New York Surgery Center Agrees to $250K Settlement Over HIPAA Violations In a significant legal development, a New York-based surgery center has reached a settlement of $250,000 concerning violations related to the Health Insurance Portability and Accountability Act (HIPAA). This settlement addresses failures in conducting proper risk analysis as well…
Understanding Data Privacy Risks in AI Implementations in Healthcare As the integration of agentic artificial intelligence (AI) and other AI tools expands within the healthcare sector, it is imperative that healthcare providers and their vendors thoroughly comprehend the potential data privacy risks under the Health Insurance Portability and Accountability Act…
HIPAA/HITECH, Standards, Regulations & Compliance Settlement Follows Federal Investigation Into Data Leak and Ransomware Attack Marianne Kolbasuk McGee (HealthInfoSec) • July 8, 2025 Image: Deer Oaks Behavioral Health A Texas-based mental healthcare provider has incurred a fine of $225,000 due to its negligence in conducting a comprehensive risk analysis. This…
Artificial Intelligence & Machine Learning, Fraud Management & Cybercrime, Fraud Risk Management New Multi-Agency ‘Fusion Center’ Utilizing AI to Enhance Investigations Marianne Kolbasuk McGee (HealthInfoSec) • July 1, 2025 Image: Shutterstock The U.S. Department of Justice, in collaboration with the Department of Health and Human Services and various federal and…
HIPAA/HITECH, Standards, Regulations & Compliance California AG Leads Coalition to Prevent DHS and ICE from Accessing Personal Health Data Marianne Kolbasuk McGee (HealthInfoSec) • July 1, 2025 California Attorney General Rob Bonta leads a coalition of 19 states in a lawsuit opposing the alleged sharing of Medicaid data with ICE.…
Data Privacy, Data Security, Healthcare Ruling: HHS Lacks Authority to Differentiate Types of PHI for Restrictions Marianne Kolbasuk McGee (HealthInfoSec) • June 20, 2025 Image: Getty Images A recent ruling from a federal court in Texas has invalidated changes to the HIPAA Privacy Rule that were enacted by the Biden…
Jackson Health System Reports Significant Insider Data Breach In a troubling development within the healthcare sector, Jackson Health System has revealed a new insider data breach that extends over a five-year period. This breach has raised concerns about the safeguarding of sensitive patient information, a critical aspect of healthcare organizations…
Practice Resources Reaches $1.5 Million Settlement Over Data Breach In a significant development in cybersecurity, Practice Resources has agreed to a settlement of $1.5 million in response to a data breach that compromised sensitive patient information. This settlement underscores the increasing concerns surrounding data protection within healthcare organizations in the…
The average duration for companies to disclose a data breach stands at approximately four months, according to research analyzing ransomware incidents from 2018 onward. However, this timeframe can extend significantly for certain industries, emphasizing the complexities surrounding breach notifications. The delay in reporting data breaches largely stems from the fact…
