The HIPAA Journal

MARCH 19, 2025

The compromised email account was reviewed and found to contain patients full names, addresses, dates of birth, medical and treatment information, dates of service, provider and facility names, procedure codes, billing and claims information, patient account identifiers, and payor information.

HIPAA 75

HIPAA Scheduling Hospital Billing 75

The HIPAA Journal

APRIL 22, 2024

Email accounts have been compromised at the University of Wisconsin Hospitals and Clinics Authority and the Medical Home Network in Illinois. 20, 2023, and Dec. Suspicious activity was identified in MHN’s email environment on or around October 11, 2023.

Medication 115

Medication HIPAA Hospital Billing 115

The HIPAA Journal

MARCH 20, 2025

The HIPAA Journal has compiled healthcare data breach statistics from October 2009, when the Department of Health and Human Services (HHS) Office for Civil Rights (OCR) started publishing summaries of healthcare data breaches on its website. On January 22, 2023, the breach portal listed 857 data breaches as still; under investigation.

Business Associate 111

Business Associate HIPAA Unit Organization and Environment Hospital 111

The HIPAA Journal

MAY 6, 2024

Marlton, NJ-based Continuum Health Alliance has recently confirmed that it has experienced a security incident that exposed the data of 377,119 patients of its client, Consensus Medical Group, a physician-owned medical group in Evesham, NJ.

Medication 120

Medication HIPAA Follow-Up Tests 120

The HIPAA Journal

APRIL 27, 2025

HIPAA violation cases are compliance investigations that result from a data breach being notified to the Department of Health and Human Services’ (HHS) Office for Civil Rights (OCR) or a privacy complaint being submitted to OCR via the complaints portal. There are many different types of HIPAA violation cases.

HIPAA 67

HIPAA Business Associate Hospital Medication 67

The HIPAA Journal

JUNE 12, 2025

A settlement has been agreed to resolve class action data breach litigation against HealthEC and its clients over a 2023 hacking incident and data breach. Between July 14, 2023, and July 23, 2023, hackers accessed its network and stole files containing sensitive data. One of the class action lawsuits – Victoria Lempinen v.

HIPAA 51

HIPAA Follow-Up Documentation Insurance 51

The HIPAA Journal

APRIL 16, 2025

A settlement has been agreed to resolve a class action lawsuit against Retina Group of Washington over a March 2023 data breach that involved unauthorized access to the protected health information of 455,935 individuals. Million Settlement to Resolve Data Breach Lawsuit appeared first on The HIPAA Journal.

Follow-Up 56

Follow-Up HIPAA Documentation Scheduling 56

The HIPAA Journal

APRIL 23, 2024

March was a particularly bad month for healthcare data breaches with 93 branches of 500 or more records reported to the Department of Health and Human Services (HHS) Office for Civil Rights (OCR), a 50% increase from February and a 41% year-over-year increase from March 2023.

Business Associate 126

Business Associate HIPAA Hospital Billing 126

The HIPAA Journal

APRIL 1, 2025

On October 9, 2023, Azura Vascular Care identified suspicious network activity, with the forensic investigation confirming that hackers had access to its network between September 27, 2023, and October 9, 2023, during which time they potentially stole the protected health information of patients.

HIPAA 54

HIPAA Documentation Billing Scheduling 54

Health Prime

AUGUST 22, 2024

Medical coding consists of transforming healthcare diagnoses, procedures, medical services, and equipment into universal alphanumeric codes. According to Grand View Research , the medical coding market is expected to grow at a compound annual growth rate (CAGR) of 9.85% from 2023 to 2030.

Medical Coding 105

Medical Coding Medication Billing Patient Care 105

The HIPAA Journal

MAY 13, 2025

The Michigan House of Representatives has passed a bill ( HB 4242 ) that seeks to protect the sensitive health data of state residents from foreign entities of concern by requiring electronic medical records to be stored in the United States or Canada. The bills will now be considered by the Senate.

Billing 87

Billing Medication HIPAA 87

The HIPAA Journal

APRIL 17, 2025

The first unauthorized access occurred in February 2021 and continued until February 2023. When the privacy breach was detected, the matter was investigated internally, and the physical therapist was fired, although the lawsuit alleges KU Health failed to notify law enforcement about the illegal medical record access.

Patient Records 49

Patient Records HIPAA Hospital Insurance 49

The HIPAA Journal

JULY 4, 2024

SkinCure Oncology has notified 13,434 patients about an email attack that occurred in June 2023, and the Wisconsin Department of Health Services has announced a breach of the personal information of 19,150 Medicaid recipients. SkinCure Oncology believes files in those email accounts were viewed and potentially obtained in the attack.

