When a healthcare breach affects 500 or more patients, the Office for Civil Rights (OCR) publicly posts the details of the breach on their online breach portal. In September 2021, the OCR posted 38 large-scale breaches on their portal, affecting 1,198,975 patients. More details regarding September OCR breach reporting are discussed below.
September OCR Breach Reporting and Hacking
September’s OCR breach reporting revealed that the majority of the patients affected by breaches that month were compromised by hacking incidents. Of the 38 breaches reported in September, 28 of them were hacking incidents. These 28 hacking incidents compromised the protected health information (PHI) of 1,136,684 patients, representing 94.8% of patients affected by September breaches.