2024, HIPAA and Medication - Healthcare Support Central

Medical Express Ambulance Service Data Breach Affects 118K Individuals

The HIPAA Journal

APRIL 16, 2025

Medical Express Ambulance Service has announced a March 2024 data breach that has affected more than 118,000 individuals. Data breaches have also been announced by Vitenas Cosmetic Surgery, Newport Harbor Pathology Medical Group, Rhea Medical Center, and Alabama Ophthalmology Associates.

Medication

Medication HIPAA Insurance Medical History

MEDVA Awarded Healthcare Virtual Assistant Company of 2024

MedVA

NOVEMBER 22, 2024

HENDERSON, NV – November 2024 – MEDVA, a pioneering leader in healthcare virtual staffing solutions, has been awarded Healthcare Virtual Assistant Company of the Year 2024 by Healthcare Business Review (HBR). Previously, I’d have a secretary or medical assistant doing prescription refills. FACS, and Omid Shaye, M.D.,

Patient Satisfaction

Patient Satisfaction Medical Assistant Medical Office Support Patient Centered Care

Cyberattack on Sunflower Medical Group Affects 221,000 Patients

The HIPAA Journal

MARCH 11, 2025

Cyberattacks and data breaches have been announced by Sunflower Medical Group, The Center for Digestive Health, NVW Newco, Endless Mountains Health Systems, and the Department of Veterans Affairs Eastern Colorado Health Care System. Suspicious activity was identified within its computer systems on April 11, 2024.

Medication

Medication Appointments HIPAA Insurance

Sunflower Medical Group Sued Over 221,000-Record Data Breach

The HIPAA Journal

MARCH 26, 2025

Sunflower Medical Group is facing a class action lawsuit over its recently disclosed data breach involving the protected health information of almost 221,000 current and former patients. Sunflower Medical Group is a private multi-specialty medical practice with four locations in Kansas. Sunflower Medical Group, P.A. ,

Medication

Medication HIPAA Insurance

Ascension Notifying Patients About Data Breach at Former Business Partner

The HIPAA Journal

APRIL 29, 2025

Ascension learned on December 5, 2024, that the business partner had experienced a hacking incident. The database also contained software billing and compliance reports belonging to a medical software company. The post Ascension Notifying Patients About Data Breach at Former Business Partner appeared first on The HIPAA Journal.

Discharges

Discharges Medical History HIPAA Billing

HIPAA Violation Cases

The HIPAA Journal

APRIL 27, 2025

HIPAA violation cases are compliance investigations that result from a data breach being notified to the Department of Health and Human Services’ (HHS) Office for Civil Rights (OCR) or a privacy complaint being submitted to OCR via the complaints portal. There are many different types of HIPAA violation cases.

HIPAA

HIPAA Business Associate Hospital Medication

Beacon Health System Affected by Two Business Associate Email Breaches

The HIPAA Journal

MARCH 28, 2025

The email account was secured the same day, and the forensic investigation confirmed the account was compromised from December 2 to December 4, 2024. This breach also involved a compromised email account and was detected by Restorix on May 30, 2024. Restorix sent notification letters to the affected patients on December 18, 2024.

Business Associate

Business Associate HIPAA Insurance Certification

Patient Data Compromised in Palomar Health Medical Group Cyberattack

The HIPAA Journal

JULY 8, 2024

Palomar Health Medical Group has warned patients that they may have been affected by an April 2024 cyberattack, and DaVita has learned that tracking tools on its website and mobile app may have sent user data to third-party vendors. DaVita Notifies Patients About Tracking Technology Privacy Incident DaVita Inc.,

Medication

Medication HIPAA Tests Medical History

March 2024 Healthcare Data Breach Report

The HIPAA Journal

APRIL 23, 2024

Biggest Healthcare Data Breaches in March 2024 18 data breaches were reported in March that involved the protected health information of 10,000 or more individuals, all of which were hacking incidents. A similarly sized breach was reported by Oklahoma’s largest emergency medical care provider, Emergency Medical Services Authority.

Business Associate

Business Associate HIPAA Hospital Billing

173,000 Patients Affected by Chord Specialty Dental Partners Email Data Breach

The HIPAA Journal

APRIL 1, 2025

On or around September 11, 2024, suspicious activity was identified in an employee email account. Third-party digital forensics specialists were engaged to investigate the activity and confirmed that an unauthorized third party had gained access to several employee email accounts from August 19, 2024, to September 25, 2024.

