Calculated HIPAA

A Calculated Approach to HIPAA Compliance

  • HIPAA Violation News
  • HIPAA Updates
  • HIPAA Advice
  • HIPAA Compliance
    • HIPAA Law
  • HIPAA Violations
  • HIPAA Training
  • HIPAA Penalties
Home2020

Year: 2020

CISA Publishes New Website About the SolarWinds Supply Chain Compromise and Free Tool to Identify Malicious Activity

December 30, 2020 Site Editor

The DHS’ Cybersecurity and infrastructure Security Agency has created a website offering information about the current cyber activities of the advanced persistent threat (APT) gang behind the compromise of the SolarWinds Orion software supply chain. […]

KeyReply Receives the HIPAA Seal of Compliance Award

December 29, 2020 Site Editor

Compliancy Group has certified that KeyReply, an enterprise SaaS AI chatbot software company, has integrated an appropriate HIPAA compliance program. KeyReply offers a web- and on-premise chatbot and conversational AI tool for the medical care […]

Healthcare Data Breach Report for November 2020

December 28, 2020 Site Editor

The number of healthcare data breaches reported dropped again last November; however, take note that the number of reported breaches in October 2020 was thrice the average monthly number mostly because of the ransomware attack […]

Email Account Breach Reports by Meharry Medical College and MEDNAX Services

December 25, 2020 Site Editor

Meharry Medical College located in Nashville, TN found an email account breach that possibly allowed unauthorized persons to get access or steal the protected health information (PHI) of up to 20,983 patients. Meharry Medical College […]

OCR HIPAA Audits Industry Report Pinpoints Typical Areas of Noncompliance with the HIPAA Guidelines

December 24, 2020 Site Editor

The Department of Health and Human Services’ Office for Civil Rights has publicized its 2016-2017 HIPAA Audits Industry Report, featuring areas where HIPAA-covered entities and their business associates are complying or unable to abide with […]

Jacksonville Children’s and Multispecialty Clinic Receives the HIPAA Seal of Compliance

December 23, 2020 Site Editor

Jacksonville Children’s and Multispecialty Clinic (JCMC) is now certified as fully HIPAA compliant after completing Compliancy Group’s established HIPAA compliance system. JCMC is operating a number of clinics in the counties of Onslow, New Hanover […]

NIST Publishes Final Guidance on Protecting the Picture Archiving and Communication System (PACS) Ecosystem

December 22, 2020 Site Editor

The National Cybersecurity Center of Excellence (NCCoE) at the National Institute of Standards and Technology (NIST) has issued final guidance for healthcare delivery companies on securing the Picture Archiving and Communication System (PACS) ecosystem. PACS […]

FBI Alert on DoppelPaymer Ransomware Attacks Directed at Critical Infrastructure

December 21, 2020 Site Editor

The Federal Bureau of Investigation (FBI) has released a private industry notice regarding the increasing DoppelPaymer ransomware activity and the threat actors’ change in strategy to compel victims into paying the ransom. DoppelPaymer ransomware first […]

Data Breaches at Cedar Springs Hospital, Travis County Health District And Konikoff Dental Associates

December 19, 2020 Site Editor

Cedar Springs Hospital based in Colorado Springs, CO is informing some patients regarding the loss of a portable storage unit that had their protected health information (PHI) last October 2020. The hospital gave a copy […]

Horizon Information Systems, Inc. Receives the HIPAA Seal of Compliance

December 18, 2020 Site Editor

Horizon Information Systems, Inc based in Johnstown, PA, a software solutions developer serving human service and community action organizations, has received its Health Insurance Portability and Accountability Act (HIPAA) compliance approval from the Compliancy Group. […]

Twitter Penalized $544,000 for its GDPR Data Breach Violations

December 17, 2020 Site Editor

Twitter is penalized with €450,000 ($544,600) for violating the EU’s General Data Protection Regulation (GDPR). The Data Protection Commission (DPC) in Ireland issued the fine in connection with Twitter’s privacy breach report to the DPC […]

House Approves Bill that Acknowledges Adoption of Cybersecurity Best Practices In Making Regulatory Decisions

