Vulnerability Identified in Philips IntelliBridge EC40/80 Hubs

A vulnerability has been identified in the Philips IntelliBridge EC40/80 hub which could allow an attacker to gain access to the hub and execute software, modify files, change the system configuration, and gain access to identifiable patient information. Philips IntelliBridge EC40/80 hubs are used to transfer medical device data from one format to another, based… Read More »

93,000 Files Belonging to California Addiction Treatment Center Exposed Online

An AWS S3 storage bucket belonging to Sunshine Behavioral Health, LLC, a San Juan Capistrano, CA-based network of drug and alcohol addiction rehabilitation centers, has been misconfigured, resulting in the exposure of sensitive patient information. The misconfigured AWS S3 bucket was initially reported to in August 2019. Sunshine Behavioral Health was contacted and the… Read More »

Phishing Attacks Reported by UNC Chapel Hill School of Medicine and Starling Physicians

University of North Carolina Chapel Hill School of Medicine has experienced a phishing attack in which the protected health information of 3,716 patients has potentially been accessed by unauthorized individuals. An investigation by third-party forensics experts confirmed that several employee email accounts were compromised between May 17, 2018 and June 18, 2018. It is unclear… Read More »

Tens of Thousands of TennCare and Florida Blue Members Impacted by Phishing Attack on Business Associate

Further healthcare organizations have confirmed they have been affected by a data breach at Magellan Health National Imaging Associates, a business associate of several HIPAA-covered entities that provides managed pharmacy and radiology benefits services. Danville, PA-based Geisinger Health Plan announced last month that 5,848 of its members had been affected by the breach. In the… Read More »

What is a HIPAA TPA?

What is a HIPAA TPA? Third party administrators (TPAs) provide several services to smaller healthcare organizations such as payroll and human resources. TPAs that work with healthcare clients are considered business associates under the Health Insurance Portability and Accountability Act (HIPAA). As a HIPAA TPA, it is essential to comply with HIPAA standards to protect… Read More »