HIPAA

HIPAA Insurance Medication

Artificial Intelligence can be the Catalyst for Transformative Change at NIH

Sensible Medicine

MARCH 25, 2025

For example, a systematic review of medical journals found only 0.6% In 2024, the NIH Office of Strategic Coordination launched the Replication to Enhance Research Impact Initiative. For example, the Feinstein Institute for Medical Research settled HIPAA violations for $3.9 Yet this gold mine is mostly fools gold.

Collaboration

Collaboration Follow-Up HIPAA Medication

Vitruvian Health & Erlanger Health Affected by Nationwide Recovery Service Cyberattack

The HIPAA Journal

APRIL 18, 2025

doing business as Vitruvian Health in Georgia and Tennessee, and Erlanger Health in Tennessee, have been affected by a cyberattack on its debt collection vendor, Nationwide Recovery Service.Suspicious activity was identified within the Nationwide Recovery Service network on July 11, 2024.

HIPAA

HIPAA Hospital Documentation Insurance

Continuum Health Alliance Data Breach Affects 377,000 Consensus Medical Group Patients

The HIPAA Journal

MAY 6, 2024

Marlton, NJ-based Continuum Health Alliance has recently confirmed that it has experienced a security incident that exposed the data of 377,119 patients of its client, Consensus Medical Group, a physician-owned medical group in Evesham, NJ.

Medication

Medication HIPAA Tests Follow-Up

Hillcrest Convalescent Center Announces 106K-Record Data Breach

The HIPAA Journal

MARCH 11, 2025

Hillcrest Convalescent Center Hillcrest Convalescent Center in Durham, North Carolina has notified 106,194 individuals about a data security incident identified on June 27, 2024. Notification letters were mailed to all affected individuals on March 3, 2024. The Hillcrest incident involved the data of 106,194 individuals.

HIPAA

HIPAA Insurance Medication

Email Account Breaches Reported by Access TeleCare & Madison County, MS

The HIPAA Journal

MARCH 19, 2025

Access TeleCare, Texas The Dallas, TX-based acute and specialty telemedicine provider Access TeleCare identified unauthorized access to an employees email account on January 8, 2024. On or around November 18, 2024, suspicious activity was identified in an employee email account.

HIPAA

HIPAA Documentation Insurance Medication

Healthcare Data Breach Statistics

The HIPAA Journal

MARCH 20, 2025

The HIPAA Journal has compiled healthcare data breach statistics from October 2009, when the Department of Health and Human Services (HHS) Office for Civil Rights (OCR) started publishing summaries of healthcare data breaches on its website. CO Business Associate 14,782,887 Hacking/IT Incident 4 2024 Kaiser Foundation Health Plan, Inc.

Business Associate

Business Associate HIPAA Unit Organization and Environment Hospital

Lake Washington Vascular Ransomware Attack Affects 21,500 Patients

The HIPAA Journal

MARCH 20, 2025

Lake Washington Vascular was unable to determine exactly what information was viewed or extracted from its systems and said the information likely compromised included names, dates of birth, addresses, diagnostic test results, medical histories, diagnosis and treatment information, payer identification numbers, and government-issued identifiers.

Hospice

Hospice HIPAA Medical History Diagnostics

Email Accounts Compromised at UW Health and Medical Home Network

The HIPAA Journal

APRIL 22, 2024

Email accounts have been compromised at the University of Wisconsin Hospitals and Clinics Authority and the Medical Home Network in Illinois. On April 12, 2024, MHN learned that the protected health information of current and former members of CountyCare, Wellness West, and NeueHealth were stored in the compromised accounts.

Medication

Medication HIPAA Hospital Billing

Orthodontic Practice Management Software Provider Announces Data Breach

The HIPAA Journal

MARCH 24, 2025

OrthoMinds, an Alpharetta, Georgia-based provider of orthodontic practice management software, has recently announced a November 2024 security incident that potentially resulted in unauthorized access to patients protected health information. What is not clear at this stage is how many individuals have been affected.

HIPAA

HIPAA Insurance Medication

Multiple Class Action Lawsuits Filed Against City of Hope National Medical Center Over Data Breach

The HIPAA Journal

APRIL 25, 2024

Several class action lawsuits have been filed against City of Hope National Medical Center, a National Cancer Institute (NCI)-designated cancer treatment and research center, over a recently disclosed data breach that exposed the protected health information of more than 827,000 individuals.

Medication

Medication Medical History HIPAA Best Practices

Endue Software Confirms Data Breach Affecting Multiple Providers

The HIPAA Journal

APRIL 29, 2025

It has now been confirmed that the compromised data included patients’ full names, addresses, dates of birth, Social Security numbers, and medical record numbers. The post Endue Software Confirms Data Breach Affecting Multiple Providers appeared first on The HIPAA Journal.

