U.S. Department of Health & Human Services

As required by section 13402(e)(4) of the HITECH Act, the Secretary must post a list of breaches of unsecured protected health information affecting 500 or more individuals. The following breaches have been reported to the Secretary: Cases Currently Under Investigation
This page lists all breaches reported within the last 24 months that are currently under investigation by the Office for Civil Rights.
Show Advanced Options

We are generating the report for you. Please wait......

Breach Report Results


Name of Covered Entity	State	Covered Entity Type	Individuals Affected	Breach Submission Date	Type of Breach	Location of Breached Information	Business Associate Present
Bone & Joint Clinic, S.C.	WI	Healthcare Provider	105094	03/13/2023	Hacking/IT Incident	Network Server	No
ZOLL Services LLC	MA	Healthcare Provider	997097	03/10/2023	Hacking/IT Incident	Network Server	No
Beacon Health System	IN	Healthcare Provider	3117	03/10/2023	Unauthorized Access/Disclosure	Electronic Medical Record	No
Wichita Urology Group, PA (“WUG”)	KS	Healthcare Provider	1493	03/08/2023	Hacking/IT Incident	Network Server	No
EPIC Management, LLC	CA	Health Plan	1190	03/08/2023	Hacking/IT Incident	Email	No
The M K Morse Company	OH	Health Plan	1378	03/08/2023	Hacking/IT Incident	Network Server	No
Trinity Health	MI	Business Associate	45350	03/06/2023	Hacking/IT Incident	Email	Yes
Northeast Surgical Group, PC	MI	Healthcare Provider	15298	03/06/2023	Hacking/IT Incident	Network Server	No
West Virginia University Board of Governors	WV	Healthcare Provider	2453	03/03/2023	Unauthorized Access/Disclosure	Network Server	No
Denver Public Schools Medical Plans	CO	Health Plan	35068	03/03/2023	Hacking/IT Incident	Network Server	No
Codman Square Health Center	MA	Healthcare Provider	10161	03/01/2023	Hacking/IT Incident	Network Server	No
Cerebral, Inc	DE	Business Associate	3179835	03/01/2023	Unauthorized Access/Disclosure	Network Server	Yes
Community Health Group	CA	Health Plan	824	02/28/2023	Hacking/IT Incident	Network Server	Yes
Clarity Child Guidance Center	TX	Health Plan	531	02/28/2023	Unauthorized Access/Disclosure	Email	No
Sentara Healthcare	VA	Healthcare Provider	741	02/24/2023	Unauthorized Access/Disclosure	Network Server	Yes
Asante	OR	Healthcare Provider	8834	02/24/2023	Unauthorized Access/Disclosure	Electronic Medical Record	No
Aloha Nursing Rehab Centre	HI	Healthcare Provider	20216	02/24/2023	Hacking/IT Incident	Network Server	No
eMDs, Inc.	TX	Business Associate	625	02/24/2023	Hacking/IT Incident	Network Server	Yes
White Bird Clinic	OR	Healthcare Provider	584	02/23/2023	Unauthorized Access/Disclosure	Email	No
Lawrence General Hospital	MA	Healthcare Provider	76571	02/23/2023	Hacking/IT Incident	Network Server	Yes
Henrico Doctors Hospital	VA	Healthcare Provider	990	02/21/2023	Unauthorized Access/Disclosure	Email	No
Sharp Healthcare	CA	Healthcare Provider	62777	02/17/2023	Hacking/IT Incident	Network Server	No
Hutchinson Clinic, P.A.	KS	Healthcare Provider	100000	02/17/2023	Hacking/IT Incident	Network Server	No
West Cecil Health Center	MD	Healthcare Provider	1136	02/17/2023	Unauthorized Access/Disclosure	Network Server	Yes
Jackson Lewis P.C.	CA	Business Associate	986	02/17/2023	Theft	Other Portable Electronic Device	Yes
Troy Roeder DDS PC	IL	Healthcare Provider	500	02/17/2023	Unauthorized Access/Disclosure	Desktop Computer	No
San Juan Regional Medical Center	NM	Healthcare Provider	8500	02/15/2023	Hacking/IT Incident	Network Server	Yes
Integrative Dentistry	WA	Healthcare Provider	2281	02/14/2023	Hacking/IT Incident	Network Server	No
Reventics, LLC	FL	Business Associate	250918	02/10/2023	Hacking/IT Incident	Network Server	Yes
CentraState Healthcare System, Inc.	NJ	Healthcare Provider	617901	02/10/2023	Hacking/IT Incident	Network Server	No
Intelligent Business Solutions	NC	Business Associate	11595	02/10/2023	Hacking/IT Incident	Network Server	Yes
Compass Behavioral Health	KS	Healthcare Provider	537	02/10/2023	Hacking/IT Incident	Email	No
