0

Healthcare Breach

1,400 Patients Affected by Behavioral Healthcare Breach The Virginia Department of Behavioral Health and Developmental Services (DBHDS) accidentally exposed patient’s protected health information (PHI) through its Individual and Family Support Program (IFSP). Although investigations are still underway, the healthcare breach …


0

Effective Compliance Program

The Seven Elements of an Effective Compliance Program Healthcare Organization Fined for Multiple Compliance Failures Fresenius Medical Care North America experienced five PHI breaches that exposed the information of 521 patients. After conducting an investigation, the Department of Health and …


0

HIPAA Violation Consequences

What are HIPAA Violation Consequences? Community Psychiatric Clinic Breach Affects 15,537 In three separate email hacking incidents at Community Psychiatric Clinic, the protected health information (PHI) of 15,537 patients was exposed. Although little information is available on these breaches, all …


0

Cybersecurity Policies

Lack of Cybersecurity Policies Affected 1.5 Million Patients SingHealth, based in Singapore, experienced a healthcare data breach that exposed the protected health information (PHI) of 1.5 million patients. The healthcare organization was aware of vulnerabilities in their server, however, failed …


0

Medical Device Security

Managing Technology: Medical Device Security 200,000 Systems Shutdown by Ransomware Attack In May 2017, a hacking tool was used to access 200,000 Windows systems in hospitals. The hack affected a Bayer Medrad medical device that improves medical imaging for radiology …


0

Incident Response

Touchstone Medical Fined $3 Million for Delayed Incident Response Touchstone Medical Imaging (TMI) experienced a data breach affecting 307,000 patients. A misconfigured server exposed patient information, making it searchable through Google’s search engine. The Department of Health and Human Services’ …


0

Vulnerability Management

Vulnerability Management – $150,000 Fine Issued for Unpatched Software Anchorage Community Mental Health Services (ACMHS) failed to implement software patches resulting in a breach that affected approximately 2,700 patients. The vulnerability in their system could have been addressed by software …


0

Network Management

$418,000 Fine Issued for Poor Network Management Virtua Medical Group (VMG), based in New Jersey, compromised the PHI of 1,650 individuals as the result of a misconfigured server. A vendor of Virtua updated software on a website that stored documents. …