Hospital

Hospital HIPAA Insurance Medication

Verizon 2024 DBIR: 70% of Healthcare Data Breaches Caused by Insiders

The HIPAA Journal

MAY 1, 2024

On May 1, 2024, the 2024 Verizon Data Breach Investigations Report ( DBIR ) was released, which this year involved an analysis of a record number of security incidents (30,458), and more than double the number of confirmed data breaches as last year (10,626). Top causes of non-erro, non-misuse data breaches.

Follow-Up

Follow-Up Transfers HIPAA Medication

Alternate Solutions Health Network Notifies Patients About May 2024 Email Breach

The HIPAA Journal

APRIL 28, 2025

Email accounts have been compromised at four HIPAA-regulated organizations: Alternate Solutions Health Network in Ohio; Park Royal Hospital in Florida; 90 Degree Benefits in Minnesota; and the Charleston Fire Department in West Virginia. Suspicious activity was identified in an employee’s email account in October 2024.

HIPAA

HIPAA Billing Hospital Insurance

PHI Exposed in Cyberattacks on Gaia Software & Pinnacle Orthopaedics & Sports Medicine Specialists

The HIPAA Journal

JULY 4, 2024

Gaia Software has disclosed details of a February 2024 cyberattack, Pinnacle Orthopaedics & Sports Medicine Specialists are investigating an April 2024 cyberattack, and OB GYN Specialists of Lima have discovered the improper disposal of patient data. Those individuals will be notified when the investigation is completed.

HIPAA

HIPAA Documentation Billing Insurance

SouthCoast Health; Call 4 Health Notify Patients About Cyberattacks

The HIPAA Journal

JULY 9, 2024

SouthCoast Health and Privia Medical Group in Georgia have notified patients about a cyberattack and data breach that occurred in June 2023. The review of the affected files was not completed until June 13, 2024. Call 4 Health Issues Notifications About March 2024 Cyberattack Call 4 Health, Inc.,

Triage

Triage HIPAA Documentation Billing

Kaiser Permanente, Soliant Health & Potomac Medical Aesthetics Report Email Breaches

The HIPAA Journal

NOVEMBER 6, 2024

Email-related data breaches have been reported by Kaiser Permanente in California, Soliant Health in Georgia, and Potomac Medical Aesthetics in Maryland. The account compromises were detected on September 3, 2024, and the accounts were immediately secured and passwords were reset.

Medication

Medication HIPAA Documentation

Texas Retina Associates Cyberattack Affects 312,000 Patients

The HIPAA Journal

JULY 3, 2024

Suspicious network activity was identified on March 27, 2024, and third-party cybersecurity specialists were engaged to investigate the activity. The group says it has given the hospital until July 8, 2024, to pay the ransom demand and will leak the stolen data if payment is not made.

Hospital

Hospital HIPAA Insurance Medication

Data Breaches Reported by Mystic Valley Elder Services & St. Anthony Regional Hospital

The HIPAA Journal

OCTOBER 31, 2024

Mystic Valley Elder Services, a Malden, Massachusetts-based non-profit agency providing home and community-based care to elders and adults living with disabilities, has started issuing individual notifications about a cyberattack and data breach that was identified on April 5, 2024.

Hospital

Hospital Business Associate HIPAA Insurance

OCR Explains Department’s Key Priorities at HHS-NIST Conference

The HIPAA Journal

OCTOBER 28, 2024

Last week, the Department of Health and Human Services (HHS) and the National Institute for Standards and Technology (NIST) hosted the Safeguarding Health Information: Building Assurance Through HIPAA Security 2024 conference after a 5-year absence. It is one of the most common reasons for individuals filing complaints with OCR.

HIPAA

HIPAA Medication

Healthcare Data Breaches Reported in Georgia, Washington & New Hampshire

The HIPAA Journal

MARCH 28, 2025

The forensic investigation confirmed unauthorized network access between November 24, 2024, and January 20, 2025, during which time the threat actor viewed or copied information from its network. The post Healthcare Data Breaches Reported in Georgia, Washington & New Hampshire appeared first on The HIPAA Journal.

Appointments

Appointments HIPAA Insurance Medication

Protected Health Information Stolen in HealthEquity SharePoint Breach

The HIPAA Journal

JULY 5, 2024

The breach was detected on March 25, 2024, and immediate action was taken to prevent further unauthorized access. An investigation was launched which determined that between November 2, 2023, and March 29, 2024, the vendor accessed and downloaded information from a Kairos database.

