Download and HIPAA - Healthcare Support Central

2025 HIPAA Journal Annual Survey Published: Key Insights into Compliance Challenges

The HIPAA Journal

JUNE 12, 2025

The HIPAA Journal has released the results of its 2025 Annual HIPAA Compliance Survey, offering a detailed snapshot of how healthcare organizations are managing HIPAA compliance in today’s regulatory environment. The survey also examined training practices at HIPAA-regulated entities.

HIPAA

HIPAA Unit Organization and Environment Business Associate Documentation

Trend Micro Warns of New Ransomware Group Targeting Healthcare Orgs

The HIPAA Journal

JULY 9, 2025

While only limited evidence has been found, the new group, tracked by Trend Micro as Water Pombero, is thought to be Russian, or at least have links to the region, as the group downloads and executes its ransomware from a remote IP address associated with ASN 39134, which is registered in Russia.

Best Practices

Best Practices HIPAA

Feds Issue Interlock Ransomware Warning as Healthcare Attacks Spike

The HIPAA Journal

JULY 23, 2025

One relatively unusual technique for a ransomware group is the use of compromised legitimate websites for drive-by downloads, disguising the payload as an installer for Google Chrome, Microsoft Edge, and other popular software solutions. The group’s TTPs are constantly evolving, and several new techniques have been observed in recent weeks.

Transfers

Transfers Follow-Up HIPAA Communication

Webinars

How to Start Virtual Care the Right Way: A Proven Roadmap for 2025 and Beyond

MORE WEBINARS

Healthcare Staff Database with 86,000 Records Exposed Online

The HIPAA Journal

MARCH 14, 2025

The app is available in the Apple App Store and on Google Play, with the latter showing the app has been downloaded more than 50,000 times. The post Healthcare Staff Database with 86,000 Records Exposed Online appeared first on The HIPAA Journal. The non-password-protected database was linked to ESHYFT, which operates in 29 U.S.

Certified Nursing Assistant

Certified Nursing Assistant Documentation Scheduling HIPAA

Navigating the Storm: Maintaining Work-Life Balance as a Therapist During Personal Challenges

Valant

NOVEMBER 7, 2024

Secure communication tools, including HIPAA-compliant messaging and telehealth integration , allow therapists to maintain professional communication without sacrificing privacy or security. Download Whitepaper

Documentation

Documentation Communication Scheduling Billing

Seven Healthcare Organizations Added to Ransomware Groups’ Data Leak Sites

The HIPAA Journal

JULY 10, 2025

The HIPAA Journal has not downloaded any of the leaked data, so cannot confirm the accuracy of the groups’ claims. The group claimed to have infiltrated 53 GB of data from Crenshaw Community Hospital, and listed it for download when the ransom was not paid. Generally, it does serve as confirmation of a cyberattack.

Diagnostics

Diagnostics HIPAA Billing Documentation

Survey Raises Concerns About CPG Awareness

The HIPAA Journal

APRIL 17, 2025

One of the objectives of the HIPAA Journal 2024/25 Annual Survey was to obtain insights into HIPAA compliance best practices. If finalized, the proposals will not only become standards required for HIPAA compliance , but may also be adopted by CMS as conditions for participation in Medicare and Medicaid.

HIPAA

HIPAA Best Practices Tests Communication

Orthodontic Practice Management Software Provider Announces Data Breach

The HIPAA Journal

MARCH 24, 2025

That means that anyone who found the databases could access and download the contents. The post Orthodontic Practice Management Software Provider Announces Data Breach appeared first on The HIPAA Journal. A security researcher, JayeTee, said he discovered the and claims they included the data of at least 200,000 patients.

HIPAA

HIPAA Insurance Medication

How to Grow a Telehealth Practice in NYC

Valant

JULY 23, 2025

Your best bet is to find a browser-based solution that doesn’t require patients to download yet another app. Look for HIPAA-compliant platforms that offer everything you need without making your clients jump through hoops. Some EHRs, such as Valant software, keep the telehealth experience easy for providers, too.

Documentation

Documentation HIPAA Communication Patient Records

How to Grow a Telehealth Practice in Los Angeles

Valant

JUNE 24, 2025

Your best bet is to find a browser-based solution that doesn’t require patients to download yet another app. Look for HIPAA-compliant platforms that offer everything you need without making your clients jump through hoops. Some EHRs, such as Valant software, keep the telehealth experience easy for providers, too.

