Privacy & Security

10 most recent HIPAA breaches

All listed on OCR this month
By Bernie Monegain
December 28, 2015
10:30 AM

As the year 2015 draws to a close with a warning that healthcare – more than ever before – has become a target for cybersecurity attacks, we list the most recent data breaches reported to the HHS Office for Civil Rights. All 10 were reported in December.

1. 12/01: Centegra Health System, Il, affected 2,929 people.

A mailing snafu may have exposed personal information of patients.

2. 12/01: Cottage Health, Calif. Affected 11,000 people

In a statement, Cottage Health officials said limited information from as many as 11,000 patients was exposed.

[ALSO: 10 stubborn cybersecurity myths, busted]

"Cottage Health recently hired a team of cyber security experts to test our data systems," the statement said. "This team discovered a single server that was exposed. We immediately shut down this server and began an investigation."

3. 12/02 Univesity of Colorado Heath, Co. 827 people affected.

A nurse at Poudre Valley Hospital was fired for viewing patients' medical records out of personal curiosity, the Coloradoan reported.

University of Colorado Health, which operates PVH and Medical Center of the Rockies in Loveland, is notified patients that an employee inappropriately accessed their electronic medical records.

4. 12/03 Blue Cross Blue Shield of Nebraska, 1,872 people affected

Blue Cross and Blue Shield of Nebraska notified beneficiaries that a printing error caused some dental explanation of benefits forms to be sent to the wrong customers. The forms revealed treatment and services that the insurer paid for their insured.

5. 2/03 CamelBack Women's Health, Ariz., 810 people affected

6. 2/4 Middlesex Hospital, Conn., 946 people affected

7. 12/8 Maine General Health and subsidiaries, 500 people affected

On Nov. 13, 2015, the FBI notified MaineGeneral that agents had detected MaineGeneral data on an external website that is not accessible by the general public. The data affected includes the dates of birth and emergency contact names, addresses, and telephone numbers for certain patients referred by a treating physician to MaineGeneral Medical Center for radiology services since June 2009.

8. 12/11 Mary Ruth Buchness, N.Y., 14,910 people affected

Mary Ruth Buchness, a dermatologist practicing in New York City, accidentally  emailed  a list of nearly 15,000 patient names and corresponding addresses, appointment dates and Social Security numbers.

9. 12/15 New Mexico Department of Health, 561 people affected

10. 12/18 Physicians Health Plan of Northern Indiana, 1,708 people affected

See our slideshow of reported breaches in 2015 - 2016 - 2017

Scroll OCR's complete list of HIPAA violations here.

Topics: 
Government & Policy, Privacy & Security

More regional news

Capitol rotunda at sunset

Congress releases AI policy blueprint

By
Andrea Fox
December 20, 2024
Epic booth at HIMSS global conference

Epic files to dismiss antitrust lawsuit

By
Andrea Fox
December 20, 2024
Representatives of NUS Medicine, Kailuan General Hospital, Tianjin Medical University, and Tianjin Medical University General Hospital pose after signing their MOU

Chinese hospitals join NUS Medicine's big health data project

By
Adam Ang
December 19, 2024
Want to get more stories like this one? Get daily news updates from Healthcare IT News.
Your subscription has been saved.
Something went wrong. Please try again.

Top Story

Capitol rotunda at sunset
Congress releases AI policy blueprint

Most Read

Aidoc, NVIDIA intro new plan to speed AI adoption in healthcare
Winning cybersecurity warfare is the ultimate millstone for CISOs
A passwordless future for clinicians? Industry paper points to a new paradigm
White House OMB is reviewing proposed cybersecurity updates to HIPAA
NHS to roll out radiology AI across 10 health trusts
Oracle Health to apply for QHIN status

Research

White Papers

More Whitepapers

Patient Engagement
Patient Engagement
Financial/Revenue Cycle Management

Webinars

More Webinars

Imaging
Interoperability
Artificial Intelligence

Video

John Saran at Holland & Knight_Modern office buildings in London Photo by Tim Grist Photography/Moment/Getty Images
PE and healthcare investment: What's next for 2025
Sponsored by
Healthcare worker talking to patient
New infusion pumps may help lighten nurses’ workload
Dr Chien-Tzung Chen 4t Linkou Chang Gung Memorial Hospital_HIMSS24 APAC
Linkou Chang Gung Memorial Hospital eyes remote patient monitoring at home
Dan Torrens at eHealth Technologies_Blockchain in healthcare concept Photo by ArtemisDiana/iStock/Getty Images Plus
Getting providers from point A to B

More Stories

Dr. Eric Liederman, CEO of CybersolutionsMD
Q&A: CybersolutionsMD CEO on preventing cyberattacks
Change healthcare booth
Nebraska sues Change Healthcare over ransomware attack
Vijayashree Natarajan of Omega Healthcare on AI
Three for 2025: data security, cancer informatics and agentic AI
Capitol Hill
Congress looks set to extend telehealth and hospital-at-home flexibilities
Josh Di Frances at LG NOVA_Top down view of startup team Photo by NanoStockk/iStock/Getty Images Plus
What a startup pitch competition shows about IT innovation
Ravi Teja Karri of Froedtert Health on AI
Using AI and ML in predictive analytics for bed demand forecasting
Abstract image of AI brain and technology
ASTP updates HHS AI Use Case Inventory for 2024
Female doctor on laptop smiles at patient in foreground who is taking notes
Report shows overwhelming doctor support for virtual care