HHS announced a $1.5 million settlement with BlueCross BlueShield of Tennessee over a 2010 data breach. The settlement was a penalty for failing to prevent a breach that saw the theft of 57 unencrypted hard drives containing recordings of customer service phone calls. The question now is whether such tangible examples of financial fallout will convince healthcare IT to invest in better security measures. The HHS making the risk of pecuniary damage a real risk of failing to comply with HIPAA security requirements changes that financial equation for these organizations.”]
Source: https://www.darkreading.com/database-security/-1-5m-fine-marks-a-new-era-in-hitech-enforcement