UK: Shredded patient records deliver a gift-wrapped data breach

Tony Collins reports:

A Leicestershire businesswoman discovered shredded records of NHS patients, with some information still showing, in packaging material used to protect gift boxes.

The records originated from Papworth Hospital NHS Foundation Trust in Cambridge, which is investigating the incident.

Kerry Wilkinson of PennyDog Jewellery in Rothley, Leicestershire, found the patient records when she took delivery of the boxes and bags for her gift-wrapping service.

It appears that the records were sent by the hospital to a solicitor which acts for patients, and were inadequately shredded before they turned up at the jewellers for use as packing for gift boxes

Read more on ComputerWeekly.com.

It’s unfortunate that the hospital may get its name associated with this breach, as it seems that it is the unnamed solicitors who may not have adequately protected the personal information.

Safaricom-Backed M-TIBA Victim of a Possible Data Breach Affecting Millions of Kenyans
Another plastic surgery practice fell prey to a cyberattack that acquired patient photos and info
Two U.K. teenagers appear in court over Transport of London cyber attack
ModMed revealed they were victims of a cyberattack in July. Then some data showed up for sale.
JFL Lost Up to $800,000 Weekly After Cyberattack, CEO Says No Patient or Staff Data Was Compromised
Massachusetts hospitals Heywood, Athol say outage was a cybersecurity incident

Related: