More than 1,400 medical records were compromised after unauthorized access was gained to the health records system used by a Texas cardiology clinic.
An HHS report, based on audits between 2010 and 2012, noted serious vulnerabilities affecting 10 state Medicaid agencies.
Nearly 20 staffers with Washington-based Franciscan Medical Group were tricked by phishing emails, resulting in a compromise of personal information for 8,300 patients.
With the addition of 15,000 mobile devices accessing its network, a medical center found assurance - and met compliance mandates, reports Greg Masters.
An encrypted laptop and two unencrypted flash drives containing personal information on 5,000 patients were stolen from a Palomar Health employee.
Legal experts say the settlement serves as a small win for plaintiffs, and a much bigger one for their attorneys.
A password protected laptop stolen from Talyst, a provider of pharmacy billing management services, has resulted in the compromise of personal information for more than 1,000 patients of University of Kentucky HealthCare.
The San Francisco Department of Public Health is warning more than 55,000 patients served in DPH facilities that their personal information may have been compromised in a Feb. 5 breach of Sutherland Healthcare Solutions.
Roughly 38,000 members of Minnesota-based HealthPartners may have personal information at risk after an employee brought home electronic files containing the data.
A file containing personal information on almost 9,000 patients of HealthSource of Ohio was viewed 47 times in the roughly five-week span it was inadvertently made available on the internet.
Social Security numbers and payment card data is among the personal information that may have been compromised for about 5,400 Colorado patients after a computer virus was identified on some hospital computers.
On Thursday, Kevin Charest, the U.S. Department of Health and Human Services CISO, spoke to SCMagazine.com about the new initiative.
Nearly 10,000 patients of University of California San Francisco Family Medicine Center at Lakeshore may have personal information at risk after unencrypted desktop computers containing their data were stolen.
An annual study on patient privacy and security marked improvements on the data breach front, though organizations voiced concerns with health information exchanges (HIEs).
Information on more than 2,000 individuals leaked outside a secure network because, since 2008, two employees with the Iowa Department of Human Services used personal online accounts and storage devices.
Personal information on multiple patients was compromised after a Wisconsin hospital unknowingly faxed their records to an Oregon man.
More than 43,000 former and current employees of Chicago-based Assisted Living Concepts are being notified that their personal data may be at risk after an unauthorized third party gained access to sensitive payroll files.
More than a thousand patients of St. Vincent Indianapolis hospital are being notified that their personal information may have been compromised after a password-protected laptop containing the data was stolen.
Security researchers discovered new documents online containing details about equipment and network firewall passwords that put multiple nursing homes' electronic medical records and payment information at risk.
More than 3,500 patients of The University of Texas MD Anderson Cancer Center may have had personal information compromised after a researcher's unencrypted USB thumb drive went missing.
U.S. intelligence agencies were concerned that developers, with ties to Belarus, helped "produce the website," The Washington Free Beacon reported.
More than 400,000 patients and employees of St. Joseph Health System in Texas are being notified that their personal information may have been accessed following an attack on the health system's computer system.
Apple executives had a discussion with FDA Commissioner Margaret Hamburg in mid-December.
About 41,000 members of Wisconsin-based Unity Health Insurance are being notified that their personal information may be at risk after a portable hard drive was reported missing.
A laptop containing personal information - including Social Security numbers - on roughly 900 individuals at Washington nursing homes was stolen from the vehicle of a South Sound doctor.
Roughly 1,800 patients of UC Davis Health System in California are being notified that their personal information may be at risk after the email accounts of three physicians were compromised in a phishing scam.
The exercises are expected to occur in March and July and will be conducted in partnership with the U.S. Department of Health and Human Services and major health care companies.
Two employees at Georgia-based Phoebe Putney Memorial Hospital have been fired after a desktop computer containing information on nearly 6,800 individuals was mistakenly thrown away.
Data on nearly 12,000 past and present clients of the Wyoming Department of Health Special Supplemental Nutrition Program for Women, Infants and Children may be at risk after an unsecured file was sent to a partner.
A laptop stolen from the office of a New Mexico Oncology Hematology Consultants employee may have led to a compromise of unsecured protected health information for more than 12,000 individuals.
