US healthcare organisation fined nearly US$1M over 2017 ransomware incident

July 8, 2024Source: Cyber Daily

Found this useful? Share it with your network

The United States Department of Health and Human Services fined Pennsylvania-based Heritage Valley Health System US$950,000 for HIPAA violations following a 2017 ransomware attack. The investigation revealed that the health system failed to conduct adequate risk analysis, lacked a contingency plan, and did not have proper user access policies. Alongside the fine, Heritage Valley is mandated to develop comprehensive security policies, implement a risk management plan, and undergo continuous monitoring by the Department of Health and Human Services' Office for Civil Rights for three years. This case highlights increasing ransomware threats in healthcare, stressing the need for robust data protection measures.

Read Full Article

Opens on Cyber Daily

More News

AMA Asking For Stronger Safeguards on AI Mental Health Chatbots

April 29, 2026MobiHealthNews

Andrea Daugherty Appointed Chief Information and Digital Transformation Officer at ARMC

April 24, 2026arrowheadregional.org

Craig Richardville Appointed Chief Digital and Information Officer at UF Health

April 13, 2026ufhealth.org

Former AMA Exec Margaret Lozovatsky Named CDIO At Premier Health

April 10, 2026premierhealth.com

Signature Healthcare Diverts Ambulances Following Cybersecurity Incident

April 8, 2026SecurityWeek

More Than 100 Hospitals Suing HHS Over Alleged Underpayment

April 6, 2026MedCity News