December 16, 2020 Site Editor

The House Energy and Commerce Committee passed a new bill (HR 7988), which tries to change the HITECH Act to necessitate the Department of Health and Human Services to identify whether or not HIPAA-covered entities […]

Breaches at Tufts Health Plans, Liv-On Family Care Center, Tennessee Proton Radiation Therapy Centers, and Presbyterian Health Plan

December 15, 2020 Site Editor

A phishing attack on Tufts Health Plan resulted in the compromise of the protected health information (PHI) of 60,545 members’ of EyeMed, a vision benefits management company. EyeMed uncovered the phishing attack on July 1, […]

Ransomware Attacks at GBMC HealthCare, Allegheny Health Network, AMITA Health, Bayhealth and University of Vermont Medical Center

December 11, 2020 Site Editor

GBMC HealthCare located in Towson, MD reported a ransomware attack that happened on December 6, 2020 causing the taking down of its computer network. The healthcare company currently implements EHR downtime protocols while it controls […]

Data Breaches at Dental Care Alliance, Legacy Community Health Services and Hillcrest Nursing Center

December 10, 2020 Site Editor

Dental Care Alliance, LLC based in Sarasota, FL, a dental support provider with more than 320 affiliated dental practices in 20 states, was hacked and potentially compromising the protected health information (PHI) of over a […]

Information on COVID-19 Vaccine Distribution for Public Health Agencies

December 9, 2020 Site Editor

Rave Mobile Safety has announced a COVID-19 Vaccine Distribution Option that will enable public health agencies to determine persons who must have priority vaccination, customize alerts to these individuals, provide reminders for second vaccinations, and […]

Montefiore Medical Center and Mercy Health Reported Insider Data Breaches

December 8, 2020 Site Editor

Montefiore Medical Center and Mercy Health have reported insider data breaches in the past few days. In both breaches, an employee accessed patient information even if there was no valid work reason for doing so. […]

Kalispell Regional Healthcare Proposes to Pay 4.2 Million to Resolve Data Breach Lawsuit

December 7, 2020 Site Editor

Kalispell Regional Healthcare based in Montana has offered a $4.2 million settlement deal to take care of a lawsuit filed on behalf of victims associated with a data breach that was reported in October 2019. […]

Researchers Talk About Potential Synthetic DNA Supply Chain Attack

December 4, 2020 Site Editor

Researchers at Ben-Gurion University in Israel talked about a potential bioterrorist attack that could jeopardize the synthetic DNA supply chain. DNA synthesis providers may be misled into creating unsafe DNA sequences, skipping present security controls, […]

Four Vulnerabilities Discovered in OpenClinic Application

December 3, 2020 Site Editor

Four vulnerabilities were identified in the OpenClinic software, the most critical of which could possibly permit unauthorized people to get around authentication and access protected health information (PHI). A lot of private clinics, hospitals, and […]

University of Minnesota Physicians and McLeod Health Report Email Account Breaches

December 2, 2020 Site Editor

University of Minnesota Physicians recently experienced a phishing attack that permitted unauthorized people to obtain access to two workers’ email accounts. One email account was accessible from January 30 to January 31, 2020 and the […]

Cyberattack on AspenPointe Impacts More Than 295K Patients

December 1, 2020 Site Editor

AspenPointe based in Colorado Springs, a provider of mental health and behavioral health services, has reported a cyberattack in September 2020 that resulted in the potential compromise of patient information. Because of the attack, the […]

Easy Way Delivery Services Receives the HIPAA Seal of Compliance Award

November 30, 2020 Site Editor

Compliancy Group has certified Easy Way Delivery Services as Health Insurance Portability and Accountability Act (HIPAA) compliant after demonstrating it has effectively complied with its requirements. The HIPAA Seal of Compliance was awarded to Easy […]

FBI Issues Warning Regarding Growing Ragnar Locker Ransomware Activity

November 27, 2020 Site Editor

A recent private industry alert from the Federal Bureau of Investigation (FBI) revealed that threat actors that use Ragnar Locker ransomware have increased their attacks and have been choosing businesses and organizations in different sectors […]

