Healthcare IT News December 8, 2023
Andrea Fox

This agency’s first data breach settlement under HIPAA for a phishing attack involved the alleged failure to conduct a risk analysis to identify potential ePHI threats or vulnerabilities across the Lafourche Medical Group network.

The U.S. Department of Health and Human Services Office for Civil Rights said Thursday it has settled with Lafourche Medical Group closing an investigation over a phishing attack that affected the electronic protected health information of approximately 34,862 individuals.

WHY IT MATTERS

A hacker gained access to an email account that contained ePHI owned by Lafourche Medical Group, a provider of emergency medicine, occupational medicine and laboratory testing in Louisiana on March 30, 2021.

OCR said its investigation revealed that before the reported breach, the provider...

Today's Sponsors

Venturous
Got healthcare questions? Just ask Transcarent

Today's Sponsor

Venturous

Continue Reading

 
Topics: Govt Agencies, HHS, HIPAA, Provider
Related Articles:
Chinese medical devices are in health systems across U.S., and the government and hospitals are worried
Advancing health care through physician leadership: 5 skills for changing health care
Doximity - the 'Linkedin for Doctors' is the best performing healthcare stock in 2025
The Dark Side of AI in Medicare Advantage: When Value-Based Payment Eclipses Value-Based Care
HISAC Finds Ransomware & Third-Party Breaches Dominate 2025 Threats

Share This Article