in Last 3 Months
Sacred Heart Health System Suffers Hacking HIPAA Breach
Advantage Dental HIPAA Breach Exposes More Than 150K Patient Records
Up to 11M Affected By Premera Health HIPAA Breach
Amedisys Discovers Data Encryption Alone May Not Prevent A HIPAA PHI Breach
HIPAA Breach Report: December 2014
Online Portal Glitch Causes California HIPAA Breach
Florida Nurse Accused of Stealing HIPAA-Covered Data and Exploiting the Elderly
HIPAA Breach Triggers IT Security Audit: Anthem Refuses
Indiana State Medical Association Suffers Major HIPAA Breach
Evansville Medical Center Hack Exposes HIPAA Data of 4,400
HIPAA Breach Reported After Theft of PHI from Wisconsin Physician’s Car
Veteran HIPAA Breaches Fell by Over a Third in January
Theft of HIPAA Records Reported by Texas Healthcare Provider
Potential HIPAA Violations by Minnesota Blue Cross Blue Shield Nurse and Hospital
Dallas Hospital Sued by Ebola Nurse for HIPAA Privacy Violation
Up to 18.8M Non-Customers Also Affected By Anthem Data Breach
HIPAA and ISPP Violations Cited in Aventura Hospital Damages Lawsuit
2014 Saw 25% Increase in HIPAA Breaches
Hospital Employee Receives 18 Month Jail Term for HIPAA Violations
Brookings Report: HIPAA Hacks Up 1,800 Percent
Central Texas Clinic Notifies 8,700 of HIPAA Breach
Analysts Suggest Link Between CHS and Anthem HIPAA Breaches
Anthem Data Breach Expected to Cost Over $100 Million
Details Emerge of Anthem HIPAA Breach
Burglary Causes 45,030-Patient HIPAA Breach at Aspire Indiana
HIPAA Breach Report: November 2014
HHS Reporting Deadline for 2014 HIPAA Breach Reports
Senior Health Partners Suffers 2.7K HIPAA Breach
UMass Memorial Medical Group Announces HIPAA Data Breach
Anthem Inc. Reeling After Behemoth 80M-Record HIPAA Breach
Sunglo Home Health Services Suffers HIPAA Breach
Sutter Health California Pacific Medical Center HIPAA Breach Announced
Mass. Marijuana Program HIPAA Breach Reported
Email HIPAA Breach Reported by St. Louis County Health Department
Safeway Fined $10 Million for Improper Disposal of Pharmacy Records and Waste
Error by BlueCross BlueShield of Tennessee Causes HIPAA Privacy Rule Violation
Inland Empire Health Plan Reports PHI Breach
Indiana Attorney General Issues $12,000 HIPAA Fine for Dumped PHI
HIPAA Breach Report: October 2014
10 Years of Abortion Records Found In Houston Warehouse
2013 USPS Security Breach Exposed the Health Information of 485K Employees
Major HIPAA Data Breaches Make 2014 a Landmark Year
Denver Medical Center Reports HIPAA Privacy Violation
Children’s Hospital Settles HIPAA Violations with Mass. Attorney General
Malware Responsible for Reeve-Woods Eye Center HIPAA Breach
HIPAA Breach Report: September 2014
Sony Pictures Confirms Breach Potentially Exposed HIPAA Data
Concern that Drug Company Use of Patient Data Circumvents HIPAA
Amedisys Hospice to be Investigated for Potential HIPAA Violation
Laptop Theft Causes HIPAA Breach Exposing Patient Data in Oregon
Highlands-Cashiers Hospital Reassures 25K Patients After Possible HIPAA Breach
Long Island Radiologist Arrested over HIPAA Violation
Employee Snooping Results in Exposure of 200K HIPAA Covered Records
Sony Pictures Hack Exposes Sensitive Employee Health Information
HIPAA Settlement Reached for Dumpster PHI Exposure
Business Associates Account for 40 Percent of HIPAA Breaches
Xerox Reported for 2 Million Record HIPAA Breach by Texas HHSC
HIPAA Breach Due to Improper PHI Disposal Affects 1,778 Minn. Patients
