Personal Touch Holding Corp., a home health and hospice services provider, was ordered to pay $350,000 in penalties to New York for their lax security standards resulting in two data breaches of personal and health information, state Attorney General Letitia James announced Wednesday.
- The company knew for years of key security vulnerabilities that ultimately allowed a cyber-attacker to hold for ransom the private data of over 753,000 people, mostly New Yorkers, an investigation conducted by James’ office found.
- Personal Touch’s inactive cyber-defense violated New York law and the federal Health Insurance Portability and Accountability Act, the investigation said.
- Both patients ...
Learn more about Bloomberg Law or Log In to keep reading:
See Breaking News in Context
Bloomberg Law provides trusted coverage of current events enhanced with legal analysis.
Already a subscriber?
Log in to keep reading or access research tools and resources.