Documentation

Documentation HIPAA Scheduling Communication

Cierant Corporation Announces 232,500-Record Data Breach

The HIPAA Journal

JULY 22, 2025

The first vulnerability allowed files to be uploaded and downloaded from Cleo software. It is unclear if any clients other than BCBSM chose to issue their own notifications or if any clients not subject to the HIPAA notification requirements were affected. Malicious files could be uploaded that could allow remote code execution.

Transfers

Transfers HIPAA Medication

What Behavioral Health Students Need to Know Before Starting or Joining a Practice

Valant

MAY 13, 2025

HIPAA Compliance and Data Security Every technology solution you use must meet strict standards for protecting patient data. June 1, 2021 Private Practice Business Plan Template Learn the benefits of developing a private practice business plan and download a free template. Download Template

Billing

Billing Scheduling Documentation Administrative Work

Premier Health Partners Announces July 2023 Data Breach

The HIPAA Journal

JULY 22, 2025

Each month, The HIPAA Journal compiles healthcare data breach reports and retains the raw data used to compile those reports. The first time that the October 12, 2023, listing was included on the OCR breach portal was in the data downloaded by The HIPAA Journal on December 19, 2024.

HIPAA

HIPAA Insurance Hospital Medication

Email Account Breaches Reported by Access TeleCare & Madison County, MS

The HIPAA Journal

MARCH 19, 2025

During the two months, it is possible that emails and attachments were downloaded from the account. On February 17, 2025, external cybersecurity experts confirmed that an unauthorized third party accessed the email account between November 13 and November 17, 2024, Emails and attachments may have been viewed or downloaded during that time.

HIPAA

HIPAA Documentation Insurance Medication

A Comprehensive Guide to Meaningful Use and EHR

Arkenea

JUNE 8, 2025

EHRs are HIPAA and HITRUST compliant to avoid disclosure of Patient Health Information (PHI) due to cyberattacks. Moreover, HIPAA compliance and Privacy Rules are to be included while exhibiting Meaningful Use. Check for HIPAA compliance in the system, thus addressing privacy concerns. Incorporating HIPAA to safeguard PHI.

Discharges

Discharges Vital Signs Transfers HIPAA

Outsourced Software Product Development: A Comprehensive Guide

Arkenea

APRIL 10, 2025

This rapid turnaround was possible due to the vendors agile processes, continuous integration pipelines, and prebuilt compliance frameworks for HIPAA and GDPR. This costefficient approach enabled rapid iteration and high reliability, contributing to over 400million downloads by 2014 and eventual acquisition by Facebook for $19billion.

Tests

Tests Communication Documentation Follow-Up

The Importance of HIPAA Compliant Teletherapy Platforms

Valant

SEPTEMBER 30, 2024

However, with this digital transformation comes the critical need for HIPAA compliant teletherapy platforms. What is HIPAA and Why is it Crucial in Teletherapy? The Health Insurance Portability and Accountability Act (HIPAA) sets the standard for protecting sensitive patient data.

HIPAA

HIPAA Business Associate Certification Documentation

Health Consumers Keen to Share and Download Data, But Privacy Remains a Concern

Health Populi

SEPTEMBER 20, 2020

More younger people would be interested in downloading personal health records compared with older people. Still, over 50% of consumers ages 56 to 74 would like to download their EHR data. This is particularly concerning when personal health data is downloaded to an app that may fall out of the protection of HIPAA.

HIPAA

HIPAA Medical History Hospital Collaboration

Healthcare Data Security Breach: What to Do If Your Records Have Been Hacked

Scrubs

AUGUST 22, 2023

They should also keep up with the latest healthcare IT news, including the HIPAA Journal , to make sure your system is up to date. Opening suspicious emails, downloading files, and clicking on unfamiliar links are some of the main contributors to cyberattacks.

Follow-Up

Follow-Up Documentation Patient Records HIPAA

Health Consumers Value Sharing and Downloading Health Data, But Privacy Concerns Remain

Health Populi

SEPTEMBER 21, 2020

More younger people would be interested in downloading personal health records compared with older people. Still, over 50% of consumers ages 56 to 74 would like to download their EHR data. This is particularly concerning when personal health data is downloaded to an app that may fall out of the protection of HIPAA.