Detroit Thieves Use Stolen PHI to Commit Medical Identity Theft
Postal Workers Union Files Charges over Post Office HIPAA Data Breach
Beth Israel Fined $100,000 for HIPAA Data Breach
Court Dismisses CMIA Claim for $4 Billion in Damages for HIPAA Breach
Malware Potentially Exposes HIPAA Data at North Carolina Dermatology Clinic
HIPAA Breach Report: August 2014
Indiana Court Upholds $1.44M HIPAA Privacy Breach Award
Highmark Subsidiary Visionworks Hit by 75K HIPAA Breach
Connecticut Supreme Court to Allow HIPAA Negligence Claim
Connecticut Court Allows Claim for a Breach of HIPAA to Proceed
Data Breach Report Demonstrates Why Healthcare Data Encryption is Essential
Potential HIPAA Violations Settled by Washington County Government
Organizations Urged to Take Notice of HIPAA Omnibus Rule
40,000-Record Healthcare Database Stolen from Storage Shed in New Jersey
Data Privacy Breach to Cost Tenet Healthcare up to $32.5 Million
Touchstone Medical Imaging Suffers 307K Patient Data Breach
Cybercriminals Target Health Care Organizations for Patient Medical Data
Pennsylvania Hospital Advises of Data Breach
Colorado Behavioral Health Patients Advised of HIPAA Breach
Data Breaches Prompt Change in Florida Law
HIPAA Breach Report: July 2014
Community Health Systems HIPAA Breach Lawsuits Mount
HIPAA Audits to Recommence in 2015
Cedars-Sinai HIPAA Breach Worse than Feared
Aventura Hospital Suffers Third HIPAA Breach Exposing 82,601 Records
Data of 31K Patients Exposed by Potential HIPAA Breach at Utah Clinic
Your Name and Medical Condition in the Classified Ads
HIPAA Breach Report: June 2014
Fines for Violations Issued for HIPAA Non-Compliance and Data Breaches
Memorial Hermann Health System Announces 10K-Record HIPAA Breach
Iron Mountain X-Ray Theft Causes HIPAA Breach
Community Health Systems Cyber Attack Puts 4.5M Patients at Risk
Onsite Health Diagnostics Hack Exposes 60K-Patient Records
Federal Prosecutors Take Action for Criminal HIPAA Violation
HIPAA Breach Exposes 31K Records at Central Utah Clinic
HIPAA Breach Report: May 2014
HIPAA-Covered Data Stolen From Las Vegas Brain and Spine Surgery Center
HIPAA Breach Reported by Urological Associates of Southern Arizona
Plaintiffs HIPAA Privacy Case Against Advocate Health Dismissed
Parkview Health System Receives $800K HIPAA Privacy Rule Fine
Self Regional Healthcare Announces HIPAA Data Breach
PRN Medical Services Notifies 2,200 of HIPAA Data Theft
Unencrypted Hospital Communications are HIPAA Violations
Johns Hopkins Health System Settles $190M Lawsuit Over Potential HIPAA Privacy Violations
Federal Prosecutors Pursue Criminal Charges Against Hospital Worker for HIPAA Violations
St. Vincent Breast Center Breaches HIPAA with 63K-Patient Mailing
Record HIPAA Complaints Received about Healthcare Organizations
Security Lapses Could See Majority of Health Practices Fined for HIPAA Non-Compliance
HIPAA Breach Report: April 2014
PriceWaterhouseCoopers Report on HIPAA Compliance
OCR Submits HIPAA PHI Breach Reports To Congress
Central City Concern Announces Employee HIPAA Breach
NRAD Medical Associates Reports 97K-Patient HIPAA Breach
Online Thieves Steal 1.3 Million Patient Records
Possible HIPAA Breach Sparks University of Cincinnati Medical Center Investigation
Rady Children’s Hospital Reports 14,000-Record HIPAA Breach
Community Health Center Investigated for 130K-Patient HIPAA Breach
Staff Error Exposes 33K HIPAA Records at St. Joseph Health
