|
Data Breach: Health Provider to Pay AGs $5 Million |
|
Compromise of the company’s administrative credentials resulted in exfiltration of 6.1 million individuals PHI over 237 HIPAA covered entities; a comprehensive information security program must be implemented and maintained that includes awareness and privacy training for all personnel that can access PHI, policies and procedures for use and audits of business associates, and written incident response plans. |
