In March 2022, President Joe Biden signed the Cyber Incident Reporting for Critical Infrastructure Act of 2022 (CIRCIA). This new law will likely trigger changes to the cybersecurity response plans of many organizations. While there is not currently a standard to enforce, healthcare providers and the companies that provide support services to them will be affected by this new law. CIRCIA Background [...]
Each year IBM works with Ponemon Institute to research breaches across several sectors of the economy. For the 12th consecutive year, healthcare breaches had the highest price tag. According to the IBM Cost of a Data Breach Report 2022, the average cost of a healthcare data breach has skyrocketed to $10.1 million. This is an increase of 9.4% from 2021 and an astronomical increase of 41.6% [...]
Healthcare information management company Ciox announced they have begun notifying business associates following an employee email breach of protected health information (PHI) affecting the patients of at least 32 healthcare providers nationwide. What We Know About the Ciox Vendor Email Breach In a post on their website, the Alpharetta, Georgia-based company admitted that an unauthorized person accessed one Ciox employee’s email account [...]
It has been a tough year for cybersecurity professionals as hacking groups and ransomware criminals have exposed the records of more than 40 million Americans during an onslaught of 2021 healthcare breaches. As a result, some healthcare data networks were out of service for weeks at a time, potentially compromising quality of care for patients across the country. As recently as September, [...]
October was Cybersecurity Awareness Month, but that didn’t stop healthcare breaches from surging with 2,817,162 patients affected by breaches last month. The vast majority of 2021 October healthcare breaches were hacking incidents targeting healthcare providers. There were a total of 49 healthcare breaches listed on the OCR breach portal in October: Type of entity breached 37 healthcare providers reported incidents (2,261,319 patients, 80.27% of total patients affected) 6 [...]
Several major health systems have reported an onslaught of phishing, spoofing, and ransomware incidents. While these healthcare cyber attacks use different tactics, they all have the same end goal - to steal sensitive patient information. Phishing Attack Targets UMass Memorial Health UMass Memorial Health recently informed patients that their protected health information (PHI) was potentially compromised in a healthcare cyber attack stemming [...]
Cybersecurity is at the top of mind for many businesses, especially during October’s Cybersecurity Awareness Month. The main cause for concern for healthcare organizations in particular is how to recognize phishing emails to prevent breaches. There is a simple method that healthcare organizations can use to aid in the identification of phishing emails, the SLAM method. What Does the SLAM Acronym Stand [...]
When a healthcare breach affects 500 or more patients, the Office for Civil Rights (OCR) publicly posts the details of the breach on their online breach portal. In September 2021, the OCR posted 38 large-scale breaches on their portal, affecting 1,198,975 patients. More details regarding September OCR breach reporting are discussed below. September OCR Breach Reporting and Hacking September’s OCR breach reporting revealed that the majority of the [...]
In July 2021, UC San Diego Health notified the public that it had been the victim of a four-month long phishing attack that gave hackers access to the protected health information of 495,949 patients. As a result, a health data breach lawsuit was filed alleging a violation of California Consumer Privacy Act, negligence, and breach of contract. The lawsuit seeks class-action status. [...]
The Department of Health and Human Services (HHS) Office for Civil Rights (OCR) publicly posts breaches affecting 500 or more patients to their online breach portal, known as the “HIPAA Wall of Shame.” In August 2021, there were 38 breaches posted on the portal, affecting 5,120,289 patients. August 2021 healthcare breaches predominantly consisted of hacking incidents affecting healthcare providers, with 4,656,453 patients affected by hacking incidents [...]
© 2023 Compliancy Group LLC. All Rights Reserved | Terms of Use | Privacy Policy
Become Compliant, Get The Seal!