Salina Family Healthcare Center Reports HIPAA Email Breach
HIPAA Breach Report: March 2014
Stolen Union Labor Life Laptop Exposes 46,771 HIPAA Records
L. A. County to Increase Data Encryption as 3.5K More HIPAA Breach Victims are Identified
HIPAA Breach Report: February 2014
HIPAA Violation and Data Breach Results in 4.8M Fine
Boston Business Associate Fired Over 15K HIPAA Breach
Unencrypted Data on Laptop Results in Huge HIPAA Settlement
Los Angeles County Doubles Estimate of HIPAA Breach Victims
HIPAA Breach Report: January 2014
Jamaica Hospital Medical Center Employees Charged with HIPAA Breach
$4.1M Settlement for 2010 Stanford University Hospital HIPAA Breach
Service Coordination Inc Reports 9.7K HIPAA Data Hack
Sutherland Healthcare Solutions Suffers HIPAA Data Breach
HIPAA Breach Report: December 2013
Inspira Health Network Alerts 1,411 Patients of Potential HIPAA Breach
HIPAA Breach Report: November 2013
138 Percent Annual Increase in Reported HIPAA Data Breaches
Texas Healthcare System Suffers 405K-Patient HIPAA Security Breach
March 1st Deadline for 2013 HIPAA Breach Reports
HIPAA Breach Report: October 2013
The HIPAA Wall of Shame: Major Data Breaches of 2013
Virginia HIPAA Breach Exposed Patient Data for 4 Years
Office of Civil Rights Responds to OIG HIPAA Enforcement Criticisms
Barry University Foot and Ankle Institute Suffers Potential HIPAA Breach
Massachusetts Dermatology Clinic Settles for $150K over HIPAA Breach
Cottage Health System BA Responsible for 32,500-Patient HIPAA Breach
HIPAA Breach: 11K Dental Patients’ PHI Uploaded to File Sharing Website
Horizon Blue Cross Blue Shield Announces 840K HIPAA Breach
University of Washington Medicine Notifies 90K Patients of Potential HIPAA Breach
Employee Snooping is the Most Common Cause of HIPAA Security Breaches
Data Issue Arises From Home Diabetes Test
Social Media Has Huge Potential to Cause HIPAA Violations
AHMC Healthcare Omnibus Rule Violation Causes 729K HIPAA Breach
Bizarre HIPAA Breach Results in Doctor Having Medical License Suspended
Results of 2013 Medical Identity Theft Survey Released
Business Associates Responsible for 22 Percent of HIPAA Violations
Mammoth HIPAA Data Breach Exposes 4M Patient Records
Cogent Healthcare Contractor HIPAA Error puts Patient PHI in Search Engines
Fort Worth HIPAA Breach Exposes 277K Patient Records
Cedars-Sinai Hospital Fires Six Over Inappropriate Patient PHI Access
Wellpoint Agrees to $1.7 Million Settlement for HIPAA Violations
Programming Error Responsible for Major Indiana HIPAA Breach
Los Angeles Times Article Results in $275000 HIPAA Privacy Rule Fine
Stanford University Suffers 5th Large HIPAA Security Breach
Breach Penalty Highlights Easily Overlooked HIPAA Security Issues
Idaho State University Ordered to Pay $400K Settlement for HIPAA Breach
Using Windows XP will be a HIPAA Violation
Lawsuit Alleges IRS Violated HIPAA with Seizure of 60M Patient Medical Records
Dent Neurologic Clerk Violates HIPAA by Emailing PHI to Patients
Hospital X-Ray Scam Provides Thieves with PHI of 17K Patients
Photocopier Error Costs $1.2 Million in HIPAA Breach Fines
HIPAA Violations Result in Jail Time for New York Identity Thief
HIPAA Data Breach Affects 13.5K United Homecare Services Patients
HIPAA Omnibus Rule Comes into Force
Pittsburgh 911 Dispatch Center Investigated for HIPAA Violation
How HIPAA Applies to Text messages and Emails Sent by Healthcare Professionals
