Late last week, the Office of Civil Rights for the Department of Health and Human Services (OCR) announced a $16 million settlement with health-insurance company Anthem, Inc. The settlement amount is nearly three times larger than any prior settlement with the OCR.
As a reminder, in 2015, Anthem suffered the largest reported health data breach in U.S. history. The breach itself started the prior year, when an employee at an Anthem subsidiary opened a phishing e-mail containing malicious content. With that malicious code in place, the hacker was able to gain remote...
Aetna has reached an agreement in New Jersey to pay a $365,211.59 civil penalty to settle claims that it allowed the private health information of individuals to be viewed through transparent envelope windows. The insurer will also reportedly pay $100,000 in Connecticut and $175,000 in the District of Columbia for a total of $640,000.
Aetna inadvertently disclosed the HIV/AIDS-related information on thousands of beneficiaries, including about 647 New Jersey residents, according to New Jersey Attorney General Gurbir S. Grewal, in an agreement announced October 10.
Anthem Inc., the nation’s second-largest health insurer, has agreed to pay a record $16 million to the government to settle potential privacy violations in the biggest known healthcare hack in U.S. history, federal officials said Monday.
The personal information of nearly 79 million people — including names, birth dates, Social Security numbers and medical IDs — was exposed in the cyberattack, which Anthem discovered in early 2015.
The settlement between the Indianapolis company and the Department of Health and Human Services represents the largest amount collected b...