HIPAA Enforcement Activity in October 2020

November 26, 2020 Site Editor

OCR imposed more financial penalties on HIPAA covered entities and business associates this 2020 than any year since OCR got authorized by the HIPAA Enforcement Rule to issue financial penalties on non-complying entities. As of […]

Healthcare Data Breach Report for October 2020

November 25, 2020 Site Editor

The number of reported data breaches to OCR for October is well above average. It was 33.68% less than September’s with 63 reported breaches involving 500 or more records, but it was still 41.82% above […]

Daisee Receives the HIPAA Seal of Compliance

November 24, 2020 Site Editor

The Compliancy Group has certified Daisee, a speech and sentiment analytics software company, as having an efficient HIPAA compliance program. Daisee is an acronym that stands for Deep Artificial Intelligence for Enterprise Ecosystem. The company […]

829,454 Eye Care Patients Impacted by Luxottica Data Breach

November 23, 2020 Site Editor

The biggest eyewear business in the world, Luxottica, had a cyberattack that affected several websites managed by the company. Luxottica is the owner of the popular eyewear brands Persol, Ray-Ban, and Oakley. It produces designer […]

Microsoft Gives Warning to Office 365 Users Regarding the Ongoing Sophisticated Phishing Campaign

November 20, 2020 Site Editor

Office 365 users have been cautioned regarding a continuous phishing campaign that collects user credentials. The attackers utilize sophisticated strategies to circumvent email security defenses and social engineering techniques to trick company personnel into going […]

Nation State APT Groups Target Organizations Engaged in COVID-19 Research and Vaccine Development

November 19, 2020 Site Editor

According to Microsoft, Advanced Persistent Threat (APT) groups in North Korea and Russia are directing attacks on companies engaged in COVID-19 research and vaccine development. Three APT groups have targeted six big pharmaceutical companies and […]

Breaches of PHI at North Dakota and Delaware State Departments

November 18, 2020 Site Editor

A phishing attack affected the Department of Human Services, North Dakota Department of Health, Cavalier County Health District, and other state departments that resulted in the compromise of employee email accounts from November 23 to […]

Ransomware Attacks on First Impressions Orthodontics, Kids First Dentistry & Orthodontics, and Hendrick Health Patients

November 17, 2020 Site Editor

A ransomware attack on First Impressions Orthodontics, a Professional Dental Alliance of Connecticut PLLC’s subsidiary, occurred on September 28, 2020 that resulted in the potential compromise of the protected health information (PHI) of 23,000 patients. […]

Vulnerability Found in BD Alaris Infusion Products

November 16, 2020 Site Editor

The BD Alaris PC Unit identified a medium severity vulnerability that could be exploited to bring about a denial of service attack and a drop in wireless capacity. Medigate discovered the vulnerability and reported it […]

Phishing Campaign Employs Loss of Employment as Bait to Download Bazar and Buer Malware

November 13, 2020 Site Editor

The TrickBot botnet is being used to conduct a new phishing campaign that delivers the Buer loader and Bazar backdoor malware. Researchers at Area 1 Security detected the campaign that has been operating since early […]

RevoluIT Receives its HIPAA Seal of Compliance

November 12, 2020 Site Editor

RevoluIT based in Frankfort, IL is an IT and small business consulting company serving the healthcare industry was certified as compliant with the requirements of the Health Insurance Portability and Accountability Act (HIPAA) after taking […]

More Ransomware Attacks and Higher Ransom Demands Expected in Q4

November 11, 2020 Site Editor

Ransom Demands Continue to Increase The Coverware Quarterly Ransomware report for Q3 2020 reveals that the average ransom demand progressively increased during the last 8 quarters, though the quarterly growth was more significant every quarter […]

50% Ransomware Attacks Now Entail Data Theft Prior to Encryption

November 10, 2020 Site Editor

Coveware has published its Quarterly Ransomware report for the third quarter of 2020 and featured the hottest ransomware attack developments. The report notes that data exfiltration before deploying the ransomware remains a well-liked tactic. About […]