Rensselaer County Jail Implicated in Teen Girl HIPAA Violation
Triple S Salud Hit with Record $6.8 Million Fine for HIPAA Breach
HIPAA Breach at Froedtert Health Exposes 43,000 Patient Records
Data Encryption Advisable but not Mandatory Under HIPAA
Penalties for Data Breaches Increased Under HIPAA Omnibus Rule
Stolen Laptop Exposes 57K Patients Records in HIPAA Security Breach
Omnicell HIPAA Breach More Extensive than First Feared
441-Patient HIPAA Breach Results in 50K Penalty
University of Michigan Health System Reports 4000-Patient HIPAA Breach
Massachusetts Healthcare Provider to pay $1.5M HIPAA Settlement to HHS
Healthcare Data Breaches Exceed 500
Pediatricians Risking HIPAA Violations Sending SMS Messages
Kentucky E-mail Hack Highlights Importance of HIPAA Compliance
Texas Women Pleads Guilty to HIPAA Violations
Alaska DHSS Reaches $1.7M Settlement with OCR for HIPAA Security Rule Violations
Attorney General’s Office Confirms HIPAA Settlement Reached with South Shore Hospital
Boston Children’s Hospital Announces Unencrypted Laptop HIPAA Breach
Online Patient Calendars Cause $100K HIPAA Breach
OCR Warns of the Impact of HIPAA Changes on Electronic Health Records
Blue Cross HIPAA Violation Costs $18.5 Million
Blue Cross Blue Shield to Pay HHS $1.5M for HIPAA Breach
Hacking Becomes the Main Cause of Data Breaches
Dramatic Rise in HIPAA Compliance Issues in 2011
Doctor to Plead Guilty to HIPAA Privacy Violation
Sutter Health Sued for 4.24M HIPAA Mega Breach
Lapse in Business Associate Security Causes 20K Patient HIPAA Breach
HIPAA Privacy Complaint Results in Federal Criminal Prosecution for First Time
UCLA Hospitals Receives $865K HIPAA Fine for Failing to Protect Celebrity Medical Records
Criminal Charges Filed Against Alabama Woman for HIPAA Violations
Minnesota Hospital Fires 32 Over HIPAA Violations
Facebook Sharing of Patient Info Sees ER Doc Fired
Massachusetts General Hospital Fined $1 for Lost PHI
Cignet Fined 4.3 M for HIPAA Privacy Rule Violation
Health Net Fined 55K for Delayed HIPAA Breach Notification
Newark Beth Israel Medical Center Suffers Second HIPAA Breach
Indiana AG Sues WellPoint over HIPAA Breach
Flash Drive Lost by KPMG Employee Potentially Exposes 3,630 Patient Health Records
Oakwood Healthcare Worker Fired for HIPAA-Violating Facebook Comments
Connecticut Attorney General First to Take Action for HIPAA Violations

HIPAA Breaches

Get The FREE
HIPAA Compliance Checklist

Immediate Delivery of Checklist Link To Your Email Address

Get The FREE
HIPAA Compliance Checklist

Immediate Delivery of Checklist Link To Your Email Address

Please Enter Your Email To Get
The Free HIPAA Checklist

Please Enter Your Email To Get
The Free HIPAA Checklist

Please Enter Your Email To Get
The Free PHI Guide & Checklist

HIPAA Breaches

Get The FREEHIPAA Compliance Checklist

Immediate Delivery of Checklist Link To Your Email Address

Get The FREEHIPAA Compliance Checklist

Immediate Delivery of Checklist Link To Your Email Address

Please Enter Your Email To GetThe Free HIPAA Checklist

Please Enter Your Email To GetThe Free HIPAA Checklist

Please Enter Your Email To Get The Free PHI Guide & Checklist

Get The FREE
HIPAA Compliance Checklist

Get The FREE
HIPAA Compliance Checklist

Please Enter Your Email To Get
The Free HIPAA Checklist

Please Enter Your Email To Get
The Free HIPAA Checklist

Please Enter Your Email To Get
The Free PHI Guide & Checklist