Recently there have been notifications submitted to the authorities of more than one cyber-attack at healthcare facilities across the country which have resulted in HIPAA breaches. River Region Cardiology in Alabama and Delta County Memorial Hospital District in Colorado were both subject to data breaches. Lucent Health Solutions, a health plan administrator in Tennessee, also informed the authorities about a phishing incident that resulted in unauthorized access to a single email account.

River Region Cardiology has recently notified approximately half a million current and former patients that some of their protected health information was compromised. Although River Region Cardiology did not disclose the name of the hacking group, the BianLian Threat group claimed responsibility for the attack and added River Region Cardiology to its data leak site, suggesting a failed ransom negotiation.

In the case of Delta County Memorial Hospital District in Colorado, the stolen data of 148,363 individuals included names, addresses, phone numbers, dates of birth, financial account information, medical information, health insurance information, Social Security numbers, and driver’s license numbers.

In Lucent Health Solutions, Nashville, a Lucent Health manager opened a phishing email sent from the email account of a trusted broker. The email account contained names, dates of birth, Social Security numbers, and health, dental, and vision group and/or plan numbers. Read more about this story on our LinkedIn page