HIPAA

HIPAA Medical History Hospital Collaboration

Transparency in Healthcare: How Consumers Are Taking Control of Their Medical Information

Scrubs

AUGUST 9, 2023

Under HIPAA’s privacy rule, all patients have the right to inspect, review, and receive a copy of their medical records and billing records that are held by health plans and health care providers. Getting access to your medical records isn’t always easy. However, state laws and provider regulations can complicate this process.

Medication

Medication HIPAA Insurance Tests

Protected Health Information Stolen in HealthEquity SharePoint Breach

The HIPAA Journal

JULY 5, 2024

An investigation was launched which determined that between November 2, 2023, and March 29, 2024, the vendor accessed and downloaded information from a Kairos database. No Social Security numbers, driver’s license numbers, or financial account information were accessed or downloaded.

HIPAA

HIPAA Insurance Medication

Ransomware Group Claims to Have Stolen Data of 600,000 North Country HealthCare Patients

The HIPAA Journal

JULY 17, 2025

The HIPAA Journal has not downloaded any of the leaked data and has not verified the legitimacy of the group’s claims. The post Ransomware Group Claims to Have Stolen Data of 600,000 North Country HealthCare Patients appeared first on The HIPAA Journal. According to a July 15, 2025, update, the files have been published.

HIPAA

HIPAA Diagnostics Insurance Hospital

Data Breaches Reported by Mystic Valley Elder Services & St. Anthony Regional Hospital

The HIPAA Journal

OCTOBER 31, 2024

During that time, the threat actor accessed or downloaded files on the network that contained patients’ protected health information. Anthony Regional Hospital appeared first on The HIPAA Journal. The total will be updated when the file review has been completed.

Hospital

Hospital Business Associate HIPAA Insurance

Continuum Health Alliance Data Breach Affects 377,000 Consensus Medical Group Patients

The HIPAA Journal

MAY 6, 2024

Guardant Health immediately removed the file when the error was discovered, and on March 4, 2024, it was confirmed that unidentified third parties downloaded the file between September 8, 2023, and February 28, 2024.

Medication

Medication HIPAA Follow-Up Tests

Meeting Psychiatrists’ Technical Needs: A Practice Owner’s Guide to EHR

Valant

AUGUST 2, 2024

Telehealth Capabilities HIPAA-compliant telehealth capabilities allow you to treat patients remotely in individual or group therapy sessions. Download Whitepaper Integration In this final section, we will discuss interoperability and potential for collaboration with other providers. Communication with patients is a key part of this.

Medical History

Medical History Billing HIPAA Collaboration

Threat Actors Increasingly Targeting Vulnerabilities for Initial Access

The HIPAA Journal

APRIL 24, 2024

The most common malware families were backdoors (33%), downloaders (16%), droppers (15%), credential stealers (7%) and ransomware (5%). The post Threat Actors Increasingly Targeting Vulnerabilities for Initial Access appeared first on HIPAA Journal.

HIPAA

HIPAA Hospital

OCR Offers Advice on Recognizing, Avoiding, and Mitigating Social Engineering Attacks

The HIPAA Journal

OCTOBER 28, 2024

One of the most common methods used is phishing, where a cyber actor makes contact with a healthcare employee and convinces them to visit a malicious website where they are asked to enter their credentials or are convinced to download a malicious file, both of which give the cyber actor the access they need.

HIPAA

HIPAA Collaboration

Texas Retina Associates Cyberattack Affects 312,000 Patients

The HIPAA Journal

JULY 3, 2024

The hospital has been added to the Monti group’s data leak site, but no data is currently listed for download. The post Texas Retina Associates Cyberattack Affects 312,000 Patients appeared first on The HIPAA Journal.

HIPAA

HIPAA Hospital Insurance Medication

Navigating the Transition from Clinical to Administrative Roles in Behavioral Health Practice

Valant

JUNE 2, 2024

You’ll also be responsible for ensuring that your practice is HIPAA compliant. Look for EHR and other tech solutions that allow you to maintain strong HIPAA compliance and protections for PHI. This may be affected by business licensing laws , zoning laws, and more.

Communication

Communication HIPAA Scheduling Patient Care

ICD-10 Code for Altered Mental Status, Unspecified 2024 – R41.82

Valant

JULY 29, 2024

Altered mental status, unspecified (R41.82) is a billable ICD-10 diagnostic code under HIPAA regulations from October 1, 2020, to September 30, 2021. Share Tweet Share Visit us on Facebook , Twitter , LinkedIn Enter your email to download your free ICD10 Cheat Sheet Thank you for your interest!

