DOTmed Home MRI Oncology Ultrasound Molecular Imaging X-Ray Cardiology Health IT Business Affairs
News Home Parts & Service Operating Room CT Women's Health Proton Therapy Endoscopy HTMs Pediatrics
SEARCH
Ubicación actual:
>
> This Story

starstarstarstarstar (1)
Conexión o Registro to rate this News Story
Forward Printable StoryPrint Comment
advertisement

 

advertisement

 

U.S. Healthcare Homepage

Observations after 20 years of single-use device reprocessing Insights on the ongoing battle to safely increase market competition

Covera Health and Walmart partner to help connect patients with better radiology care Avoid unnecessary and misguided treatments

Touchstone Medical Imaging to pay $3 million settlement for security breach Patient information was leaked and indexed by search engines

CyberKnife ads in NY subway raise 'direct-to-consumer' marketing questions at AUA The crossroads of medical accuracy and promotional language

Court denies Hologic's attempt to halt sale of Minerva's ablation solution Follows a drawn out case over patent infringement

FDA ending controversial 'alternative summary reporting' program Announces decision in statement addressing breast implant safety

Radiology Partners and Banner Health team up to establish Banner Imaging Provides imaging services throughout the metro Phoenix area

Radiation oncologists appeal to Congress to safeguard radiotherapy treatment Protecting cancer patients' access to value-based care

Elekta sues ZAP Surgical Systems, claiming patent infringement Over design and sale of ZAP's radiosurgery platform

DR now makes up over 80 percent of US general radiography install base Up from only half in 2015

Anthem pays HHS $16 million over 'largest health data breach in US history'

por Thomas Dworetzky , Contributing Reporter
Anthem has agreed to pay $16 million to the U.S. Department of Health and Human Services, Office for Civil Rights (OCR) and take “major corrective action” over the massive 2015 electronic health records hack against it that exposed the private information of nearly 79 million people.

“The largest health data breach in U.S. history fully merits the largest HIPAA settlement in history,” said OCR director Roger Severino in a statement, adding, “Unfortunately, Anthem failed to implement appropriate measures for detecting hackers who had gained access to their system to harvest passwords and steal people’s private information.”

Story Continues Below Advertisement

New & Refurbished C-Arm Systems. Call 702.384.0085 Today!

KenQuest provides all major brands of surgical c-arms (new and refurbished) and carries a large inventory for purchase or rent. With over 20 years in the medical equipment business we can help you fulfill your equipment needs



The $16 million settlement eclipsed the previous high of $5.55 million paid to OCR in 2016.

The company reported the breach on March 13, 2015, revealing that hackers had breached its security on January 29, 2015, by using what is called an advanced persistent threat attack.

After the initial report, it was learned that the cyberattackers had used spear phishing emails to one of its subsidiaries and that at least one employee had been suckered into responding – which opened the way for additional attacks.

OCR determined that between December 2, 2014 and January 27, 2015, the hackers made off with the protected data, including names, social security numbers, medical ID numbers, addresses, dates of birth, email addresses, and employment information.

“We know that large healthcare entities are attractive targets for hackers, which is why they are expected to have strong password policies and to monitor and respond to security incidents in a timely fashion or risk enforcement by OCR,” said Severino.

Part of the Anthem punishment is because the firm also failed “to conduct an enterprise-wide risk analysis, had insufficient procedures to regularly review information system activity, failed to identify and respond to suspected or known security incidents, and failed to implement adequate minimum access controls to prevent the cyberattackers from accessing sensitive electronic protected health information (ePHI),” said the federal agency.

If Anthem fails to follow the corrective action plan laid out by OCR, and “and fails to curb the breach,” however, the agreement is off, according to the terms of the deal.

In June, 2017, Anthem agreed to a $115 million settlement of a lawsuit stemming from the breach.

The money represented the biggest data-breach settlement to date, according to a statement from the court-appointed plaintiff attorneys from Altshuler Berzon, Cohen Milstein, Girard Gibbs, and Lieff Cabraser.

“After two years of intensive litigation and hard work by the parties, we are pleased that consumers who were affected by this data breach will be protected going forward, and compensated for past losses,” said Eve Cervantez, co-lead counsel representing the plaintiffs in the Anthem litigation, at the time.

The agreement was given final approval on August 18.

The proposed deal also requires “Anthem to guarantee a certain level of funding for information security and to implement or maintain numerous specific changes to its data security systems, including encryption of certain information and archiving sensitive data with strict access controls.”

“We are very satisfied that the settlement is a great result for those affected and look forward to working through the settlement approval process,” said Andrew Friedman, co-lead plaintiffs’ counsel, at the time.

U.S. Healthcare Homepage


You Must Be Logged In To Post A Comment

Anuncie
Aumente su conciencia de marca
Subastas + ventas Privadas
Consigue el mejor precio
Comprar Equipo/Piezas
Encuentra El Precio Más Bajo
Noticias diarias
Lee las últimas noticias
Directorio
Examina todos los usuarios DOTmed
Ética en DOTmed
Ver nuestro programa de ética
El oro parte programa del vendedor
Recibir las solicitudes de PH
Programa de distribuidor con servicio gold
Recibe solicitudes
Proveedores de atención de salud
Ver todos los HCP (abreviatura de asistencia médica) Herramientas
Trabajos/Entrenamiento
Encontrar/rellenar un trabajo
Parts Hunter +EasyPay
Obtener presupuestos para piezas
Certificado recientemente
Ver usuarios certificados recientemente
Recientemente clasificado
Ver usuarios certificados recientemente
Central de alquiler
Alquila equipos por menos
Vende equipos/piezas
Obtén más dinero
Mantenga el foro de los técnicos
Buscar ayuda y asesoramiento
Petición sencilla de propuestas
Obtén presupuestos para equipos
Feria comercial virtual
Encuentra servicio para el equipo
El acceso y el uso de este sitio está conforme a los términos y a las condiciones de nuestro AVISO LEGAL & AVISO DE LA AISLAMIENTO
Característica de y propietario DOTmeda .com, inc. Copyright ©2001-2019 DOTmed.com, Inc.
TODOS LOS DERECHOS RESERVADOS