HIPAA

HIPAA Insurance Medication

Almost 500,000 Individuals Affected by Designed Receivable Solutions Data Breach

The HIPAA Journal

APRIL 30, 2024

On January 22, 2024, DRS identified suspicious activity within its network. On March 8, 2024, after a time-consuming and detailed review of the files, DRS confirmed that they contained the personal and protected health information of current and former patients of its healthcare clients.

Business Associate

Business Associate HIPAA Follow-Up Hospital

Doctors’ Recommendations Are Top Motivators for Consumers Who Buy Digital Health Devices: Trust and Health

Health Populi

OCTOBER 30, 2024

This insight came out of a report on How Consumers Purchase, Use and Trust Medical Devices based on market research sponsored by Propel Software. adults in October 2024 to gauge peoples’ views on digital health tools, buying trends, and trust. identifying the top 3 occupations in the U.S.

Medication

Medication HIPAA Hospital Patient Experience

Phishers Gain Access to 23 L.A. County Department of Health Services Email Accounts

The HIPAA Journal

APRIL 26, 2024

Los Angeles County Department of Health Services’ employees were targeted in a recent phishing campaign, and almost 2,800 Catholic Medical Center patients have been affected by a data breach at one of its vendors. The email accounts were accessed by an unauthorized third party between February 19, 2024, and February 20, 2024.

Business Associate

Business Associate HIPAA Tests Medication

ICD-10 Code for Altered Mental Status, Unspecified 2024 – R41.82

Valant

JULY 29, 2024

Altered mental status, unspecified (R41.82) is a billable ICD-10 diagnostic code under HIPAA regulations from October 1, 2020, to September 30, 2021. While insurers prefer more descriptive ICD-10 codes, mental health practitioners should not list something specific if the patient’s medical record cannot support the diagnosis.

Diagnostics

Diagnostics Insurance HIPAA Medication

Insider Breaches Reported by Providence Mission Heritage Endocrinology & Samaritan Health Services

The HIPAA Journal

JULY 5, 2024

Providence Mission Heritage Endocrinology In May 2024, Providence Mission Heritage Endocrinology in Mission Viejo, CA, discovered an insider breach that involved unauthorized access to clinical records. The first instance occurred on December 15, 2020, and it continued until May 15, 2024.

HIPAA

HIPAA Patient Records Insurance Hospital

Pennsylvania’s Updated Breach Notification Law Requires Credit Monitoring Services for Breach Victims

The HIPAA Journal

JULY 8, 2024

The Breach of Personal Information Notification Act was amended by Senate Bill 824 and was signed into law by state Governor Josh Shapiro on June 28, 2024. The amended law takes effect on September 26, 2024.

HIPAA

HIPAA Insurance Billing Medication

Long Island Plastic Surgical Group Confirms 161K-Record Data Breach

The HIPAA Journal

OCTOBER 29, 2024

According to its substitute breach notice, external cybersecurity professionals were engaged to investigate the incident and confirmed that a network intrusion occurred between January 4, 2024, and January 8, 2024, involving the exfiltration of a limited amount of patient data.

Insurance

Insurance HIPAA Business Associate Medication

Kisco Senior Living & Island Ambulatory Surgery Center Disclose Summer 2023 Cyberattacks

The HIPAA Journal

APRIL 23, 2024

According to the notification letters mailed to the affected individuals in April 2024, a cyberattack was detected on June 6, 2023, when its network was disrupted. It took more than 10 months (April 10, 2024) to determine the types of information involved and the number of individuals affected.

HIPAA

HIPAA Insurance Medication

Health Data Analytics Firm Reports 1.1-Million Record MSP Data Breach

The HIPAA Journal

APRIL 29, 2024

A vendor was engaged to conduct a review of the affected files, and that process was completed on April 2, 2024. Notification letters were mailed to the affected individuals on April 25, 2024, and complimentary credit monitoring and identity theft protection services have been offered to the affected individuals.

HIPAA

HIPAA Insurance Medication

LivaNova Facing Multiple Class Action Lawsuits Over October 2023 Cyberattack

The HIPAA Journal

JULY 9, 2024

The Houston, TX-based medical device company, LivaNova, is facing multiple class action lawsuits over an October 2023 cyberattack that exposed the protected health information of 180,000 patients. Notifications were issued in May 2024, and complimentary credit monitoring services were offered to the affected individuals.

HIPAA

HIPAA Insurance Medication

Email Breaches Reported by SkinCure Oncology & the Wisconsin Department of Health Services

The HIPAA Journal

JULY 4, 2024

The exposed information varied from individual to individual and may have included names, birth dates, medical record numbers, medical histories, and health insurance information. Notification letters were sent to the affected individuals on June 21, 2024, and they were advised about the data that was exposed. Central Time.