Diagnostics

Diagnostics HIPAA Insurance Medication

What Your Private Practice Operating Budget Should Look Like

Valant

MAY 2, 2024

EHRs help ensure compliance with regulatory requirements, such as HIPAA, by providing built-in security measures and audit trails to track access to patient information. Access to comprehensive patient records ensures that clinicians have up-to-date information so they can better personalize treatment plans.

Documentation

Documentation Patient Care Billing Insurance

How to Save Time and Effort Managing Counseling Treatment Plans at Scale

Valant

APRIL 17, 2024

Free Download Access the EHR Migration Template Download Starting Your New Practice Private Practice Business Plan Template Learn the benefits of developing a private practice business plan and download a free template. Look for industry-standard security protocols like encryption, access controls, and adherence to HIPAA.

Documentation

Documentation Best Practices HIPAA Collaboration

Americans Grew Digital Health-Data Muscles in the Pandemic – New Insights from the Pew Charitable Trusts

Health Populi

AUGUST 5, 2021

Nearly one-half of consumers said the pandemic compelled them to support provider sharing of data, 4 in 10 people embraced downloading data to apps, and one-third supported government standards to improve patient matching. One pillar of that trust is privacy.

Medical History

Medical History Vital Signs Collaboration Insurance

Silent Ransom Group Targets U.S. Law Firms with Vishing Attacks

The HIPAA Journal

MAY 28, 2025

If the user calls the number, social engineering tricks are used to convince the user to download a remote access solution such as Zoho Assist or AnyDesk in order to remove the software, as the user is told that this is the only way to prevent the subscription charge from being applied. The post Silent Ransom Group Targets U.S.

Customer Service

Customer Service HIPAA Communication

Ransomware Attack Announced by True Dental Care for Kids and Adults

The HIPAA Journal

APRIL 15, 2025

A hacker gained access to its network on February 3, 2025, and downloaded ransomware, which was used to encrypt files on its network. The post Ransomware Attack Announced by True Dental Care for Kids and Adults appeared first on The HIPAA Journal.

HIPAA

HIPAA Insurance Medication

Colorado Eye Clinic Investigating Suspected Ransomware Attack

The HIPAA Journal

MARCH 25, 2025

A third-party digital forensics firm assisted with the investigation and confirmed that the account contents had been downloaded. The post Colorado Eye Clinic Investigating Suspected Ransomware Attack appeared first on The HIPAA Journal. On January 21, 2025, Meigs EMS identified unauthorized access to an employee email account.

Insurance

Insurance HIPAA Billing Medication

Optical Software Solution Provider Ocuco Reports 241K-Record Data Breach

The HIPAA Journal

JUNE 17, 2025

On April 1, 2025, Killsec added Ocuco to its dark web data leak site, and the stolen data has since been listed for download, which suggests the ransom was not paid. The post Optical Software Solution Provider Ocuco Reports 241K-Record Data Breach appeared first on The HIPAA Journal.

HIPAA

HIPAA Appointments

GNC Offers “Free Healthcare” — Telehealth, Generic Meds, and Loyalty in the Retail Health Ecosystem

Health Populi

JULY 24, 2023

GNC also, in a HIPAA-certified manner (explained on the website) that they will be collecting users’ information which consumer-members can access — in the form of visit notes and prescription data, and be able to download and save this information.

Insurance

Insurance Acute Care Billing Follow-Up

Use your smartphone for instant medical dictation

Mobius MD

MARCH 25, 2024

Mobius Conveyor is beyond HIPAA-compliant and compatible with Mac and Windows computers. Download and enable Mobius Conveyor Follow these instructions to set up Mobius Conveyor in five minutes. With Conveyor, your familiar, refined medical dictation workflow is always close at hand.

Medication

Medication Customer Service Follow-Up HIPAA

Bradford Health Services Notifies Patients About 2023 Cyberattack

The HIPAA Journal

MAY 30, 2025

The investigation confirmed that medical device and product information relating to certain customers was downloaded by a threat actor between December 18, 2024, and December 25, 2024. The post Bradford Health Services Notifies Patients About 2023 Cyberattack appeared first on The HIPAA Journal.

Tests

Tests HIPAA Hospital Collaboration

North Carolina Pathology Laboratory Suffers 235K-Record Data Breach

The HIPAA Journal

MAY 22, 2025

Assisted by a cybersecurity firm, Compassion Health Care discovered on March 21, 2025, that an unauthorized third party had accessed its network and downloaded files that included patient, employee, and vendor information. The post North Carolina Pathology Laboratory Suffers 235K-Record Data Breach appeared first on The HIPAA Journal.

