Table of Contents:
The Paubox Breach Report analyzed HIPAA breach reporting submitted to the U.S. Department of Health & Human Services (HHS) in May to analyze the types of breaches of unsecured protected health information (PHI) affecting 500 or more people.
HIPAA Breaches Ranked by People Affected
Top Three Breach Types
- Network Server breaches ranked in first place with 1,600,215 people’s PHI affected.
- Desktop Computer breaches ranked second with PHI of 137,751 people breached.
- Email breaches came in third with 83,461 people having their PHI breached.
Bottom Three Breach Types
- Electronic Medical Record ranked as the lowest number of people’s PHI being breached in May with 1,521 breaches.
- Paper/Films was the second lowest type of breach as ranked by people affected with 7,258.
- Laptop was the third lowest type of breach as ranked by people affected with 11,000.
HIPAA Breaches Ranked by Occurrence
The Most Common
- Email took the top spot as the most common breach type in May with an 14 reported breaches. Email has taken the top spot in this category for 12 of the past 14 months.
- Network Server came in second with 7 breaches.
- Paper/Films and Desktop Computer came in tied third with 4 reported breaches each in May.
On May 7th, Inmediata Health Group reported a Network Server breach to HHS that affected 1.5M individuals’ PHI. This single breach accounted for 98% of the total for the Network Server category.
For the 12th time in the past 14 months, Email occupied the top spot as the most common attack vector for HIPAA breaches.
Click here to view the raw data (Google Sheets).
About the Paubox HIPAA Breach Report
The Paubox HIPAA Breach Report analyzes breaches that affected 500 or more individuals as reported in the HHS Wall of Shame in May 2019.