Medical History 118

Medical History HIPAA Insurance Medication 118

Health Prime

JANUARY 22, 2025

Department of Health and Human Services (HHS) released a Notice of Proposed Rulemaking (NPRM) to modify the Health Insurance Portability and Accountability Act (HIPAA) Security Rule of 1996. This is the first HIPAA Security rule update since 2013. From 2018-2023, reports of significant breaches increased by 102%.

HIPAA 52

HIPAA Business Associate Best Practices Insurance 52

Health Prime

JANUARY 22, 2025

Department of Health and Human Services (HHS) released a Notice of Proposed Rulemaking (NPRM) to modify the Health Insurance Portability and Accountability Act (HIPAA) Security Rule of 1996. This is the first HIPAA Security rule update since 2013. From 2018-2023, reports of significant breaches increased by 102%.

HIPAA 52

HIPAA Business Associate Best Practices Insurance 52

The HIPAA Journal

MARCH 19, 2025

An investigation was launched which revealed an unauthorized third party had access to the email account for 2 months since November 6, 2023, and other email accounts may also have been accessed. The post Email Account Breaches Reported by Access TeleCare & Madison County, MS appeared first on The HIPAA Journal.

HIPAA 63

HIPAA Documentation Insurance Medication 63

CollaborateMD

FEBRUARY 20, 2025

billion in 2023, is forecasted to grow to 5.06 make sure items like medications and PPE are always in stock). By streamlining workflows, like the medical billing process, CollaborateMD helps providers utilize reporting tools that simplify revenue cycle management, reimbursing them faster. billion by 2030.

Patient Care 92

Patient Care Supply Management Patient Safety HIPAA 92

The HIPAA Journal

MAY 30, 2025

Bradford Health Services, Alabama Bradford Health Services in Birmingham, Alabama, has issued a May 30, 2025, notice about a data security incident that was detected more than 18 months ago on December 8, 2023. Data compromised in the incident included names, addresses, and information related to medical tests.

Tests 59

Tests HIPAA Hospital Collaboration 59

The HIPAA Journal

JULY 9, 2024

SouthCoast Health and Privia Medical Group in Georgia have notified patients about a cyberattack and data breach that occurred in June 2023. The post SouthCoast Health; Call 4 Health Notify Patients About Cyberattacks appeared first on The HIPAA Journal. During that time, files on the network were viewed or copied.

Triage 116

Triage HIPAA Documentation Billing 116

The HIPAA Journal

APRIL 26, 2024

Los Angeles County Department of Health Services’ employees were targeted in a recent phishing campaign, and almost 2,800 Catholic Medical Center patients have been affected by a data breach at one of its vendors. diagnosis/condition, treatment, test results, medications), and/or health plan information.

Business Associate 118

Business Associate HIPAA Tests Insurance 118

The HIPAA Journal

APRIL 29, 2024

On September 14, 2023, RMN notified HAPG that it had identified suspicious activity on its network, including in the systems it manages for HAPG. Million Record MSP Data Breach appeared first on HIPAA Journal. The post Health Data Analytics Firm Reports 1.1-Million

HIPAA 112

HIPAA Insurance Medication 112

The HIPAA Journal

JULY 5, 2024

An investigation was launched in November 2023, when unauthorized access was suspected. The post Insider Breaches Reported by Providence Mission Heritage Endocrinology & Samaritan Health Services appeared first on The HIPAA Journal.

HIPAA 117

HIPAA Patient Records Insurance Hospital 117

Health Populi

APRIL 17, 2023

The bill expands privacy protections for Washington State’s health citizens beyond HIPAA’s provisions. The ethos of the name and the intent of this law is a perfect vision for considering what we hear and learn this week coming out of the 2023 HIMSS Annual Conference as the meeting kicks off today. First, the law.

HIPAA 62

HIPAA Billing Hospital Medication 62

The HIPAA Journal

JULY 3, 2024

They confirmed that an unauthorized actor gained access to its network on October 8, 2023, and maintained access until the breach was detected. The post Texas Retina Associates Cyberattack Affects 312,000 Patients appeared first on The HIPAA Journal.

HIPAA 126

HIPAA Hospital Insurance Medication 126

The HIPAA Journal

OCTOBER 29, 2024

billion in MA risk-adjusted payments were made for 2023 and that 80% of those payments were made to just 20 MA companies. In fiscal year 2023, the CMS identified $12.7 In fiscal year 2023, the CMS identified $12.7 HHS-OIG estimates that around $7.5 The CMS only concurred with the last recommendation.