Medical History

Medical History HIPAA Insurance Medication

Patient Data Stolen from Livanova in October 2023 Ransomware Attack

The HIPAA Journal

APRIL 30, 2024

The medical device manufacturer Livanova, the Massachusetts community behavioral health center Aspire Health Alliance, and Santa Rosa Behavioral Healthcare Hospital in California have experienced ransomware attacks that exposed patient data. On April 10, 2024, Livanova confirmed that the personal and protected health information of U.S.

HIPAA

HIPAA Insurance Hospital Medication

Wichita County and Parkland Health Suffer Data Breaches

The HIPAA Journal

OCTOBER 30, 2024

Wichita County in Texas experienced a cyberattack in May 2024 that exposed the sensitive data of 47,784 individuals, the majority of which are residents of Wichita County. According to County officials, the incident was detected on May 7, 2024, when network disruption was experienced.

HIPAA

HIPAA Insurance Hospital Medication

Medical Express Ambulance Service Data Breach Affects 118K Individuals

MEDVA Awarded Healthcare Virtual Assistant Company of 2024

Trending Sources

Cyberattack on Sunflower Medical Group Affects 221,000 Patients

Sunflower Medical Group Sued Over 221,000-Record Data Breach

Ascension Notifying Patients About Data Breach at Former Business Partner

HIPAA Violation Cases

Beacon Health System Affected by Two Business Associate Email Breaches

Patient Data Compromised in Palomar Health Medical Group Cyberattack

March 2024 Healthcare Data Breach Report

173,000 Patients Affected by Chord Specialty Dental Partners Email Data Breach

Artificial Intelligence can be the Catalyst for Transformative Change at NIH

Vitruvian Health & Erlanger Health Affected by Nationwide Recovery Service Cyberattack

Continuum Health Alliance Data Breach Affects 377,000 Consensus Medical Group Patients

Hillcrest Convalescent Center Announces 106K-Record Data Breach

Email Account Breaches Reported by Access TeleCare & Madison County, MS

Healthcare Data Breach Statistics

Lake Washington Vascular Ransomware Attack Affects 21,500 Patients

Email Accounts Compromised at UW Health and Medical Home Network

Orthodontic Practice Management Software Provider Announces Data Breach

Multiple Class Action Lawsuits Filed Against City of Hope National Medical Center Over Data Breach

Endue Software Confirms Data Breach Affecting Multiple Providers

Verizon 2024 DBIR: 70% of Healthcare Data Breaches Caused by Insiders

Alternate Solutions Health Network Notifies Patients About May 2024 Email Breach

PHI Exposed in Cyberattacks on Gaia Software & Pinnacle Orthopaedics & Sports Medicine Specialists

SouthCoast Health; Call 4 Health Notify Patients About Cyberattacks

Kaiser Permanente, Soliant Health & Potomac Medical Aesthetics Report Email Breaches

Texas Retina Associates Cyberattack Affects 312,000 Patients

Data Breaches Reported by Mystic Valley Elder Services & St. Anthony Regional Hospital

OCR Explains Department’s Key Priorities at HHS-NIST Conference

Healthcare Data Breaches Reported in Georgia, Washington & New Hampshire

Protected Health Information Stolen in HealthEquity SharePoint Breach

Almost 500,000 Individuals Affected by Designed Receivable Solutions Data Breach

Doctors’ Recommendations Are Top Motivators for Consumers Who Buy Digital Health Devices: Trust and Health

Phishers Gain Access to 23 L.A. County Department of Health Services Email Accounts

ICD-10 Code for Altered Mental Status, Unspecified 2024 – R41.82

Insider Breaches Reported by Providence Mission Heritage Endocrinology & Samaritan Health Services

Pennsylvania’s Updated Breach Notification Law Requires Credit Monitoring Services for Breach Victims

Long Island Plastic Surgical Group Confirms 161K-Record Data Breach

Kisco Senior Living & Island Ambulatory Surgery Center Disclose Summer 2023 Cyberattacks

Health Data Analytics Firm Reports 1.1-Million Record MSP Data Breach

LivaNova Facing Multiple Class Action Lawsuits Over October 2023 Cyberattack

Email Breaches Reported by SkinCure Oncology & the Wisconsin Department of Health Services

Patient Data Stolen from Livanova in October 2023 Ransomware Attack

Wichita County and Parkland Health Suffer Data Breaches

Stay Connected