Office for Civil Rights Reports the 10th HIPAA Fine Covered by the Right of Access Initiative

November 9, 2020 Site Editor

The U.S. Department of Health and Human Services’ Office for Civil Rights just issued the 10th financial penalty covered by the HIPAA Right of Access enforcement initiative. Riverside Psychiatric Medical Group based in California has […]

Email Security Breaches at Centerstone and Arkansas Otolaryngology Center

November 6, 2020 Site Editor

An unauthorized person had accessed the email account of an employee of Centerstone, which provides mental health and substance use disorder treatment services in Illinois, Indiana, Florida and Tennessee. Centerstone detected strange activity in the […]

ICO Penalizes Marriott International £18.4 Million for Violating the GDPR

November 5, 2020 Site Editor

The Information Commissioner’s Office (ICO), the United Kingdom’s data protection authority, has enforced a £18.4 million ($23.8 million) financial fine on Marriott International for violating the EU’s General Data Protection Regulation (GDPR). The ICO had […]

Ransomware Attacks on Sky Lakes Medical Center and St. Lawrence Health System

November 4, 2020 Site Editor

computer systems remained offline, it is still providing patient care. The hospital’s emergency and urgent care departments are open and are fully operational. Most scheduled elective procedures will proceed as scheduled. Right now, while the […]

BIONWORKS Receives the HIPAA Seal of Compliance

November 3, 2020 Site Editor

Compliancy Group made an announcement that health tech start-up BIONWORKS has attained compliance with the Health Insurance Portability and Accountability Act (HIPAA) requirements. BIONWORKS develops an advanced ML-driven enterprise mobility software program for the healthcare […]

TigerConnect Survey Shows Prevalent Support for Telehealth Among Patients and Healthcare Providers

November 2, 2020 Site Editor

The coronavirus pandemic has triggered a significant increase in healthcare providers extending telehealth services to individuals. Virtual consultations are being made available to minimize the number of individuals traveling to hospitals and clinics to restrict […]

Ryuk Ransomware Attackers are Targetting the Healthcare and Public Health Sector

October 30, 2020 Site Editor

The Cybersecurity and Infrastructure Security Agency (CISA), the Department of Health and Human Services (HHS) and the Federal Bureau of Investigation (FBI) have given an advisory regarding elevated Ryuk ransomware activity directed at the public […]

Aetna Paid $1 Million HIPAA Penalty for Three Data Breaches

October 29, 2020 Site Editor

Aetna Life Insurance Company and the associated covered entity (Aetna) has decided to resolve several potential HIPAA violations that the Department of Health and Human Services’ Office for Civil Rights (OCR) found in the course […]

Data Breach at Sonoma Valley Hospital and Lycoming-Clinton Joinder Board

October 28, 2020 Site Editor

On October 11, 2020, Sonoma Valley Hospital based in California encountered a computer security breach that resulted in the shutdown of its computer systems, hence “a significant downtime event” occurred. The hospital went ahead with […]

Webinar on Facing Critical Communication and Safety Issues in Healthcare

October 27, 2020 Site Editor

At the beginning of this year, Rave Mobile Safety conducted a 2020 Healthcare Emergency Preparedness and Security Trends Survey. Now on November 12, 2020, there will be a webinar hosted by Rave Mobile Safety where […]

HITRUST Certification Proves LuxSci’s Commitment to Protecting Data Privacy and Security

October 26, 2020 Site Editor

LuxSci, a provider of HIPAA-compliant email communications services based in Massachusetts, has reported that it has gotten HITRUST CSF Certification. The HITRUST Common Security Framework (CSF) is an all-inclusive, certifiable platform for companies that generate, […]

HIPAA Enforcement Activity in September 2020

October 23, 2020 Site Editor

Before September, the HHS’ Office for Civil Rights only issued three financial penalties on covered entities and business associates over HIPAA violations. Yet, in September, there was a squall of notices regarding HIPAA settlements when […]

September 2020 Healthcare Data Breach Report

October 22, 2020 Site Editor

September is awful in terms of data breaches. HIPAA-covered entities and business associates reported 95 data breaches involving at least 500 records. The increase in breaches is 156.75% compared to last August 2020. There wasn’t […]

