It seems that using the new HHS/OCR web site will be even more difficult than I anticipated, as they are sorting breach reports by the date of breach, not date that the incident was added to their site, so I have to review the entire list to see what’s been added instead of just looking for what’s new at the top of the list.
In any event, here are six more breach reports that have been added to their web site, below. Other breaches that have been recently added to their site were already reported in the media. These are just the ones we didn’t know about already:
North Carolina Baptist Hospital
State: North Carolina
Approx. # of Individuals Affected: 554
Date of Breach: 2/15/10
Type of Breach: Theft
Location of Breached Information: Paper Records
University of New Mexico Health Sciences Center
State: New Mexico
Approx. # of Individuals Affected: 1,900
Date of Breach: 2/08/10
Type of Breach: Other
Location of Breached Information: Desktop Computer
Lucille Packard Children’s Hospital
State: California
Approx. # of Individuals Affected: 532
Date of Breach: 1/11/10
Type of Breach: Other
Location of Breached Information: Desktop Computer
Advanced NeuroSpinal Care
State: California
Approx. # of Individuals Affected: 3,500
Date of Breach: 12/30/09
Type of Breach: Theft, Loss
Location of Breached Information: Network Server, Desktop Computer
Brown University
State: Rhode Island
Business Associate Involved: Blue Cross Blue Shield of Rhode Island
Approx. # of Individuals Affected: 528
Date of Breach: 12/11/09
Type of Breach: Unauthorized Access
Location of Breached Information: Paper Records
Center for Neurosciences
State: Arizona
Approx. # of Individuals Affected: 1,101
Date of Breach: 12/15/09
Type of Breach: Theft
Location of Breached Information: Laptop
Of course, we cannot tell from the above all the kinds of data involved. We know that unsecured protected health information was involved, but we cannot tell if any credit card, SSN, or financial information were part of the breaches.