Healthcare Breach List Hits 150 Mark
The number of healthcare entities reporting breaches of unsecured PHI affecting 500 or more individuals has crossed the 150 mark, nearly one year after the first such breach was reported.
The Office for Civil Rights (OCR) breach notification website lists 153 entities as of Thursday, Sept. 2. The HIPAA privacy and security rule enforcer began publishing the breaches in February of this year, per the HITECH, but breaches date back to September 22, 2009.
The list is required in the breach notification interim final rule, which is in effect but under review by OCR before a final rule is submitted to the Office of Management Budget (OMB).
Hospitals and provider networks account for the highest number of breaches on the list, according to numbers recorded in August by Christopher Hourihan, manager of common security framework (CSF) development and operations at HITRUST, the Health Information Trust Alliance in Frisco, Texas.
Hourihan’s latest update reports that hospitals and provider networks account for 50 breaches, followed by physician practices at 35. Insurance plans experienced the third highest number of breaches with 26 or 18%.
However, when looking at the number of individuals affected by the breaches, insurance plans accounted for 58% or 2.8 million records.
- CMS Sets 2014 Pay Rates for Hospital Outpatient and Physician Services
- FDA hopes hospitals will switch to newly regulated pharmacies
- New G-Codes to Pay Doctors for Broad Array of Non-Face-to-Face Care
- The Most Polarizing Topics in Healthcare IT
- Not-for-Profit Hospitals Find Opportunity Amid Uncertainty
- Why You Should Involve Patients in Nursing Handoffs
- States Rejecting Medicaid Expansion Forgo Billions in Federal Funds
- The 5 Biggest Healthcare Finance Trouble Spots
- How CPOE Will Make Healthcare Smarter
- Substance Abuse Resurfaces Among Anesthesiologists in Training