NCSC Issued an Active Threat Warning Concerning a SharePoint RCE Vulnerability

October 21, 2020 Site Editor

The UK National Cyber Security Centre (NCSC) just recently issued a security warning urging companies to patch a critical remote code execution vulnerability present in Microsoft SharePoint. There is also an advisory from the DHS […]

CISA Urges Organizations to Patch Wormable ‘Bad Neighbor’ Windows TCP/IP Vulnerability Now

October 20, 2020 Site Editor

On October 2020 Patch Tuesday, Microsoft launched a patch to fix a critical remove code execution vulnerability identified in the Microsoft Windows Transmission Control Protocol (TCP)/IP stack. The vulnerability is caused by the way TCP/IP […]

Silent Librarian Spear Phishing Campaign Targeting Universities Restarted

October 19, 2020 Site Editor

Silent Librarian, also known as Cobalt Dickens and TA407, centered in Iran has begun again spear-phishing attacks on colleges in America and all over the world. Since 2013, the hacking group has been executing attacks […]

NeuronUP Receives HIPAA Seal of Compliance

October 16, 2020 Site Editor

Compliancy Group has certified NeuronUP’s good faith effort to achieve HIPAA compliance and satisfactorily fulfilled the specifications of the Health Insurance Portability and Accountability Act’s regulations. NeuronUP is a 3-in-1 tool created to assist neurorehabilitation […]

Sen. Warner Inquires About the Alleged Universal Health Services Ransomware Attack

October 15, 2020 Site Editor

Universal Health Services has affirmed that its 250 hospitals in the USA are operational and hoping to catch a person thought to be behind the ransomware attack that shut down its systems for three weeks. […]

Cyber Attack on a Clinical Trial Software Provider eResearchTechnology

October 14, 2020 Site Editor

eResearchTechnology in Philadelphia is a company marketing software for clinical trials, for instance, the clinical trials relating to Covid-19 vaccines. The company experienced a ransomware attack last September 20, 2020 that affected several clients, including […]

CISA/FBI Alert on APT Groups Chaining Legacy Vulnerabilities with Netlogon Vulnerability

October 13, 2020 Site Editor

The Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) issued a joint alert about advanced persistent hackers stringing exploits for a number of vulnerabilities in cyberattacks directed at federal and […]

Community Health Systems To Settle $5 Million to Resolve Multi-State Breach Case

October 12, 2020 Site Editor

Community Health Systems located in Franklin, TN, and its subsidiary CHSPCS LLC agreed to settle a multi-state action with 28 state attorneys general by paying out $5 M. An investigation directed by Tennessee Attorney General […]

HIPAA Right of Access Failure by Healthcare Provider Resulted in $160,000 Penalty

October 9, 2020 Site Editor

The 12th HIPAA penalty of 2020 has been reported by the Department of Health and Human Services’ Office for Civil Rights (OCR). It is the 8th under the HIPAA Right of Access enforcement initiative since […]

Ransomware Attacks on Accents on Health and Magnolia Pediatrics

October 8, 2020 Site Editor

The chiropractor Accents on Health based in Lone Tree, CO encountered a ransomware attack on August 5, 2020 that saw the encryption of information kept on its computer systems. Cybersecurity forensics experts looked into the […]

Maternal Fetal Associates Receives HIPAA Seal of Compliance

October 7, 2020 Site Editor

Maternal Fetal Associates based in Virginia is a medical group composed of maternal fetal medicine professionals. It recently announced its completion of the Six Stage Implementation Program of Compliancy Group and has received certification as […]

Georgia Man Pleads Guilty for Framing a Former Acquaintance for HIPAA Rules Violation

October 6, 2020 Site Editor

A healthcare employee who was charged with violation of patient privacy and the Health Insurance Portability and Accountability Act (HIPAA) Rules was cleared of any violation after the federal law enforcement’s investigation. The said employee […]

