Emmett: Missing records belonged to AIDS patients

Liz Austin Peterson updates us on the missing Harris County Hospital District breach:

Many of the medical and financial records stored on a flash drive that has gone missing from the Harris County Hospital District belonged to patients with HIV or AIDS, Harris County Judge Ed Emmett said today.

[…]

Emmett, who was briefed on the problem Thursday morning, described the breach as “the worst possible thing” imaginable. The data stored on the drive included “total files,” he said, ranging from names, birth dates and Social Security numbers to medical diagnoses and treatments.

“It was just a major screw-up by an employee,” Emmett said, adding that the worker reported the loss to superiors.

The employee loaded the information onto the flash drive to work on a project at home a couple weeks ago and never saw it again, Emmett said. The device may not have even left district property, he added.

More – Houston Chronicle

Another plastic surgery practice fell prey to a cyberattack that acquired patient photos and info
Two U.K. teenagers appear in court over Transport of London cyber attack
ModMed revealed they were victims of a cyberattack in July. Then some data showed up for sale.
JFL Lost Up to $800,000 Weekly After Cyberattack, CEO Says No Patient or Staff Data Was Compromised
Massachusetts hospitals Heywood, Athol say outage was a cybersecurity incident
Heritage Provider Network $49.99M Class Action Settlement

Related: