Govexec.com brings us up to date on the lawsuit against OPM and its contractor over the massive 2015 data breach.

The Justice Department sought to have the entire U.S. Court of Appeals for the D.C. Circuit rehear the case after a panel of the court in June largely sided with two federal employee unions in granting them standing to sue the Office of Personnel Management and a federal contractor for their roles in the hacks that led to mass disclosures of personal records. The court denied the en banc hearing request on Monday, however, meaning the lawsuit can likely now proceed at the district court level.

The Department of Health and Human Services’s Office for Civil Rights (“OCR”) announced another HIPAA security and breach notification rule breach settlement today.

OCR’s investigation revealed a HIPAA compliance program that had been in disarray for a number of years,” said OCR Director Roger Severino. “This hospital system’s [Jackson Health System of Miami. FL] compliance program failed to detect and stop an employee who stole and sold thousands of patient records; lost patient files without notifying OCR as required by law; and failed to properly secure PHI that was leaked to the media.” 

Not good.

Healthcare Dive offers an interesting interview with CVS Health’s CEO Larry Merlo.

CVS Health CEO Larry Merlo, who’s been with the company for almost three decades, chatted with Healthcare Dive about its main competitors, the prolonged Aetna acquisition, taking on Amazon and opportunities in the chronic care market.

Check it out.

The FEHBlog will be attending the Health Care Payment Learning and Action Network annual summit here in our Nation’s Capitol tomorrow. The plenary events at the free event will be streamed live.