Topics
Reimbursement
Elevance, UnitedHealth among insurers accused of alleged price fixing
Elevance, UnitedHealth among insurers accused of alleged price fixing
Revenue Cycle Management
Mary Washington Healthcare latest to outsource revenue cycle 
Mary Washington Healthcare latest to outsource revenue cycle 
Strategic Planning
CommonSpirit, University of Utah Health team on access
CommonSpirit, University of Utah Health team on access
Capital Finance
Cigna nixes speculation of a Humana merger
Cigna nixes speculation of a Humana merger
Supply Chain
Feds shore up healthcare supply chain in wake of hurricanes Helene and Milton
Feds shore up supply chain in wake of hurricanes
Accounting & Financial Management
Labor expenses continue to challenge hospitals
Labor expenses continue to challenge hospitals
Budgeting
Health system operating margins declined in August
Health system operating margins declined in August
Quality and Safety
US healthcare system ranks last in equity, access
US healthcare system ranks last in equity, access
Billing and Collections
CFPB warns of illegal tactics by medical debt collectors
CFPB warns of illegal tactics by medical debt collectors
Claims Processing
Denials top reason for eroding provider-payer relationship
Denials top reason for eroding provider-payer relationship
Workforce
Elevance laying off 123 California employees
Elevance laying off 123 California employees
Operations
UAB, Press Ganey launch certificate program for healthcare leaders
UAB, Press Ganey launch certificate program for healthcare leaders
Medical Devices
Healthcare chatbots may promote racist misinformation
Healthcare chatbots may promote racist misinformation
Hospital/physician relations
Hospitals, physicians submit opposing views to FTC ruling on noncompetes
Hospitals, physicians submit opposing views to FTC ruling
Construction & Facilities Management
University Hospitals expanding with $3.2 million donation
University Hospitals expanding with $3.2M donation
Compliance & Legal
Johnson and Johnson sues HRSA for blocking 340B plan
J&J sues HRSA for blocking 340B plan
Policy and Legislation
Planned Parenthood, other groups decry executive power in House bill
Planned Parenthood, other groups decry House bill
Community Benefit
AMA pushes for stricter standards for hospital charity care policies
AMA pushes for stricter standards for hospital charity care policies
Accountable Care
NAACOS pushes ACO REACH extension after $1.54B in savings
NAACOS pushes ACO REACH extension
Acute Care
SDOH, tech key to advancing value-based care, says UHG
SDOH, tech key to advancing value-based care
Ambulatory Care
Cleveland Clinic and Amazon One Medical collaborate on primary care clinics
Cleveland Clinic and Amazon One Medical collaborate
Analytics
Interoperability in healthcare moving forward despite challenges
Interoperability in healthcare moving forward despite challenges
Business Intelligence
CVS announces Dr. Sreekanth Chaguturu as president, Health Care Delivery
CVS announces Dr. Sreekanth Chaguturu as president, Health Care Delivery
ICD-10 & Coding
Physician practices examine risk adjustment coding in wake of federal lawsuits
Practices keeping close watch on risk adjustment coding
Meaningful Use
Financial disincentives for providers who commit information blocking 
Financial disincentives for providers who commit information blocking 
Medicare & Medicaid
Almost a quarter of Americans underinsured, survey finds
Survey: Almost a quarter of Americans underinsured
Patient Engagement
HHS, Illinois reach agreement on disability rights laws
HHS, Illinois reach agreement on disability rights
Pharmacy
Express Scripts, Caremark, OptumRx fight back in lawsuit against FTC 
Express Scripts, Caremark, OptumRx sue FTC 
Population Health
Reproductive care, including abortion, facing challenges
Reproductive care, including abortion, facing challenges
Risk Management
UPMC for You partners to offer Medicaid redetermination coverage in laundromats
UPMC for You offers Medicaid redetermination coverage in laundromats
Telehealth
Telehealth prescribing of controlled drugs extended through 2025
Telehealth prescribing of controlled drugs extended
Mergers & Acquisitions
Cardinal Health set to acquire two companies for combined $3.9B
Cardinal Health set to acquire two companies for combined $3.9B
View more
Dec 19, 2011 More on Quality and Safety

Three of top 6 data breaches of 2011 were in healthcare

Stephanie Bouchard

Three of the top six most significant data breaches of 2011 took place in the healthcare industry says the Privacy Rights Clearinghouse, a nonprofit consumer protection and advocacy organization.

Breaches at Sutter Physicians Services/Sutter Medical Foundation came in third, Health Net came in fifth and Tricare Management Activity/Science Applications International Corporation came in sixth.

PRC has tracked breaches since 2005 and publishes a yearly chronology of those breaches. In a press release announcing its top six picks for the most significant data breaches of 2011, the organization said this year had some of the biggest breaches since it began tracking them. The group tracked 535 breaches involving 30.4 million sensitive records. Of those 535 breaches, 190 of them were in the healthcare system.

A number of reports have been sounding the alarm over data breaches in healthcare.

Earlier this month, a study conducted by the Ponemon Institute found that the frequency of data breaches in healthcare have increased by 32 percent in the last year, at an estimated cost to the industry of $6.5 billion.

[See also: Ponemon study says data breaches cost U.S. healthcare $6.5B annually.]

What’s more, the industry isn’t prepared to plug the security holes, said a report issued last fall by PricewaterhouseCooper’s Health Research Institute.

[See also: PwC: Health industry under-prepared to protect privacy.]

“Medical breaches are particularly significant and harmful because of the sensitivity of personal information exposed, in addition to, often, Social Security numbers and dates of birth,” noted PRC in a statement.

The breaches PRC tracked over the last year are actually far fewer than the public knows said the organization’s director, Beth Givens, in the statement accompanying the release of the group’s top six. "This is a conservative number," said Givens in the press release. "We generally learn about breaches that garner media attention. Unfortunately, many do not. And, because many states do not require companies to report data breaches to a central clearinghouse, data breaches occur that we never hear about. Our chronology is only a sampling."

PRC’s six most significant data breaches of 2011:

  1. Sony PlayStation: An external intrusion on its network and music service caused Sony to block users for seven days. Hackers gained access to 101.6 million records.
  2. Epsilon: The email service provider reported a breach of 75 client companies. Conservative estimates of the number of customer emails breached are 50 to 60 million.
  3. Sutter Physicians Services/Sutter Medical Foundation: A company-issued desktop computer was stolen from Sutter’s Medical Foundation offices. More than 4 million patients had their information exposed.
  4. Texas Comptroller’s Office: Data from three state agencies ended up on a public server and was there for nearly a year before the exposure was noticed.
  5. Health Net: Nine data servers went missing. The servers contained personal information for more than 1.9 million current and former policy owners.
  6. Tricare Management Activity, Science Applications International Corp.: Backup tapes of patient data from the military health system spanning nearly two decades were stolen from the car of an employee who was transporting the data.

Follow HFN associate editor Stephanie Bouchard on Twitter @SBouchardHFN.

News
Healthcare organizations ask HHS to delay quality measure reporting for ACOs Healthcare organizations ask HHS to delay quality measure reporting for ACOs The American Hospital Association and American Medical Association are among the 11 organizations signing the letter.