Highmark Inc	PA	Business Associate	36600	02/10/2023	Hacking/IT Incident	Email	Yes
Evergreen Treatment Services	WA	Healthcare Provider	21325	02/10/2023	Hacking/IT Incident	Network Server	No
Highmark Inc	PA	Health Plan	239039	02/10/2023	Hacking/IT Incident	Email	No
Wentworth Health Partners Garrison Women's Health	NH	Healthcare Provider	4158	02/10/2023	Hacking/IT Incident	Electronic Medical Record	Yes
CVS Specialty	RI	Healthcare Provider	740	02/10/2023	Hacking/IT Incident	Electronic Medical Record, Network Server	No
Nelson Pharmacy Consulting Services PLC	IA	Healthcare Provider	500	02/10/2023	Hacking/IT Incident	Desktop Computer, Network Server	No
Cheyenne Radiology Group & MRI, P.C.	WY	Healthcare Provider	500	02/09/2023	Hacking/IT Incident	Network Server	No
Tattnall County, Georgia	GA	Healthcare Provider	1337	02/09/2023	Hacking/IT Incident	Network Server	No
Health Benefit Plan of Bridgewater-Raritan Regional School District	NJ	Health Plan	3909	02/09/2023	Hacking/IT Incident	Network Server	No
90 Degree Benefits, Inc.	WI	Business Associate	175000	02/08/2023	Hacking/IT Incident	Network Server	Yes
NR Pennsylvania Associates, LLC	PA	Healthcare Provider	14335	02/07/2023	Hacking/IT Incident	Network Server	No
NR Connecticut, LLC	CT	Healthcare Provider	2160	02/07/2023	Hacking/IT Incident	Network Server	No
Teijin Automotive Technologies Welfare Plan	MI	Health Plan	25464	02/06/2023	Hacking/IT Incident	Network Server	No
Skin MD, PLLC	TN	Healthcare Provider	7558	02/06/2023	Improper Disposal	Paper/Films	No
Vitra Health, Inc.	MA	Healthcare Provider	1618	02/06/2023	Hacking/IT Incident	Email	No
Center for Autism and Related Disorders, LLC	TX	Healthcare Provider	634	02/04/2023	Unauthorized Access/Disclosure	Paper/Films	No
Rise Interactive Media & Analytics, LLC	IL	Business Associate	54509	02/03/2023	Hacking/IT Incident	Network Server	Yes
Cardiovascular Associates	AL	Healthcare Provider	441640	02/03/2023	Hacking/IT Incident	Network Server	No
Southeast Colorado Hospital District	CO	Healthcare Provider	1435	02/03/2023	Hacking/IT Incident	Email	No
Hospice of the Valley	AZ	Healthcare Provider	3840	02/03/2023	Hacking/IT Incident	Email	No
UT Specialty Dental Services, PLLC d/b/a Aspire Surgical	UT	Healthcare Provider	5327	02/02/2023	Hacking/IT Incident	Network Server	No
Arizona Health Advantage, Inc. d/b/a Arizona Priority Care; AZPC Clinics, LLC; and the health plans for which APC has executed a BAA, listed below	AZ	Healthcare Provider	10978	02/01/2023	Hacking/IT Incident	Network Server	No
Regal Medical Group,Inc.,Lakeside Medical Organization,A Medical Group,Inc.,ADOC Acquisition Co.,A Medical Group Inc.&Greater Covina Medical Group,Inc	CA	Healthcare Provider	3300638	02/01/2023	Hacking/IT Incident	Network Server	No
Institute for Hormonal Balance	TX	Healthcare Provider	597	01/31/2023	Theft	Other, Paper/Films	No
Brooks Rehabilitation	FL	Healthcare Provider	1554	01/31/2023	Unauthorized Access/Disclosure	Other	No
DotHouse Health Incorporated	MA	Healthcare Provider	10000	01/27/2023	Hacking/IT Incident	Network Server	No
Benefit Administrative Systems, LLC (BAS)	IL	Business Associate	6465	01/27/2023	Hacking/IT Incident	Network Server	Yes
Cedar Oaks Surgery Center	MO	Healthcare Provider	794	01/27/2023	Hacking/IT Incident	Email	No
Stroke Scan Inc	TX	Healthcare Provider	50000	01/27/2023	Hacking/IT Incident	Desktop Computer	No
Minuteman Senior Services	MA	Healthcare Provider	500	01/27/2023	Hacking/IT Incident	Email	No
Hayward Sisters Hospital d/b/a St. Rose Hospital	CA	Healthcare Provider	501	01/27/2023	Hacking/IT Incident	Network Server	No
Howard Memorial Hospital	AR	Healthcare Provider	53668	01/27/2023	Hacking/IT Incident	Network Server	No
Valley Care Home Health Services, Inc.	CA	Healthcare Provider	2674	01/25/2023	Theft	Other Portable Electronic Device	No
AppleCare, LLC	GA	Healthcare Provider	512	01/23/2023	Unauthorized Access/Disclosure	Paper/Films	Yes
Peachtree Immediate Care FP, LLC	GA	Healthcare Provider	2555	01/23/2023	Unauthorized Access/Disclosure	Paper/Films	Yes
City of Cleveland	OH	Health Plan	15206	01/20/2023	Unauthorized Access/Disclosure	Network Server	No