Financial Data and SSNs Potentially Exposed in Blackbaud Ransomware Attack

October 5, 2020 Site Editor

On September 30, 2020, Blackbaud submitted a Form 8-K with the SEC (U.S. Securities and Exchange Commission) that gave more details on the ransomware attack encountered by the company in May 2020. Blackbaud stated that […]

Breach of PHI at Oaklawn Hospital and Mono County

October 2, 2020 Site Editor

Oaklawn Hospital located in Marshall, MI, has begun informing 26,861 patients regarding a potential compromise of their personal and medical data. It is not clear when the hospital detected the breach, however, the forensic investigation […]

Anthem Inc. Spends $48.2 Million in Penalties to Resolve Multi-State Lawsuits

October 1, 2020 Site Editor

Health insurer Anthem Inc. based in Indianapolis, IN has settled its multi-state actions filed by state attorneys general in relation to its 2014 78.8 million record data breach. One settlement deal for $39.5 million was […]

Email Account Breaches at Alameda Health System, EyeMed Vision Care and Century Specialty Script

September 30, 2020 Site Editor

Alameda Health System (AHS) based in Alameda, CA, an inpatient, outpatient, emergency, and wellness services provider around the East Bay area, became aware that an unauthorized individual had briefly gained access to an employee’s email […]

Universal Health Services IT Systems All Over USA Inaccessible Because of Ransomware Attack

September 29, 2020 Site Editor

Universal Health Services (UHS) located in King of Prussia, PA has experienced a big security breach that resulted in the inaccessibility of its IT systems. The health system has got at least 400 healthcare facilities […]

Multiple Lawsuits Filed Due to the Recent Healthcare Data Breaches

September 28, 2020 Site Editor

People affected by the recent data breaches that occurred at Blackbaud and Assured Imaging took legal action for the compromise and theft of their personal data and protected health information (PHI). Several Lawsuits Filed in […]

CISA Issues Advisory After a Spike in LokiBot Malware Activity

September 25, 2020 Site Editor

stealing credentials from several applications and data resources, such as Firefox, Safari, and Chrome web browsers. It likewise rips off credentials utilized for email accounts, sFTP and FTP clients. The malware can be used to […]

Montefiore Medical Center and Geisinger Terminates Workers Involved in Unauthorized PHI Access

September 24, 2020 Site Editor

Montefiore Medical Center in Bronx, New York has dismissed a worker due to the supposed theft of the protected health information PHI of around 4,000 patients. Montefiore learned about the possible internal data breach in […]

Sudden Infant Death Services of Illinois Receives HIPAA Seal of Compliance

September 23, 2020 Site Editor

Sudden Infant Death Services (SIDS) of Illinois, Inc. has been certified as compliant with the standards of the Health Insurance Portability and Accountability Act’s (HIPAA) Security and Privacy Rules, the Breach Notification Rules, and the […]

Healthcare Data Breach Summary Report for August 2020

September 22, 2020 Site Editor

The HHS’ Office for Civil Rights received 37 reports of healthcare data breaches involving 500 or more records in August 2020. The number of breaches continued to be rather constant month-over-month, however, breached records in […]

Vulnerabilities Discovered in Philips Clinical Collaboration Platform

September 21, 2020 Site Editor

There are 5 vulnerabilities with low- to medium-severity discovered in the Philips Clinical Collaboration Platform (Vue PACS). An attacker could exploit the vulnerability and influence an authorized user to perform unauthorized activities or disclose data […]

CISA/FBI Gives Advisory About Targeted Cyber Attacks by Iranian Hacking Groups

September 18, 2020 Site Editor

A recent joint cybersecurity alert published by the Cybersecurity Security and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) revealed that a hacking group connected to the Iranian government was detected exploiting […]

HHS Launches New Security Risk Assessment Tool

September 17, 2020 Site Editor

The Department of Health and Human Services’ Office for Civil Rights (OCR) announced the newly released version of its tool for Security Risk Assessment (SRA). The Office of the National Coordinator for Health Information Technology […]

Class Action Medical Records Lawsuit Filed Against HealthAlliance Hospital and Ciox Health

