Phishing Attack Leads to Second Lawsuit Filed Against Kalispell Regional Healthcare
Jan13

Phishing Attack Leads to Second Lawsuit Filed Against Kalispell Regional Healthcare

A second lawsuit has been submitted against Kalispell Regional Healthcare in Montana in relation to a May 2019 phishing attack that resulted in the email accounts of some of its employees accessed by hackers. Kalispell Regional Healthcare became aware of the breach on August 28, 2019. The investigation showed that the hackers gained access to staff email accounts on May 24, 2019 and potentially accessed patient data. A forensic...

Read More
Survey: Cost of Healthcare Data Breaches Predicted to be $4 Billion in 2020
Jan04

Survey: Cost of Healthcare Data Breaches Predicted to be $4 Billion in 2020

Healthcare sector data breaches are taking place more and more often than ever before. The healthcare data breach figures for 2019 have yet to be drawn up, but so far 494 data breaches of more than 500 records have been made known to the HHS’ Office for Civil Rights and more than 41.11 million records were exposed, stolen, or impermissibly revealed in 2019. That makes 2019 the worst year on record for healthcare data breaches and the...

Read More
Three-Year Insider Breach Discovered at North Ottawa Community Health System
Jan03

Three-Year Insider Breach Discovered at North Ottawa Community Health System

North Ottawa Community Health System (NOCH) has become aware that a staff member at North Ottawa Community Hospital in Grand Haven, MI, viewed the medical records of patients without authorization over a period of three years. This issue was brought to the attention of the health system on October 15 by another employee. A review into the alleged inappropriate access was initiated on October 17 and the employee was suspended pending...

Read More
2019 HIPAA Enforcement
Jan02

2019 HIPAA Enforcement

2019 was another period with stringent HIPAA enforcement evident. Action taken by the Department of Health and Human Services’ Office for Civil Right (OCR) lead to has resulted in 10 financial penalties. $12,274,000 has been paid to OCR in 2019 to resolve HIPAA violation cases. 2019 witnessed two civil monetary penalties sanctioned and settlements were agreed with eight groups, one less than 2018. In 2019, the average fine applied was...

Read More
Rep. Jayapal Questions Google & Alphabet Ascension Partnership
Dec20

Rep. Jayapal Questions Google & Alphabet Ascension Partnership

Rep. Pramila Jayapal (D-Washington), a member of the House Judiciary Subcommittee on Antitrust, Commercial, and Administrative Law, has written to Google and Alphabet in relation to their Ascension partnership. She has demanded answers to several questions about how protected health information has been obtained, the measures put in place to protect patient data, and how Google will be using the PHI. The partnership between Google and...

Read More