The medical organization agreed to pay a $480,000 fine for substandard security.
The Department of Health and Human Services (HHS) reached its first cybersecurity settlement this month, fining Lafourche Medical Group $480,000 for failing to maintain secure connections within its computer network.
In 2021, Lafourche Medical Group filed a breach report with HHS, telling the agency that hackers successfully launched a phishing attack against the company’s network and gained access to sensitive email accounts. I told you. This account contained electronic health information for approximately 34,862 people, all of which was compromised following the attack.
After investigating the issue, the department determined that the attack was made possible by a security flaw at the medical group, which should have procedures in place to periodically check the operation of its systems. Along with the fine, the medical group agreed to two years of oversight by HHS to ensure it implements a new cybersecurity plan for its computer networks.
Follow the Lord’s guidance and pray with us…
- May Secretary Becerra be guided by the Lord as he oversees the Department of Health and Human Services.
- For HHS cybersecurity experts who are working to ensure Americans’ personal health information is adequately protected.
source: Ministry of Health and Human Services