Author Archives: Blog HIPAA

CaptureRx Ransomware Attack Affects Multiple Healthcare Provider Clients

CaptureRx, a San Antonio, TX-based provider of 340B administrative services to healthcare providers, has suffered a ransomware attack in which files containing the protected health information of customers’ patients were stolen. The security breach was detected on February 19, 2021, with the investigation confirming unauthorized individuals had accessed and acquired files containing sensitive data on… Read More »

May 19, 2021: Solving Your HIPAA Problem: Group Demonstration of Compliancy Group’s Simplified Process

The Health Insurance Portability and Accountability Act can be confusing and complying with all provisions of the HIPAA Privacy, Security, Omnibus, and Breach Notification Rules can be challenging. One way to ensure compliance is to receive assistance from compliance experts and to be guided through the process. This will ensure no aspect of compliance is… Read More »

Lawmakers Call for Investigation into Breach of the Contact Tracing Data of 72,000 Pennsylvanians

Lawmakers in the Commonwealth of Pennsylvania are calling for an investigation into a data breach involving the contact tracing information of 72,000 Pennsylvanians after it was discovered that sensitive information was being shared via unauthorized channels without the necessary security protections. Insight Global is an Atlanta-based firm that has been assisting the Commonwealth of Pennsylvania… Read More »

Ransomware Attack on Scripps Health Disrupts Patient Care

The San Diego-based healthcare provider Scripps Health suffered a cyberattack on May 1, 2021 which forced it to take its information technology systems offline. Scripps Health operates four hospitals in the San Diego area and has been able to continue to provide care to patients; however, stroke, heart attack, and trauma patients seeking emergency treatment… Read More »

Health Aid of Ohio Security Incident Affects up to 141,00 Individuals

Health Aid of Ohio, a Parma, OH-based full-service home medical equipment provider, has discovered unauthorized individuals gained access to its systems and exfiltrated some files from its network. The breach was detected on February 19, 2021 when suspicious network activity was detected. Action was quickly taken to eject the attackers from the network and secure… Read More »

CISA/NIST Issue Guidance on Improving Defenses Against Software Supply Chain Attacks

The Cybersecurity and Infrastructure Security Agency (CISA) and the National Institute of Standards and Technology (NIST) have published guidance to help organizations improve their defenses against software supply chain attacks. The guidance document – Defending Against Software Supply Chain Attacks – explains the three most common methods that threat groups use in supply chain attacks… Read More »