The Paubox HIPAA Breach Report analyzes protected health information (PHI) breaches affecting 500 or more people as reported to the Department of Health & Human Services (HHS) in May 2022.
This report covers:
- HIPAA breaches ranked by people affected
- HIPAA breaches ranked by occurrence
- Year over year comparison
- Takeaways
- Full data
HIPAA breaches ranked by people affected
Most common breaches by type
- Network server breaches affected the most people in May 2022. 3,799,447 individuals had their data breached.
- Electronic medical record breaches were the second most common breach, with 227,103 people affected.
- Email breaches affected 194,727 people, the third most common breach type.
HIPAA breaches ranked by occurrence
Most common breach types
- Network server was the most common attack vector in May 2022. There were 28 network server breaches.
- Email breaches were the second most common attack vector; 22 attacks via email were reported.
- Paper/films breaches were reported nine times last month.
Year over year comparison
These charts compare the HIPAA data breach statistics from previous Paubox HIPAA Breach Reports ( June 2018, June 2019, June 2020, June 2021) with this month's report.
HIPAA breaches ranked by people affected
What we observe
- Network server, other, and email breaches affected most people overall in May 2018-2022.
- Network server breaches affected a total of 8,720,323 people in these months.
- Other breaches affected 3,279,998 people, and email breaches affected 935,021.
HIPAA breaches ranked by occurrence
What we observe
- Network server, email, and paper/films breach types were the most common attack vectors in May 2018-2022.
- Network server breaches occurred 76 total times.
- Email breaches occurred a total of 60 times, and paper/films types occurred 31 times.
- The most significant number of email breaches happened in May 2021.
Takeaways
Network server breaches affected the most people in May 2022. Shields Health Care Group, Inc had the most significant breach that affected 2,000,000 people. Partnership HealthPlan of California had the second-largest breach that affected 854,913 people. The yearly comparison shows that network server breaches were the most popular attack vectors for bad actors over the last five May months. Over 8 million total individuals had their data breached via 76 network server breaches during this time.
Full data
Click here to view the HHS' raw data via Google Sheets.
About the Paubox HIPAA Breach Report
The Paubox HIPAA Breach Report analyzes recent PHI breaches that affected 500 or more individuals, as reported on the HHS Wall of Shame in May 2022. SEE ALSO: HIPAA compliant email: the definitive guide Robust inbound email security is practically a necessity for companies these days. Keeping your email security strategy updated helps ensure the protection of your network. HITRUST CSF certified 4.9/5.0 on the G2 Grid Paubox sends millions of HIPAA certified and secure emails every month.
Subscribe to Paubox Weekly
Every Friday we'll bring you the most important news from Paubox. Our aim is to make you smarter, faster.