Jessica Davis
The state's Human Services department migrated its legacy eligibility systems to a modernized network in 2014, but the Inspector General's office found flaws caused by insufficient controls.
Medical Center's servers were hit by a ransomware attack in June; officials said investigation couldn't rule out whether patient data was accessed.
The cyberattack was first discovered in February, but the crucial evidence was lost during the investigation in April that rendered it impossible for officials to rule out a breach.
Anthem's Medicare insurance coordination services vendor discovered in April that an employee was stealing and misusing Medicaid member data from as early as July 2016.
An employee responded to a phishing email with login credentials, which officials said the hacker used to view patient data.
Notorious hacker has been playing a game called "A Business a Day," by publicly making extortion attempts on businesses.
The healthcare administrative services and IT provider took over a year to notify 220,000 individuals of a breach to its website. HHS is determining if it's a HIPAA-covered business associate.
Failure to conduct minimal documentation reviews left the incentive program open to abuse of federal funds, agency says.
State's Department of Medical Assistance Services didn't meet federal security requirements, which could have compromised the integrity of system.
While security experts were expecting a second wave of attacks this week, the outbreak has begun to slow.