Skip to content
Contact us
All posts

New HIPAA Breaches

Picture of Michael Cullen By   ·  1 minute read

 

 

 

Download my Ultimate Guide to Ransomware NOW!

Two Healthcare Breaches. One Clear Message.

From the Desk of Black Bear MSSP

Recently, two more healthcare organizations joined the growing list of clinics hit by data breaches—Hunter Health Clinic in Kansas and Cardiovascular Health Clinic in Oklahoma. If you’re in the healthcare space, or you support clients who are, these stories should raise an eyebrow.

Let’s break it down.

What Went Wrong?

At Hunter Health, a staff member’s email account got compromised. It was accessed without permission for over a week. During that time, patient names, Social Security numbers, insurance info, and treatment details were potentially exposed.

Over in Oklahoma, Cardiovascular Health Clinic had a deeper issue—a full-on network breach. Hackers got in, stayed a while, and took off with sensitive patient data. Over 260,000 people may have been affected. The kicker? It took more than two months to detect.

It’s Not Just About the Hack

Neither of these breaches came from some elite cybercriminal group using cutting-edge tactics. These were preventable. An email account without the right protections. A network without proper monitoring. Delayed detection that gave attackers time to dig in and disappear.

This is the part where most people throw around buzzwords. We won't. Here’s what really matters:

Three Things Every Practice Should Be Doing Right Now

  1. Lock down access. Not everyone needs to see everything. Limit access based on roles, and make sure accounts are protected with strong authentication.

  2. Train your staff. Most attacks start with someone clicking the wrong thing. Regular training—especially phishing tests—makes a real difference.

  3. Get eyes on your network. If you don’t have tools that alert you when something weird is happening, you’re flying blind. The sooner you catch an issue, the less damage it does.

A Final Thought

Breaches like this are happening more often, and they’re hitting smaller clinics just as hard as the big ones. It's not about fear—it's about being prepared.

If you're in healthcare and you're not sure where your weak spots are, get someone to help you find them before someone else does. At Black Bear MSSP, this is exactly what we help our clients with—training, compliance, monitoring, and response. No scare tactics. Just smart protection.

Stay ahead of the next headline.