Close Menu
Global News HQ
    What's Hot

    Carriers pull back on M&A as macro challenges bite – Clyde & Co

    July 28, 2025

    Client Challenge

    July 28, 2025

    Familiar’s Nebula Is a Thrusting Dildo That’s Scary Powerful

    July 28, 2025
    Recent Posts
    • Carriers pull back on M&A as macro challenges bite – Clyde & Co
    • Client Challenge
    • Familiar’s Nebula Is a Thrusting Dildo That’s Scary Powerful
    • ASIC Issues Warning Over Bitget’s ‘Unlicensed’ Crypto Futures Products in Australia – Decrypt
    • A Guide to New York’s Catskills, for Nature, Art, and Boutique Hotels
    Facebook X (Twitter) Instagram YouTube TikTok
    Trending
    • Carriers pull back on M&A as macro challenges bite – Clyde & Co
    • Client Challenge
    • Familiar’s Nebula Is a Thrusting Dildo That’s Scary Powerful
    • ASIC Issues Warning Over Bitget’s ‘Unlicensed’ Crypto Futures Products in Australia – Decrypt
    • A Guide to New York’s Catskills, for Nature, Art, and Boutique Hotels
    • The best wireless earbuds for every situation
    • Ethereum Exit Queue Surge Exposes Fragility in Liquid Staking Markets
    • 7 Essential Staff Training Modules for Enhanced Performance
    Global News HQ
    • Technology & Gadgets
    • Travel & Tourism (Luxury)
    • Health & Wellness (Specialized)
    • Home Improvement & Remodeling
    • Luxury Goods & Services
    • Home
    • Finance & Investment
    • Insurance
    • Legal
    • Real Estate
    • More
      • Cryptocurrency & Blockchain
      • E-commerce & Retail
      • Business & Entrepreneurship
      • Automotive (Car Deals & Maintenance)
    Global News HQ
    Home - Legal - OCR Reaches Settlement with Health Care Network Health Over HIPAA Violations Stemming from Phishing Attack
    Legal

    OCR Reaches Settlement with Health Care Network Health Over HIPAA Violations Stemming from Phishing Attack

    Facebook Twitter Pinterest LinkedIn Tumblr WhatsApp VKontakte Email
    OCR Reaches Settlement with Health Care Network Health Over HIPAA Violations Stemming from Phishing Attack
    Share
    Facebook Twitter LinkedIn Pinterest Email


    On April 23, 2025, the Department of Health and Human Services’ Office for Civil Rights (“OCR”) announced a HIPAA enforcement action against PIH Health, Inc. (“PIH”), a California-based health care network, following a phishing attack that exposed patients’ electronic protected health information (“ePHI”). The settlement highlights OCR’s continued focus on ensuring that covered entities implement robust security programs capable of identifying and mitigating threats to ePHI.

    The investigation stemmed from a breach report submitted by PIH in January 2020, which disclosed that in June 2019, a phishing attack had compromised the email accounts of 45 employees. The attack resulted in the unauthorized disclosure of unsecured ePHI belonging to 189,763 individuals, including names, addresses, dates of birth, driver’s license numbers, Social Security numbers, medical diagnoses, lab results, medications, treatment and claims information, and financial data.

    OCR’s investigation uncovered multiple potential violations of the HIPAA Privacy, Security and Breach Notification Rules, including PIH’s failure to (1) use or disclose PHI as required by the Privacy Rule, (2) conduct an accurate and thorough risk analysis of security vulnerabilities affecting ePHI, and (3) provide timely breach notification to affected individuals, HHS, and the media.

    To resolve the matter, PIH agreed to a $600,000 monetary settlement and to implement a two-year corrective action plan. Under the corrective action plan, PIH is required to conduct a comprehensive HIPAA risk analysis, develop and implement a risk management plan to address identified vulnerabilities, revise and maintain HIPAA-compliant policies and procedures, and provide workforce training on HIPAA requirements for safeguarding PHI.

    This enforcement action underscores OCR’s expectation that covered entities proactively assess and strengthen their HIPAA compliance programs to address evolving cybersecurity threats such as phishing attacks. It also follows two recent additional settlements announced by OCR involving failures to implement basic safeguards under the HIPAA Security Rule, reinforcing the agency’s continued emphasis on holding regulated entities accountable for cybersecurity-related compliance lapses.



    Source link

    Share. Facebook Twitter Pinterest LinkedIn Tumblr WhatsApp Email
    Previous ArticleWhat DOGE is Doing Now
    Next Article I replaced my iPad with this cheap Android 15 tablet, and it surprisingly held up

    Related Posts

    Maine Employers: Changes to Earned Paid Leave

    July 28, 2025

    6 Warning Signs That Could Point to Medical Malpractice

    July 27, 2025

    Milbank Will Fight Feds: Lawyers Slash Hourly Rate for Sanctuary Cities | Law.com

    July 26, 2025

    Milbank Will Fight Feds: Lawyers Slash Hourly Rate for Sanctuary Cities | Law.com

    July 26, 2025
    Leave A Reply Cancel Reply

    ads
    Don't Miss
    Insurance
    1 Min Read

    Carriers pull back on M&A as macro challenges bite – Clyde & Co

    Traditional deals lagged but one segment picked up the slack Source link

    Client Challenge

    July 28, 2025

    Familiar’s Nebula Is a Thrusting Dildo That’s Scary Powerful

    July 28, 2025

    ASIC Issues Warning Over Bitget’s ‘Unlicensed’ Crypto Futures Products in Australia – Decrypt

    July 28, 2025
    Top
    Insurance
    1 Min Read

    Carriers pull back on M&A as macro challenges bite – Clyde & Co

    Traditional deals lagged but one segment picked up the slack Source link

    Client Challenge

    July 28, 2025

    Familiar’s Nebula Is a Thrusting Dildo That’s Scary Powerful

    July 28, 2025
    Our Picks
    Insurance
    1 Min Read

    Carriers pull back on M&A as macro challenges bite – Clyde & Co

    Traditional deals lagged but one segment picked up the slack Source link

    Finance & Investment
    1 Min Read

    Client Challenge

    Client Challenge JavaScript is disabled in your browser. Please enable JavaScript to proceed. A required…

    Pages
    • About Us
    • Contact Us
    • Disclaimer
    • Homepage
    • Privacy Policy
    Facebook X (Twitter) Instagram YouTube TikTok
    • Home
    © 2025 Global News HQ .

    Type above and press Enter to search. Press Esc to cancel.

    Go to mobile version