Ransomware Breach Notifications: Sign of Things to Come? Two recent breach notifications could be an early indication that the answer is yes. Federal regulators recently issued guidance to clarify when a ransomware attack needs to be reported as a health data breach under the HIPAA Breach Notification Rule. So far only one breach on the federal tally is described as involving ransomware – a breach reported in February by Ohio-based Mayfield Clinic affecting more than 23,000 individuals. The clinic did not pay a ransom; other attacks have grabbed headlines since earlier this year.”]
Source: https://www.govinfosecurity.com/ransomware-breach-notifications-sign-things-to-come-a-9395

