Lafourche Medical Group to pay $480K in landmark HHS phishing action
By 
Kyle Brasseur2023-12-08T16:48:00
Louisiana-based Lafourche Medical Group agreed to pay $480,000 as part of the first phishing attack-related settlement the Department of Health and Human Services’ Office for Civil Rights (HHS OCR) has reached under the Health Insurance Portability and Accountability Act (HIPAA).
Lafourche additionally consented to be monitored by the OCR for a period of two years, as well as agreeing to a corrective action plan, the agency announced Thursday.
In May 2021, Lafourche reported to the HHS it was breached through a phishing attack that occurred two months prior. The attack affected the electronic protected health information of nearly 35,000 individuals, the agency’s investigation found.
Related articles
-
News BriefChange Healthcare facing HHS probe following crippling cyberattack
Change Healthcare, a health payment processor hit by a crippling cyberattack in February, is under investigation by the Department of Health and Human Services’ Office for Civil Rights.
-
News BriefMontefiore Medical Center to pay $4.8M over employee’s data theft
Montefiore Medical Center agreed to pay $4.75 million to settle allegations by the Department of Health and Human Services’ Office for Civil Rights that failures by the New York City nonprofit facility allowed an employee to steal and sell patient information for six months.
-
News BriefHHS: New cybersecurity regs on the way for hospitals
Hospitals can soon expect to see new draft cybersecurity regulations and benchmarking goals, according to the Department of Health and Human Services.
More from Regulatory Enforcement
-
PremiumAssessing the impact of the DOJ’s monitorship policy six months in
It has been nearly six months now since the Department of Justice’s (DOJ) Criminal Division released its memorandum on the selection of compliance monitors. This article provides a critical analysis of the monitorships that received early terminations, those that remain in place, and the broader compliance lessons they impart.
-
News BriefBinance’s Changpeng Zhao receives presidential pardon from Trump
The founder of crypto exchange Binance, Changpeng Zhao, received a pardon from President Donald Trump. This pardon comes almost two years after Zhao signed a plea agreement and was sentenced to a four-month prison sentence.
-
ArticleOCC drops $10M fine against former Wells Fargo risk officer fingered in “fake accounts” scandal
A former Wells Fargo risk officer previously ordered to pay $10 million by the Department of the Treasury’s Office of the Comptroller of the Currency (OCC) for her alleged role in the bank’s “fake accounts” scandal is completely off the hook, according to an OCC consent order issued Tuesday.