The latest HIPAA criminal case may signal more aggressive efforts by the government to root out privacy breaches, while highlighting some legal risks for doctors and other "covered entities" for violations made by their employees, experts said.

A former Northeast Arkansas Clinic employee recently entered a guilty plea with the U.S. Attorney for the Eastern District of Arkansas for allegedly wrongfully disclosing a patient's protected health information and using it for personal gain and malicious intent.