September 16, 2020 Site Editor

HealthAlliance Hospital and its health record management vendor, Ciox Health, are facing a lawsuit for refusing to give a widow the medical records of her deceased husband. In October 2020, the husband of Sherry Russell, […]

Inova Health System Confirms 1.05 Million People Affected by Blackbaud Ransomware Attack

September 15, 2020 Site Editor

Inova Health System in Falls Church, VA is one of the healthcare companies that lately confirmed the impact of the Blackbaud ransomware attack on its company. The information contained in a backup donor database included […]

Federal Judge Dismissed Privacy Lawsuit Against UChicago and Google

September 14, 2020 Site Editor

A Federal judge dismissed a potential class-action lawsuit that was filed in June 2019 against UChicago Medicine, the University of Chicago, and Google. The lawsuit was a response to an alleged breach of HIPAA Rules […]

MeDLiTE Inc. Receives the HIPAA Seal of Compliance

September 11, 2020 Site Editor

Compliancy Group has certified MeDLiTE Inc. as HIPAA-compliant after satisfactorily meeting all Health Insurance Portability and Accountability Act (HIPAA) requirements. MeDLite is a full-service medical billing firm based in Hackensack, NJ. MeDLiTE has been in […]

Victims of the Baton Rouge Clinic Ransomware Attack and the Blackbaud Ransomware Attack

September 10, 2020 Site Editor

The Baton Rouge Clinic located in Louisiana suffered a cyberattack at the beginning of July that made its email and phone system inaccessible and constrained its laboratory and radiology services. The ransomware attack caused systems […]

Resources to Help Healthcare Organizations Enhance Resilience Against Insider Threats

September 9, 2020 Site Editor

The National Insider Threat Awareness Month (NITAM) is being observed this September 2020 for the second time. The whole month, resources are being made accessible to point out the value of discovering, blocking, and reporting […]

Feedback Required on Draft Consumer Privacy Framework for Health Information Not Protected by HIPAA

September 8, 2020 Site Editor

Recently, the Center for Democracy and Technology (CDT) and the eHealth Initiative & Foundation (eHI) issued a draft of a consumer privacy framework for health data to deal with the loopholes in legal protections for […]

Blackbaud Data Breach Impacts Almost 1 Million

September 7, 2020 Site Editor

There is a growing number of healthcare providers that are confirmed to have experienced a data breach as a result of the Blackbaud ransomware attack. Four more healthcare providers sent breach notification reports in the […]

PHI Exposed Due to CyberAttacks on Northwestern Memorial HealthCare, D&S Residential Holdings and Cook Children’s Medical Center

September 4, 2020 Site Editor

Northwestern Memorial HealthCare has reported the potential exposure of the personal data of persons who donated to Northwestern Memorial HealthCare in the past due to a Blackbaud ransomware attack fairly recently. An unauthorized man or […]

Paramount Counseling Services Receives HIPAA Seal of Compliance

September 3, 2020 Site Editor

Paramount Counseling Services (PCS) based in Whitefish Bay, WI, a mental health agency providing counseling and psychotherapy services to outpatients, has proven its compliance with the requirements of the Health Information Portability and Accountability Act […]

Konica Minolta Pays $500,000 to Resolve EHR False Claims Case

September 2, 2020 Site Editor

Konica Minolta Healthcare Americas Inc. is going to pay $500,000 as a financial penalty to bring to an end a case against Viztek LLC, its ex-subsidiary, to take care of False Claims Act violations in […]

Recommended Practices to Avoid PHI Exposure in Online Medical Presentations

September 1, 2020 Site Editor

The Society for Imaging Informatics in Medicine, the American College of Radiology, and the Radiological Society of North America published an advisory with regards to online medical presentations and the possibility of inadvertent exposure of […]

Limited HIPAA Privacy Rule Waivers Declared Because of Hurricane Laura and Wildfires

August 31, 2020 Site Editor

The Secretary Alex Azar of the HHS has a public health emergency declared in the states of Texas and Louisiana because of Hurricane Laura, and in California because of the continuing wildfires. HIPAA Rules continue […]

Federal Judge Dismissed Heritage Valley Health System Lawsuit Against Nuance Communications

