Medical Center Fined $4.75M in Insider ID Theft Incident

HHS OCR Says a Malicious Worker Stole and Sold Patient Information in 2013
HHS has fined a New York City medical center $4.75 million to settle potential HIPAA violations discovered during an investigation into a hospital insider who sold patient data to identity thieves in 2013. The hospital said it has beefed up its security and privacy since the incident occurred.

center city data hhs hipaa hipaa violations hospital identity id theft incident information insider investigation malicious medical new york new york city ocr patient data theft thieves worker york