HIPAA Breach Report for December 2021

Featured image

Share this article

Paubox-HIPAA-Breach-Report

The Paubox HIPAA Breach Report analyzes protected health information (PHI) breaches affecting 500 or more people as reported to the Department of Health & Human Services (HHS) in November 2021.


This report will cover:


HIPAA breaches ranked by people affected

Paubox HIPAA Breach Report [December 2021] - HIPAA breaches ranked by people affected - Bar Graph showing: Electronic Medical Record, Email, Network Server, Paper/films, Other, Other portable electronic device

Most common breaches by type

  • Network server breaches affected the most people in November 2021. 1,084,106 individuals had their data breached.
  • Electronic medical record breaches were the second most common breach, with 152,106 people affected.
  • Email breaches affected 147,916 people, the third most common breach type.

HIPAA breaches by occurrence

Paubox HIPAA Breach Report [December 2021] - HIPAA breaches ranked by occurence - Bar Graph showing: Electronic Medical Record, Email, Network Server, Paper/films, Other, Other portable electronic device

Most common breach types

  • Network server was the most common attack vector in November 2021. There were 25 network server breaches.
  • Email breaches were the second most common attack vector; twelve attacks via email were reported.
  • Electronic medical record breaches were reported four times last month.

Year over year comparison

These charts compare the numbers reported in previous Paubox HIPAA Breach Reports (December 2017, December 2018, December 2019, December 2020) with this month’s report.

HIPAA breaches ranked by people affected

Paubox HIPAA Breach Report [December 2021] - HIPAA breaches ranked by people affected - year over year comparison - Bar graph for 2018, 2019, 2020, 2021 and 2022 for Desktop Computers, Electronic Medical Records, Email, Laptop, Network Server, Other, Other portable Electronic Device and Paper/Films

What we observe

  • Network server, email, and electronic medical record breaches affected most people overall in November 2017 – 2021.
  • Network server breaches affected a total of 4,593,981 people in these months.
  • Email breaches affected 1,019,057 people, and electronic medical record breaches affected 392,237.
  • There was one large AccuDoc Solutions breach in November 2018 that affected more than 1 million people.

HIPAA breaches ranked by occurrence

Paubox HIPAA Breach Report [December 2021] - HIPAA breaches ranked by occurence - year over year comparison - Bar graph for 2018, 2019, 2020, 2021 and 2022 for Desktop Computers, Electronic Medical Records, Email, Laptop, Network Server, Other, Other portable Electronic Device and Paper/Films

What we observe

  • Email, network server, and paper/films breach types were the most common attack vectors in November 2017-2021.
  • Email breaches occurred 49 total times.
  • Network server breaches occurred a total of 46 times, and paper/films types occurred 29 times.
  • The most significant number of email breaches happened in November 2020.

Takeaways

Network server breaches affected the most people in November 2021. Utah Imaging Associates, Inc. had the most significant breach that affected 583,643 people. The Urology Center of Colorado had the second-largest breach that affected 137,820 people.

The yearly comparison shows that email breaches were the most popular attack vectors for bad actors over the last five November months. Over 1 million total individuals had their data breached via 49 email breaches during this time.

Full data

Click here to view the HHS’ raw data via Google Sheets.

About the Paubox HIPAA Breach Report

The Paubox HIPAA Breach Report analyzes breaches that affected 500 or more individuals, as reported on the HHS Wall of Shame in November 2021.

SEE ALSO: HIPAA compliant email: the definitive guide

Author Photo

About the author

Sara Uzer

dolor sit amet, consectetur adipiscing elit. Pellentesque sit amet ullamcorper urna. Proin eget metus blandit, volutpat ex et, convallis ligula. Fusce eget pellentesque felis, a scelerisque eros. Duis in tortor dapibus, fringilla lacus eget, bibendum mi. Nunc eleifend, diam et tempor tincidunt.

Read more by Sara Uzer

Get started with
end-to-end protection

Bolster your organization’s security with healthcare’s most trusted HIPAA compliant email solution

The #1-rated email encryption 
and security software on G2

G2 Badge: Email Encryption Leader Fall 2022
G2 Badge: Security Best Usability Fall 2022
G2 Badge: Encryption Momentum Leader Fall 2022
G2 Badge: Security Best Relationship Fall 2022
G2 Badge: Security Users Most Likely to Recommend Fall 2022
G2 Badge: Email Gateway Best Relationship Fall 2022
G2 Badge: Email Gateway Best Meets Requirements Fall 2022
G2 Badge - Users Most Likely to Recommend Summer 2022
G2 Badge: Email Gateway Best Results Fall 2022
G2 Badge: Email Gateway Best Usability Fall 2022
G2 Badge: Email Gateway Best Support Fall 2022
G2 Badge: Email Gateway Easiest To Use Fall 2022
G2 Badge: Email Gateway Easiest Setup Fall 2022
G2 Badge: Email Gateway Easiest Admin Fall 2022
G2 Badge: Email Gateway Easiest to do Business with Fall 2022
G2 Badge: Email Gateway Highest User Adoption 2022
G2 Badge: Email Gateway High Performer Fall 2022
G2 Badge: Email Gateway Momentum Leader Fall 2022
G2 Badge: Email Gateway Most Implementable Fall 2022
G2 Badge: Email Gateway Users Most Likely to Recommend Fall 2022