Healthcare Innovation February 26, 2024
David Raths

Investigation of ransomware attack at Maryland-based behavioral health provider found evidence of potential violations of the HIPAA Privacy and Security Rules leading up to the breach

The U.S. Department of Health and Human Services Office for Civil Rights (OCR) has settled an investigation following a ransomware attack that affected the protected health information of more than 14,000 individuals. OCR noted that this marks the second settlement it has reached with a HIPAA-regulated entity for potential violations identified during an investigation of a ransomware attack.

The settlement is with Green Ridge Behavioral Health LLC, a Maryland-based practice that provides psychiatric evaluations, medication management, and psychotherapy.

In February 2019, Green Ridge Behavioral Health filed a breach report with OCR stating that its...

Today's Sponsors

LEK
ZeOmega

Today's Sponsor

LEK

Continue Reading

 
Topics: Cybersecurity, Govt Agencies, Health IT, HHS, HIPAA, Provider, Technology
Related Articles:
A unified front: Cybersecurity's role in healthcare operations and patient safety | Viewpoint
3 leadership lessons we can learn from ethical hackers
Demonstrating Cybersecurity ROI: How To Get The C-Suite On Board With Zero Trust
Hospital cybersecurity spend to rise in 2025: 4 details
GAO: HHS falls short on healthcare cybersecurity

Share This Article