Follow-Up 104

Follow-Up HIPAA Tests Documentation 104

The HIPAA Journal

JULY 5, 2024

An investigation was launched which determined that between November 2, 2023, and March 29, 2024, the vendor accessed and downloaded information from a Kairos database. The post Protected Health Information Stolen in HealthEquity SharePoint Breach appeared first on The HIPAA Journal.

HIPAA 115

HIPAA Insurance Medication 115

The HIPAA Journal

OCTOBER 30, 2024

The New York multi-site medical practice, Albany ENT & Allergy Services, has agreed to pay a $500,000 financial penalty to the state of New York and will invest $2.25 The first intrusion involved ransomware and was discovered on March 27, 2023, when files were encrypted. The compromised systems contained the records of 213.

HIPAA 90

HIPAA Tests Medication 90

The HIPAA Journal

MAY 1, 2024

While ransomware groups were a major threat in 2023 and were behind some of 2023’s largest data breaches, there was a slight decline in attacks year-over-year. Verizon said threat actors are increasingly targeting personal information over medical data.

Follow-Up 106

Follow-Up Transfers HIPAA Medication 106

Health Populi

FEBRUARY 27, 2024

The aspirational document sets out the mission that “every individual deserves the right to obtain health care that is comprehensive, equitable and compassionate.”

Billing 141

Billing Insurance HIPAA Hospital 141

The HIPAA Journal

JULY 5, 2024

Suspicious activity was detected in an employee’s email account on November 3, 2023, and after securing the account, a forensic investigation was launched to determine the nature and scope of the activity. Mobile Medical Response contracted with CBM Services to provide collections services.

Business Associate 75

Business Associate HIPAA Insurance Patient Records 75

The HIPAA Journal

MARCH 18, 2025

A settlement has been agreed to resolve multiple Infosys McCamish Systems class action lawsuits that were filed in response to a 2023 ransomware attack and data breach that involved unauthorized access to the personal data of more than 6 million individuals.Infosys is Indias second-largest IT services provider, and Infosys McCamish Systems is a U.S.

HIPAA 81

HIPAA Follow-Up Insurance Medication 81

The HIPAA Journal

NOVEMBER 6, 2024

Data breaches have recently been announced by Axis Health System in Colorado, Gandara Mental Health Center in Massachusetts, Valleygate Dental Surgery Centers in North Carolina, and Family Medical Center in Maryland. The intrusion was detected on March 9, 2023, when ransomware was used to encrypt files.

HIPAA 75

HIPAA Insurance Medication Certification 75

The HIPAA Journal

JUNE 26, 2025

Data breaches were reported in similar numbers to May 2024, and well below the number of data breaches in the same period between 2021 and 2023. Geographical Distribution of Healthcare Data Breaches Data breaches affecting 500 or more individuals were reported by HIPAA-regulated entities in 33 U.S. fewer data breaches than April 2025.

Business Associate 76

Business Associate HIPAA Hospital Appointments 76

The HIPAA Journal

MARCH 7, 2025

A further hacking incident was experienced in 2021 and was disclosed by Apria Healthcare in May 2023. Hackers had access to its network between August 27, 2021, and October 10, 2021, and potentially viewed or obtained personal, medical, health insurance, and financial information. The post Apria Healthcare Agrees to $6.4M

HIPAA 68

HIPAA Documentation Insurance Medication 68

Valant

JULY 29, 2024

Altered mental status, unspecified (R41.82) is a billable ICD-10 diagnostic code under HIPAA regulations from October 1, 2020, to September 30, 2021. Check out the 2023 ICD-10 updates here. ICD-10 Code for Altered Mental Status In this blog post, Valant discusses the ICD-10 code for Altered Mental Status.

Diagnostics 97

Diagnostics HIPAA Insurance Medication 97

The HIPAA Journal

MAY 23, 2025

million settlement to resolve claims stemming from a 2022 data breach that affected more than 2 million patients.Shields Health Care is a Massachusetts-based provider of ambulatory surgical center management and medical imaging services throughout New England. On April 19, 2023, the total number of affected individuals was confirmed.

HIPAA 76

HIPAA Documentation Billing Insurance 76

Healthcare Leadership Council

JANUARY 11, 2024

The Healthcare Leadership Council hosted 10 webinars in 2023 on various healthcare topics prioritized by its members. Supply chain experts discussed the logistics of the supply chain and the challenges experienced in ensuring timely delivery of medicine and medical supplies to providers and patients.

Patient Centered Care 40

Patient Centered Care HIPAA Communication Medication 40