It was a computer programming error in the North Carolina Department of Health and Human Services that led to the Medicaid cards of almost 50,000 children being mailed to wrong addresses.
An employee with Riverside Health System in Virginia was fired for inappropriately accessing the medical records of nearly 1,000 patients over the span of four years.
Network-connected-and-configured devices can be infected by malware that provides access to patient data, monitoring systems and implanted patient devices.
Nearly 3,500 members of the South Carolina Health Insurance Pool may have had personal information compromised after a password-protected laptop containing the sensitive data was stolen from an independent auditor's car.
An employee with a private contractor for Colorado Medicaid was fired after sending an email to a personal account that contained sensitive information on almost 2,000 people.
An undisclosed number of individuals may have had personal information compromised after a secured California Employment Development Department facility was broken into and computers were stolen.
Kurt DelBene will now serve as a senior advisor to the Secretary of Health and Human Services, replacing Jeff Zients, who previously managed healthcare.gov.
Horizon Blue Cross Blue Shield of New Jersey is notifying more than 800,000 members that their personal information may have been compromised after two unencrypted laptops were stolen.
The Fairfax County Health Department in Virginia is sending notification letters to roughly 1,500 individuals after one of the county's health care clinics inadvertently left private pharmaceutical records on an unsecured computer server.
Representatives of the Energy and Commerce Committee have asked the FDA to hire experts to investigate the incident which occurred in October.
More than a thousand patients treated at a variety of University of Pittsburgh Medical Center locations over the past year are being notified that their personal information was viewed inappropriately by a former employee.
A UW Medicine employee opened an email attachment and unknowingly downloaded malware, which led to the compromise of about 90,000 patients of Seattle-based Harborview Medical Center and University of Washington Medical Center.
Jay Radcliffe showed how his insulin pump was vulnerable to a remote takeover.
Florida Digestive Health Specialists LLP is notifying about 4,400 patients that a former employee improperly accessed their personal information and photographed the data.
More than 8,000 patients of University of California, San Francisco are receiving notification letters after a possibly unencrypted laptop that contained the personal information was stolen from a physician's vehicle.
Thousands of doctors at Anthem Blue Cross of California are being notified that their personal information was mistakenly posted online.
More than a thousand patients of a California hospital are being notified that their personal information may have been compromised.
Thousands of city workers in Milwaukee, as well as their spouses and domestic partners, had personal information compromised after a flash drive that contained the data was stolen.
More than 11,000 patients and some employees of Colorado-based kidney care company DaVita are being alerted after an unencrypted laptop containing their personal data was stolen from a staffer's vehicle.
The HealthCare Information Security and Privacy Practitioner (HCISPP) certification program was introduced on Monday.
The device records the wearer's body temperature and uploads the data to any Android device via Bluetooth.
Two former nurses' aides for Virginia-based nonprofit Sentara Healthcare have pleaded guilty to accessing thousands of electronic patient records and using the information to file fraudulent tax returns.
An employee of a staff physician at Boone Hospital Center in Missouri was fired after inappropriately accessing patient information on the hospital network.
The theft of two laptops has led to a compromise of personal information, including Social Security numbers, for more than 700k patients of California-based AHMC hospitals.
In a TV interview, Cheney revealed that the wireless feature of his defibrillator was disabled due to concerns of an assassination attempt.
A system settings error caused financial statements to be mailed to roughly 8,000 people who received care from a Wisconsin hospital, but an undisclosed number were sent to unauthorized persons.
An employee with North Carolina-based CaroMont Health sent out an insecure email containing personal information on more than 1,300 patients.
More than 3,500 patients of University of California San Francisco Medical Center may have had data compromised after a hospital laptop was stolen from an employee's vehicle.
Nearly two thousand patients may have personal information at risk after an unauthorized user accessed an electronic medical record system for Iowa-based UnityPoint Health.
Patients treated this year at St. Mary's Janesville Hospital in Wisconsin may have had personal data compromised when a health care laptop was stolen from the car of an employee.
Criminals leverage medical devices for targeted attacks, says Dale Nordenberg of the Medical Device Innovation, Safety and Security Consortium. Karen Epper Hoffman reports.
