Anthem will pay the federal government $16 million for a data breach that affected almost 79 million people. It's the largest data-breach settlement to date, and it signals the importance of conducting deep risk assessments.
In the largest HIPAA settlement ever, Anthem will pay the federal government $16 million over its 2015 data breach that affected nearly 79 million people.
Healthcare data breaches have risen nearly every year from 2010 through 2017. Although physical theft used to be the data breach method of choice, hacking has become the most prevalent method.
Connected devices are a boon to patients but only if they're impermeable to hackers.
For the second time this year, UnityPoint employees have fallen for email phishing scams. This time, hackers may have accessed 1.4 million patients' information, including some financial data.
In the middle of 2017, healthcare organizations and other companies were hit with two huge ransomware attacks. The struggle for digital security continues.
The group, called Orangeworm, has targeted healthcare providers, medical manufacturers and others in the supply chain.
While healthcare organizations continue to struggle with ransomware, they also suffer breaches when their employees make mistakes, like leaving a laptop in a car where it can be stolen.
As the plague of cyberattacks on health systems continues, HHS' Office for Civil Rights wants healthcare organizations to establish contingency plans to keep patient data secure.
HHS' Office for Civil Rights is investigating Banner Health following a 2016 cyberattack that may have affected 3.7 million patients. The Phoenix-based not-for-profit system anticipates that it may receive negative findings and be fined.
A Florida-based provider accused Allscripts of failing to take necessary precautions to prevent a ransomware attack that shut down its cloud-based EHR and forced clients to cancel business.
Hancock Health paid a roughly $55,000 ransom to hackers from an "unidentified criminal group" to regain access to hospital computer systems. The network said it found no evidence that patient information was adversely affected.