HIPAA

HIPAA Insurance Diagnostics Medication

Health Care Needs a 21st Century Infrastructure

The Healthcare Blog

JULY 9, 2024

Talk of interoperability notwithstanding, there are far too many data silos, leading to at best us lugging around disks with our downloaded records to at worst physicians acting with incomplete information for us. ACA standardized some elements of health plans, as did HIPAA before that ( certain transactions ). Change Healthcare ).

Insurance

Insurance HIPAA Billing Hospital

Your List of Key Forms Needed to Manage and Protect Your Mental Health Private Practice

Valant

MAY 3, 2024

Several forms, such as HIPAA and TCPA forms, are legally required. Release of Information (HIPAA) Form This is also known as the Notice of Privacy Practices form and is required by federal law. policies for no-show appointments). Note that some practices may opt to split Consent for Services into a separate form.

Appointments

Appointments HIPAA Insurance Communication

2025 HIPAA Journal Annual Survey Published: Key Insights into Compliance Challenges

Trend Micro Warns of New Ransomware Group Targeting Healthcare Orgs

Webinars

Trending Sources

Feds Issue Interlock Ransomware Warning as Healthcare Attacks Spike

Webinars

Healthcare Staff Database with 86,000 Records Exposed Online

Navigating the Storm: Maintaining Work-Life Balance as a Therapist During Personal Challenges

Seven Healthcare Organizations Added to Ransomware Groups’ Data Leak Sites

Survey Raises Concerns About CPG Awareness

Orthodontic Practice Management Software Provider Announces Data Breach

How to Grow a Telehealth Practice in NYC

How to Grow a Telehealth Practice in Los Angeles

Cierant Corporation Announces 232,500-Record Data Breach

What Behavioral Health Students Need to Know Before Starting or Joining a Practice

Premier Health Partners Announces July 2023 Data Breach

Email Account Breaches Reported by Access TeleCare & Madison County, MS

A Comprehensive Guide to Meaningful Use and EHR

Outsourced Software Product Development: A Comprehensive Guide

The Importance of HIPAA Compliant Teletherapy Platforms

Health Consumers Keen to Share and Download Data, But Privacy Remains a Concern

Healthcare Data Security Breach: What to Do If Your Records Have Been Hacked

Health Consumers Value Sharing and Downloading Health Data, But Privacy Concerns Remain

Transparency in Healthcare: How Consumers Are Taking Control of Their Medical Information

Protected Health Information Stolen in HealthEquity SharePoint Breach

Ransomware Group Claims to Have Stolen Data of 600,000 North Country HealthCare Patients

Data Breaches Reported by Mystic Valley Elder Services & St. Anthony Regional Hospital

Continuum Health Alliance Data Breach Affects 377,000 Consensus Medical Group Patients

Meeting Psychiatrists’ Technical Needs: A Practice Owner’s Guide to EHR

Threat Actors Increasingly Targeting Vulnerabilities for Initial Access

OCR Offers Advice on Recognizing, Avoiding, and Mitigating Social Engineering Attacks

Texas Retina Associates Cyberattack Affects 312,000 Patients

Navigating the Transition from Clinical to Administrative Roles in Behavioral Health Practice

ICD-10 Code for Altered Mental Status, Unspecified 2024 – R41.82

What Your Private Practice Operating Budget Should Look Like

How to Save Time and Effort Managing Counseling Treatment Plans at Scale

Americans Grew Digital Health-Data Muscles in the Pandemic – New Insights from the Pew Charitable Trusts

Silent Ransom Group Targets U.S. Law Firms with Vishing Attacks

Ransomware Attack Announced by True Dental Care for Kids and Adults

Colorado Eye Clinic Investigating Suspected Ransomware Attack

Optical Software Solution Provider Ocuco Reports 241K-Record Data Breach

GNC Offers “Free Healthcare” — Telehealth, Generic Meds, and Loyalty in the Retail Health Ecosystem

Use your smartphone for instant medical dictation

Bradford Health Services Notifies Patients About 2023 Cyberattack

North Carolina Pathology Laboratory Suffers 235K-Record Data Breach

Health Care Needs a 21st Century Infrastructure

Your List of Key Forms Needed to Manage and Protect Your Mental Health Private Practice

Stay Connected