Texas Mayor and Owners of Health Care Company Charged With Health Care Fraud, Money Laundering and Obstruction
Four individuals, including a Texas mayor who was a licensed physician and medical director, and three owners of a health care company, were charged in an indictment unsealed today for their roles in a $150 million health care fraud and money laundering scheme. Three of the defendants were also charged with counts relating to obstructing…
Read MoreFailure to Protect Health Records Costs Covered Entity Millions and Leads to Bankruptcy
21st Century Oncology, Inc. (21CO) has agreed to pay $2.3 million in lieu of potential civil money penalties to the U.S. Department of Health and Human Services (HHS) Office for Civil Rights (OCR) and adopt a comprehensive corrective action plan to settle potential violations of the Health Insurance Portability and Accountability Act (HIPAA) Privacy and…
Read MoreRansomware Attack Shuts Down Dental Office for 5 Days
A dental practice in Reno, NV has experienced a ransomware attack that prevented dental records and images from being accessed for five days. Wager Evans Dental experienced the ransomware attack on October 30, 2017. The malicious software was installed on one computer and one server used by the practice. Ransomware can be installed in a…
Read MoreWhistleblowers Awarded Over $1 Million for Reporting Former Employer for Violations Under the False Claims Act
WASHINGTON – Pine Creek Medical Center LLC (“Pine Creek”), a physician-owned hospital serving the Dallas/Fort Worth area, has agreed to pay $7.5 million to resolve claims that it violated the False Claims Act by paying physicians kickbacks in the form of marketing services in exchange for surgical referrals, the Department of Justice announced today. “Health…
Read MorePHI of 28,000 Mental Health Patients Allegedly Stolen by Healthcare Employee
Center for Health Care Services (CHCS) in San Antonio, a provider of mental health treatment and support services for individuals with intellectual and developmental disabilities, has discovered documents containing the protected health information of patients have been stolen by a former employee. Breach notification letters have been sent to 28,434 patients who received services at…
Read MoreMedical Records from OB/GYN Found Dumped At Recycling Center After Anonymous Tip
Paper files containing names, Social Security numbers, and medical histories, including details of cancer diagnoses and sexually transmitted diseases, have been dumped at a recycling center in Allentown, Pennsylvania. The files appear to have come from Women’s Health Consultants, an obstetrics and gynecology practice that had centers in South Whitehall Township and Hanover Township, PA.…
Read MoreOver $1 Billion in Damages Sought in Lawsuit Against 60 Hospitals for HITECH Act Violations
A recently unsealed complaint, filed in a U.S. District Court in Indiana in 2016, seeks more than $1 billion in damages from 60 hospitals that received HITECH Act meaningful use incentive payments for transitioning to electronic health records, yet failed to meet the requirements of the HITECH Act with respect to providing patients, and their…
Read MoreHIPAA Compliance for Human Resource Departments
Businesses not directly involved in the healthcare or healthcare insurance industries should none-the-less pay close attention to HIPAA compliance for HR departments. It has been estimated a third of all workers and their dependents who receive occupation healthcare benefits do so through a self-insured group health plan. Although this does not mean a self-insuring business…
Read MoreCybersecurity Compliance Deadlines Loom
Earlier this year, the New York State Department of Financial Services laid out new cybersecurity requirements for financial services companies. These rules (codified in 23 NYCRR 500) took effect on March 1 and established an array of “regulatory minimum standards” that companies must now meet. When all is said and done, financial services companies will…
Read MoreNorthwest Rheumatology Discovers PHI Potentially Accessed During Ransomware Attack
Northwest Rheumatology of Tuscon, Arizona has announced that some of its computer systems were taken out of action following a ransomware infection on April 10, 2017. Following any ransomware attack, HIPAA-covered entities must conduct an investigation to determine the extent of the attack and whether patient’s protected health information has been compromised. If a covered…
Read More