The HIPAA breach report for June 2023 analyzes protected health information (PHI) breaches affecting 500 or more people as reported to the Department of Health and Human Services (HHS) in May 2023.
This report covers:
HIPAA breaches ranked by people affected
Most common breaches by type
- Network server breaches affected the most people in May 2023. 18,824,372 individuals had their data breached.
- Electronic medical record breaches were the second most common breach, with 81,392 people affected.
- Other breaches affected 77,975 people, the third most common breach type.
HIPAA breaches ranked by occurrence
Most common breach types
- Network server was the most common attack vector in May 2023. There were 55 network server breaches.
- Email breaches were the second most common attack vector. There were 9 email breaches.
- Electronic medical record and paper/films breaches were the third most common attack vectors. There were 3 of these attacks during the month.
Year-over-year comparison
These charts compare the HIPAA data breach statistics from previous Paubox HIPAA Breach Reports (June 2019, June 2020, June 2021, June 2022) with this month’s report.
HIPAA breaches ranked by people affected
What we observe
- Network server, other, and email breaches affected the most people overall across this comparison.
- The number of people affected by email breaches more than doubled in May 2022 compared to May 2021.
- The number of people affected by network server breaches has steadily increased in the last three May months.
HIPAA breaches ranked by occurrence
What we observe
- Network server, email, and paper/films breach types were the most common attack vectors in this comparison.
- Laptop breaches have remained the lowest across this comparison, with only 8 occurrences across the past five May months.
- The highest number of network server breaches occurred in May 2023.
Takeaways
Network server breaches affected the most people in May 2023. Managed Care of North America (MCNA) had the most significant breach that affected 8,861,076 people. PharMerica Corporation had the second-largest breach, which affected 5,815,591 people.
The yearly comparison shows that network server breaches were the most popular attack vectors for bad actors over the last five May months. Over 27 million total individuals had their data accessed via 130 network server breaches during this time.
Full data
Click here to view the HHS’ raw data via Google Sheets.
About the Paubox HIPAA Breach Report
The Paubox HIPAA Breach Report analyzes recent PHI breaches that affected 500 or more individuals, as reported on the HHS Wall of Shame in May 2023.
SEE ALSO: HIPAA Compliant Email: The Definitive Guide
Robust inbound email security is a necessity for businesses today. Keeping your email security strategy updated helps ensure the protection of your network.