In 2014, a business associate of a healthcare entity was notified by law enforcement that it had suffered a cyberattack to the company's information system. The hackers were able to access and exfiltrate the health information of more than 6 million people from numerous entities served by the business associate. In addition to a fine issued by OCR, a related covered entity was sued and a multimillion-dollar settlement was reached. OCR placed the covered entity under a very detailed corrective action plan.
Read more »Tag: hhs ocr
-
The Next Major Public Health Crisis Posted on: October 15, 2020 In: Data Privacy & Cybersecurity
Blog Search
Featured Posts
- December 04, 2020 Respect and Communication: Pathways to Productive and Satisfied Employees
- December 03, 2020 The Second Wave is Here – N.J. Executive Order 192 Imposes New Pandemic-Related Requirements for Employers
- November 10, 2020 California Voters Make CCPA 2.0 a Reality – California Privacy Rights Act Ballot Measure Passes
- May 29, 2020 Seventh Circuit Court of Appeals Recent Decision in Molson-Coors v. Anheuser-Busch Affirms Lesson: Choose Words Wisely
Blog Tags
alabama
arkansas
audit
bank secrecy act
biometric data
breach notification
california
canada
ccpa
client notification
coast guard
colorado
congress
consumer notification
coronavirus
covid-19
cpra
credit card fraud
credit report
cryptocurrency
cybersecurity
cyber threat
data breach
data privacy
data security
department of state
dmarc
ebt
ecj
electronic information
email
employment
equifax
eu
eu-u.s. privacy shield
eu-us privacy shield
european union
executive order
fbi
fcra
federal trade commission
fraud
gdpr
genetic data
hacker
hacking
healthcare
hhsocr
hipaa
holiday season
human resources
identity fraud
identity theft
iepa
illinois
information security
insurance
insurance industry
internet
internet service provider
irs
legislative alert
malware
managed service providers
maryland
meltdown
microsoft office 365
money service business
multi-factor identification
new jersey
new mexico
new york
ninth circuit
nist security controls
office for civil rights
passwords
personal data
personal information
phishing
protected health information
ransomware
regulations
research
scare scam
search warrant
security rule
social engineering
social media
statute
supreme court
tax returns
twea
utah
video-teleconferencing
virginia
w2
washington
websites
workplace policy
zoom