Comstar Ransomware Breach Leads to OCR Settlement
The latest HIPAA enforcement action should serve as a loud and clear warning to every medical billing company: HIPAA is not optional—it’s the law. The U.S. Department [...]
Small Provider, Big Consequences: Vision Upright MRI Settles with HHS
In a clear signal that HIPAA compliance is not just for large health care systems, the U.S. Department of Health and Human Services (HHS) Office for Civil [...]
Neurology Practice Settles with HHS OCR for $25K
In a continued push to hold healthcare providers accountable for cybersecurity preparedness, the U.S. Department of Health and Human Services (HHS) Office for Civil Rights (OCR) has [...]
PIH Health Pays $600K Settlement After Phishing Attack
In a stark reminder of how devastating phishing attacks can be, the U.S. Department of Health and Human Services’ Office for Civil Rights (OCR) has reached a [...]
OCR Settles with Guam Memorial Hospital Over Ransomware-Related Violations
The U.S. Department of Health and Human Services (HHS), Office for Civil Rights (OCR), has announced yet another enforcement action under the HIPAA Security Rule—this time involving [...]
Northeast Radiology, P.C. Faces Scrutiny for Potential Security Rule Violation
On April 10, 2025, the Department of Health and Human Services (HHS) Office for Civil Rights (OCR) announced a settlement with Northeast Radiology, P.C.. This settlement is [...]
OCR Settles 5th Case Under Risk Analysis Initiative
On March 21, 2025, the Department of Health and Human Services (HHS) Office for Civil Rights (OCR) announced a settlement with Health Fitness Corporation. OCR was investigating [...]
HHS Imposes $200,000 HIPAA Right of Access Civil Monetary Penalty Against OHSU
In early March of 2025, the Department of Health and Human Services’ (HHS) Office for Civil Rights (OCR) announced that it had imposed a $200,000 civil monetary [...]
$1.5M CMP Imposed on Warby Parker for HIPAA Security Rule Violations
Warby Parker is a Delaware public benefit corporation, headquartered in New York City. It is a manufacturer and e-retailer of prescription and non-prescription eyewear. Warby Parker has [...]
OCR Settles With Northeast Surgical Group, P.C. over Potential HIPAA Risk Analysis Rule Violation
In mid-January of 2025, the Department of Health and Human Services’ Office for Civil Rights announced a $10,000 settlement agreement with Michigan-based Northeast Surgical Group, P.C. (NESG). [...]
