dismiss

Clean Sweep Live Auction on Thur. March 28th. Click to view the full inventory

DOTmed Home MRI Oncology Ultrasound Molecular Imaging X-Ray Cardiology Health IT Business Affairs
News Home Parts & Service Operating Room CT Women's Health Proton Therapy Endoscopy HTMs Mobile Imaging
SEARCH
Endroit courant :
>
> This Story

starstarstarstarstar (1)
Ouverture ou Registre to rate this News Story
Forward Printable StoryPrint Comment
advertisement

 

advertisement

 

U.S. Healthcare Homepage

Bill in Senate proposes permanent repeal of medical device excise tax Introduced by Senators Pat Toomey and Amy Klobuchar

MITA publishes QMS standard for servicing of imaging devices First standard dedicated to servicing of medical imaging devices

Can a rewards program incentivize patients to seek out lower cost imaging? Substantial savings may be achieved by paying patients to shop around

KHN exposes FDA's non-publicly-accessible injury reports Aggregating multiple adverse events into a single MAUDE filing

FDA commissioner Scott Gottlieb is resigning Departing in the midst of teen vaping battle and the opioid crisis

NIH awards $1.8 million to Magnetic Insight for neurovascular MPI Detects magnetic nanoparticle tracers, enables deep-tissue imaging

One in five US rural hospitals are at high risk of shutting down: study Forging partnerships with academic providers may help

Kaiser Permanente School of Medicine to go tuition-free for first 5 years Aiming to reduce impact of debt on graduating students

Asheville Radiology Association joins Strategic Radiology The latest expansion by the imaging coalition brings 43 new physicians to the table

Maybe competition is good for what 'ails' hospitals Mergers may be good for business, but what about patients?

Anthem pays HHS $16 million over 'largest health data breach in US history'

par Thomas Dworetzky , Contributing Reporter
Anthem has agreed to pay $16 million to the U.S. Department of Health and Human Services, Office for Civil Rights (OCR) and take “major corrective action” over the massive 2015 electronic health records hack against it that exposed the private information of nearly 79 million people.

“The largest health data breach in U.S. history fully merits the largest HIPAA settlement in history,” said OCR director Roger Severino in a statement, adding, “Unfortunately, Anthem failed to implement appropriate measures for detecting hackers who had gained access to their system to harvest passwords and steal people’s private information.”

Story Continues Below Advertisement

THE (LEADER) IN MEDICAL IMAGING TECHNOLOGY SINCE 1982. SALES-SERVICE-REPAIR

Special-Pricing Available on Medical Displays, Patient Monitors, Recorders, Printers, Media, Ultrasound Machines, and Cameras.This includes Top Brands such as SONY, BARCO, NDS, NEC, LG, EDAN, EIZO, ELO, FSN, PANASONIC, MITSUBISHI, OLYMPUS, & WIDE.



The $16 million settlement eclipsed the previous high of $5.55 million paid to OCR in 2016.

The company reported the breach on March 13, 2015, revealing that hackers had breached its security on January 29, 2015, by using what is called an advanced persistent threat attack.

After the initial report, it was learned that the cyberattackers had used spear phishing emails to one of its subsidiaries and that at least one employee had been suckered into responding – which opened the way for additional attacks.

OCR determined that between December 2, 2014 and January 27, 2015, the hackers made off with the protected data, including names, social security numbers, medical ID numbers, addresses, dates of birth, email addresses, and employment information.

“We know that large healthcare entities are attractive targets for hackers, which is why they are expected to have strong password policies and to monitor and respond to security incidents in a timely fashion or risk enforcement by OCR,” said Severino.

Part of the Anthem punishment is because the firm also failed “to conduct an enterprise-wide risk analysis, had insufficient procedures to regularly review information system activity, failed to identify and respond to suspected or known security incidents, and failed to implement adequate minimum access controls to prevent the cyberattackers from accessing sensitive electronic protected health information (ePHI),” said the federal agency.

If Anthem fails to follow the corrective action plan laid out by OCR, and “and fails to curb the breach,” however, the agreement is off, according to the terms of the deal.

In June, 2017, Anthem agreed to a $115 million settlement of a lawsuit stemming from the breach.

The money represented the biggest data-breach settlement to date, according to a statement from the court-appointed plaintiff attorneys from Altshuler Berzon, Cohen Milstein, Girard Gibbs, and Lieff Cabraser.

“After two years of intensive litigation and hard work by the parties, we are pleased that consumers who were affected by this data breach will be protected going forward, and compensated for past losses,” said Eve Cervantez, co-lead counsel representing the plaintiffs in the Anthem litigation, at the time.

The agreement was given final approval on August 18.

The proposed deal also requires “Anthem to guarantee a certain level of funding for information security and to implement or maintain numerous specific changes to its data security systems, including encryption of certain information and archiving sensitive data with strict access controls.”

“We are very satisfied that the settlement is a great result for those affected and look forward to working through the settlement approval process,” said Andrew Friedman, co-lead plaintiffs’ counsel, at the time.

U.S. Healthcare Homepage


You Must Be Logged In To Post A Comment

Publicité
Développez la notoriété de votre marque
Enchères + Ventes Privées
Obtenir le meilleur prix
Acheter des équipement / pièces
Trouver le meilleur prix
Infos du jour
Lire Les dernières nouvelles
Annuaire
Consulter tous les utilisateurs DOTmed
Éthique concernant DOTmed
Voir notre programme d'éthique
L'or partie le programme de fournisseur
Recevoir des demandes PH
Programme de marchand de service d'or
Recevoir des demandes
Fournisseurs de soins de santé
Voir tous les outils des HCP (abréviation pour les professionnels de la santé)
Les travaux/Formation
Trouver / combler un poste
Parts Hunter +EasyPay
Obtenir des devis de pièces
Certification Récentes
Voir les utilisateurs récemment certifiés
Evaluation Récentes
Voir les utilisateurs récemment certifiés
Central de location
Louer de l’équipement à moindre prix
Vendre des équipements / pièces
Obtenir le maximum d'argent
Service le forum de techniciens
Trouver de l'aide et des conseils
Simple demande de propositions
Obtenir des devis pour des appareils
Expo Virtuelle
Trouver des services d'appareils
L'Access et l'utilisation de cet emplacement est sujet aux modalités et aux conditions du notre de nos MENTIONS LEGALES & DONNEES PERSONELLES
Propriété de et classe des propriétaires DOTmedà .com, inc. Copyright ©2001-2019 DOTmed.com, Inc.
TOUS DROITS RÉSERVÉS