There were a staggering number of December healthcare breaches reported on the OCR wall of shame, with 48 breaches for the month. The largest of these breaches, an email hacking incident perpetrated against MEDNAX Services, Inc., a business associate, affected more than a million patients. In all, December healthcare breaches affected 4,057,276 patients. More details are discussed below.

December Healthcare Breaches

December Healthcare Breaches: Hacking/IT Incidents

It is not surprising that the majority of December healthcare breaches were the result of hacking/IT incidents, as hacking in healthcare has grown exponentially over the last several months.

December hacking

There were 4,012,987 patients affected by these types of incidents in December, with 26 incidents reported representing 98.8% of December breaches.

Email Hacks Affected 2,023,143 Patients

December email hacks represented 50.41% of the hacking incidents for the month, with 9 organizations affected. The 9 email hacking incidents affected 2,023,143 patients.

Healthcare Providers:

  • Benjamin Rose Institute on Aging: 1,452 affected patients
  • Midwest Geriatric Management, LLC: 4,814 affected patients
  • Holy Redeemer Ambulatory Surgical Center: 1,298 affected patients
  • Sonoma Valley Healthcare District: 69,000 affected patients
  • Meharry Medical College: 20,963 affected patients

Health Plans:

  • Aetna ACE: 484,157 affected patients
  • Community Eye Care, LLC: 149,804 affected patients

Business Associates:

  • MEDNAX Services, Inc.: 1,290,670 affected patients
  • HMC Healthworks, Inc.: 985 affected patients

Network Server Hacks Affected 1,986,344 Patients

Network server hacks represented 49.5% of the hacking incidents in December, with 16 organizations victimized by this type of attack. These 16 network server hacks compromised the protected health information (PHI) of 1,986,344 patients.

Let’s Simplify Compliance

HIPAA compliance and cybersecurity go hand-in-hand. Protect your business by becoming HIPAA compliant today!

Learn More!
HIPAA Seal of Compliance

Healthcare Providers:

  • Five Points Optometrists, P.C. dba Five Points Eye Care: 1,223 affected patients
  • Agency for Community Treatment Services, Inc.: 73,825 affected patients
  • Kristina T Nguy