August 28, 2020 Site Editor

In 2019, Heritage Valley Health System in Beaver, PA filed a case against Nuance Communications in relation to the 2017 NotPetya malware attack. The case was dismissed by a federal judge in the US District […]

Cyberattacks at Dynasplint Systems, Texas Medical Clinical Research Organization and the Institute for Integrative Nutrition

August 27, 2020 Site Editor

A cyberattack on Dynasplint Systems in Severna Park, MD resulted in the potential access or theft of personal and protected health information (PHI). The company  manufactures proprietary stretching gadgets for enhancing joint motion. The security […]

Personal and COVID-19 Status Information Stolen at South Dakota Fusion Center Due to “BlueLeaks” Hacking Incident

August 26, 2020 Site Editor

In June 2020, the web servers of Netsential based in Houston, TX was hacked resulting in the theft of roughly 270 gigabytes of information. The hacking group Distributed Denial of Secrets (DDoSecrets) published the stolen […]

Using COVID-19 Home Monitoring Technologies and Issues on Patient Safety and Privacy

August 25, 2020 Site Editor

A group of researchers from Harvard University investigated the technologies being used in COVID-19 home monitoring. A variety of technologies were created to cut down the possibility of being exposed to SARS-CoV-2 and diagnose signs […]

HEOPS Inc. Achieves HIPAA Compliance with the Support of Compliancy Group

August 24, 2020 Site Editor

HEOPS Inc. together with its subsidiary CENTIPEDE Care Solutions LLC had finished the 6-stage HIPAA risk analysis and remediation process of Compliancy Group and had shown that they have a reliable HIPAA compliance program in […]

Patches Issued for Critical Vulnerabilities in XenMobile Server /Citrix Endpoint Management

August 22, 2020 Site Editor

There were two critical vulnerabilities discovered in XenMobile Server / Citrix Endpoint Management (CEM). An unauthenticated attacker may exploit the vulnerabilities tracked as CVE-2020-8208 and CVE-2020-8209 to get access to the credentials of a domain […]

2.5 Million Patient Records Exposed by Cense AI Online

August 21, 2020 Site Editor

Technology and security consultant Jeremiah Fowler announced that the personal and health information of about 2.5 million patients were exposed on the internet. On July 7, 2020, two folders that contain the information were found […]

July 2020 Healthcare Data Breach Report

August 20, 2020 Site Editor

July had a big decrease in the amount of data breach reports involving at least 500 healthcare records. July had 36 data breach reports, which was 30.8% month-over-month less than June’s 52 breach reports. But […]

Medical Software Database Comprising 3.1 Million Patients Personal Information Exposed On the Web

August 18, 2020 Site Editor

A database that contains the personal data of over 3.1 million patients was exposed on the internet and was eventually wiped out by the Meow bot. A security researcher named Volodymyr ‘Bob’ Diachenko found the […]

PHI of 139K People Possibly Compromised Due to Two Data Breach Incidents

August 17, 2020 Site Editor

Behavioral Health Network (BHN), the biggest provider of behavioral health service in Western Massachusetts, has reported a malware attack on its computer systems which made its files inaccessible. BHN discovered the security breach on May […]

Data Breaches Reported by University of Maryland Faculty Physicians and Highpoint Foot & Ankle Center

August 15, 2020 Site Editor

A phishing attack on the University of Maryland Faculty Physicians, Inc. (FPI) potentially resulted in the access of the protected health information (PHI) of the University of Maryland Medical Center (UMMC) patients by unauthorized people. […]

PHI Compromised Due to Owens Ear Center, Blackbaud Inc and Premier Healthcare Partners Data Breaches

August 14, 2020 Site Editor

A ransomware attack on Owens Ear Center based in Fort Worth, Texas happened on May 28, 2020 that caused encryption of patient information. The encrypted device comprised patients’ healthcare records that enclosed data like names, […]

Posts navigation

1 2 3 »
  • Site Map
  • About Calculated HIPAA
  • Calculated HIPAA Privacy Policy

© Copyright 2003 to 2022 Calculated HIPAA