Patients of California-based Santa Clara Valley Medical Center had their medical data compromised when an unencrypted laptop was stolen from the audiology department.
Business associates of HIPAA-covered entities are now legally bound to follow the same guidelines when securing patients' protected health information.
A Kaiser Permanente employee sent out an email with an attachment that contained personal information on hundreds of patients.
The number of victims fooled by spurious emails or fake websites has doubled since last year, and experts say the scams are still under-reported.
Card information for thousands of Medical University of South Carolina patients may be at risk following a malicious attack on its third party card payment vendor.
A laptop and flash drive containing health information for thousands of patients of St. Anthony's Medical Center in St. Louis was stolen from a doctor's car.
The Federal Trade Commission alleges that the medical testing provider exposed the data of more than 9,000 consumers, putting them at risk of identity theft.
The specialized computer, which works in tandem with a health center medical machine, contained patient data and images.
A document containing personal information inadvertently was attached to an Alaska nonprofit's mass distributed email survey, which, among other questions, asks clients how they believe the entity handles their sensitive health care materials.
Thieves stole four unencrypted computers from an administrative building of Advocate Medical Group in Chicago.
A medical clinic worker was fired after stealing an external drive containing personal medical information on thousands of patients.
Emailing protected health information (PHI) to a personal email address cost one Rocky Mountain Spine Clinic employee her job last week.
A California-based medical group experienced a data breach when a laptop containing sensitive patient information was stolen.
Security researcher Jay Radcliffe dug deeper into the medical device's flaw after he experienced a dangerous mishap.
Health records for 2,000 Fairfax County public school students could be exposed after a laptop was stolen from a school nurse's vehicle.
More than 3,000 patients at an Oregon hospital were notified of their information being stored in an unauthorized cloud service.
San Jose Medical Supply Co. in California has filed a lawsuit against former employees for allegedly disclosing customer information to two competitors, which it also is suing.
Nearly 20,000 University of Virginia students were affected when Social Security numbers were mistakenly printed on mailing address labels.
The New York State Office of the Medicaid Inspector General (OMIG) suspects an employee of forwarding more than 17,000 records to personal email account.
A Long Beach Memorial Medical Center employee may be responsible for a data breach that is said to have impacted thousands of patients.
Health care organizations with multiple locations need systems in place to manage health information security systems, and it all starts with their firewalls.
More than a dozen patient records, including at least one celebrity, were accessed by employees at a Los Angeles hospital.
Stolen health insurance dossiers can earn their sellers more than a thousand dollars, a senior researcher at Dell SecureWorks reports.
Hundreds of thousands of patients potentially exposed after hospital records from Texas Health Harris Methodist Hospital Fort Worth turn up in Dallas park.
The Indianapolis-based health insurer must pay the Department of Health and Human Services $1.7 million to avoid heftier fines under HIPAA for its 137-day long breach ending in 2010.
The leaked information was from the Michigan Department of Community Health, which is notifying impacted individuals.
Information for more than 2,000 patients was lost when a Nebraska doctor's thumb drive went missing.
The personal information of former patients and employees at the Mental Health Institute in Independence, Iowa, as well as workers at other state facilities, may have been exposed after a backup computer tape went missing.
Patients of the Veterans Affairs hospital in Fayetteville, N.C., may have had their personal information exposed after more than 1,000 personal records were improperly disposed of.
The laptop was stolen from Monterey Park, Calif.-based SynerMed.
The incident impacted patients at the Center for Language, Speech and Hearing at the University of Massachusetts Amherst.
More than 1,000 patients were affected by the breach after a hospital employee, as part of a routine update, accidentally exposed the information.
The U.S. Department of Health and Human Services continues to ramp up its investigations of health care-related entities as a result of breaches.
The sensitive information, including names, addresses, and Social Security numbers, went missing from a third-party vendor's warehouse.
A routine email sent to Dent Neurologic Institute patients mistakenly included the sensitive data of others receiving treatment.
Other personal information, such as names, contact information and dates of birth, was also compromised.
The laptop was password protected, but not encrypted. The theft marks the second breach in just over a year that affected the university health care system.
The California Department of Public Health announced that the data included names, addresses, Social Security numbers, and medical information.
Concerns over identity theft affecting senior citizens prompted the hearing.