DCH Health System	AL	Healthcare Provider	2530	01/20/2023	Unauthorized Access/Disclosure	Desktop Computer	No
Chico Immediate Care Medical Center, Inc.	CA	Healthcare Provider	3780	01/19/2023	Unauthorized Access/Disclosure	Electronic Medical Record	No
One Brooklyn Health System	NY	Healthcare Provider	500	01/18/2023	Hacking/IT Incident	Network Server	No
Health Plan of San Mateo	CA	Health Plan	4032	01/18/2023	Hacking/IT Incident	Network Server	Yes
mscripts®, LLC	CA	Business Associate	66372	01/17/2023	Unauthorized Access/Disclosure	Network Server	Yes
University of Colorado Hospital Authority	CO	Healthcare Provider	48879	01/17/2023	Hacking/IT Incident	Network Server	Yes
Community Health Network, Inc.	IN	Business Associate	1237	01/13/2023	Unauthorized Access/Disclosure	Network Server, Other	Yes
1st Franklin Financial Corporation Master Welfare Benefit Plan	GA	Health Plan	3039	01/13/2023	Hacking/IT Incident	Email	No
Intelligent Business Solutions	NC	Business Associate	500	01/13/2023	Hacking/IT Incident	Network Server	Yes
Jefferson County Health Center d/b/a Jefferson County Health Department	MO	Healthcare Provider	115940	01/13/2023	Hacking/IT Incident	Network Server	No
DPP II, LLC	TX	Healthcare Provider	125981	01/12/2023	Hacking/IT Incident	Network Server	No
Dr. Keith Rundle & Dr. Herman Rundle	CA	Healthcare Provider	7528	01/12/2023	Hacking/IT Incident	Network Server	No
UCLA Health	CA	Healthcare Provider	94000	01/12/2023	Unauthorized Access/Disclosure	Network Server	No
Minnesota Department of Human Services	MN	Health Plan	4307	01/11/2023	Unauthorized Access/Disclosure	Email	No
Community Psychiatry Management, LLC, dba Mindpath Health	NC	Healthcare Provider	193947	01/10/2023	Hacking/IT Incident	Email	No
1020 South Main Street Operations LLC	PA	Healthcare Provider	702	01/10/2023	Hacking/IT Incident	Network Server	Yes
225 Evergreen Road Operations LLC	PA	Healthcare Provider	931	01/10/2023	Hacking/IT Incident	Network Server	No
Macoby Street Operations LLC d/b/a Pennsburg Manor	PA	Healthcare Provider	1547	01/10/2023	Hacking/IT Incident	Network Server	Yes
BayCare Clinic, LLP	WI	Healthcare Provider	134000	01/06/2023	Unauthorized Access/Disclosure	Electronic Medical Record	Yes
Vascular Institute of Houston, PLLC	TX	Healthcare Provider	1195	01/05/2023	Unauthorized Access/Disclosure	Electronic Medical Record	Yes
Vascular Institute of North Texas, PLLC	TX	Healthcare Provider	5853	01/05/2023	Unauthorized Access/Disclosure	Electronic Medical Record	Yes
Pershing Health System	MO	Healthcare Provider	5368	01/05/2023	Hacking/IT Incident	Email	No
Insulet Corporation	MA	Healthcare Provider	29000	01/05/2023	Unauthorized Access/Disclosure	Network Server	No
Texas Orthopaedic & Sports Medicine	TX	Healthcare Provider	1064	01/05/2023	Hacking/IT Incident	Electronic Medical Record, Laptop	No
Lantern Hill Retirement Community	NJ	Healthcare Provider	528	01/05/2023	Unauthorized Access/Disclosure	Network Server	No
Live Oak Surgery Center	TX	Healthcare Provider	5264	01/03/2023	Hacking/IT Incident	Email	No
Barclay Damon LLP	NY	Business Associate	1039	01/03/2023	Hacking/IT Incident	Email	Yes
Circles of Care, Inc.	FL	Healthcare Provider	61170	01/03/2023	Hacking/IT Incident	Network Server	No
Bay Bridge Administrators, LLC	TX	Business Associate	187742	12/30/2022	Unauthorized Access/Disclosure	Network Server	Yes
Fitzgibbon Hospital	MO	Healthcare Provider	112072	12/30/2022	Unauthorized Access/Disclosure	Network Server	No
NR Florida Associates LLC	FL	Healthcare Provider	6250	12/30/2022	Hacking/IT Incident	Network Server	No
The Kelberman Center	NY	Healthcare Provider	3501	12/30/2022	Hacking/IT Incident	Email	No

We are generating the report for you. Please wait......

U.S. Department of Health and Human Services Office for Civil Rights Breach Portal: Notice to the Secretary of HHS Breach of Unsecured Protected Health Information

U.S. Department of Health and Human Services
Office for Civil Rights

Breach Portal: Notice to the Secretary of HHS Breach of Unsecured Protected Health Information