Excellus Health Plan fined $5.1M for 2015 data breach
By 
Jaclyn Jaeger2021-01-20T16:21:00
The U.S. Department of Health and Human Services’ Office for Civil Rights fined Excellus Health Plan $5.1 million for failures relating to a 2015 data breach that exposed the personal information of 9.3 million individuals.
Related articles
-
News BriefBanner Health to pay $1.25M over HIPAA Security Rule lapses
Banner Health agreed to pay $1.25 million as part of a settlement with the Department of Health and Human Services addressing violations of the Health Insurance Portability and Accountability Act Security Rule regarding a 2016 data breach.
-
ArticleDems seek stronger HIPAA privacy for abortion patients
Democratic senators are urging the Department of Health and Human Services to strengthen federal health privacy protections for abortion patients by updating the HIPAA Privacy Rule.
-
ArticleBreach costs Premera Blue Cross $6.85M; second-largest HIPAA fine
Premera Blue Cross has agreed to pay $6.85 million in a settlement with the U.S. Department of Health and Human Services regarding a 2014 data breach that affected the personal and health plan information of over 10.4 million people.
More from Regulatory Enforcement
-
News BriefCFPB shutdown appears imminent, enforcement transferred to DOJ
The Consumer Financial Protection Bureau is reportedly transferring its enforcement caseload to the DOJ, one of multiple indicators telegraphing its eminent shutdown.
-
ArticleRussian web company that hosted LockBit ransomware sanctioned
Two Russian web-hosting services that provide cover for ransomware operators, including Lockbit, have been sanctioned by the U.S. Treasury’s OFAC and international partners.
-
News BriefDOJ secures $118 million penalty in FCPA violation case tied to Guatemalan telecom firm
The parent company of a telecom subsidiary in Guatemala agreed to pay $118.2 million to settle allegations of improper payments made to government officials, but the U.S. Department of Justice chose not to impose a compliance monitor to administer the firm’s compliance with the Foriegn Corrupt Practices Act (FCPA).