DataBreaches.Net

Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report
Menu

HHS site update reveals three previously unreported breaches

Posted on October 19, 2010 by Dissent

The most recent update of HHS’s breach tool website reveals three breaches we didn’t know about and one breach that had previously been reported in the media:

The Utah Department of Health recently reported the Utah Department of Workforce Services incident involving access to and disclosure of 1298 immigrants’ information.  The incident was covered on databreaches.net and pogowasright.org back in July.  I asked the state why the delayed notification to HHS and received the following statement by e-mail today:

The Utah Department of Health has worked closely with the Utah Department of Workforce Services to ensure proper notification regarding this incident and to ensure appropriate policies and procedures are in place to ensure the safeguarding of protected health information. Although it appears that the
collection of information may have begun as early as March 2010, the agencies were not aware of the breach until July 2010. The incident was covered heavily in local media and clients were sent notification regarding the potential disclosure of protected health information. It is unclear to what extent that the disclosed information came from protected health information or from other sources. Because the State has determined that the breach may have affected more than 500 individuals, it has filed its report. The Utah Attorney General’s Office is currently investigating this breach.

Cumberland Gastroenterology, P.S.C. in Kentucky recently notified HHS of an incident involving the theft of paper records containing protected health information of 2,207 patients. The theft reportedly occurred on Sept. 18. The practice does not seem to have a website, so further details are not available at this time unless someone submits a copy of any notification letter they received.

The LoneStar Audiology Group in Texas reports that a laptop stolen on August 11 contained the PHI for 585 patients. The practice does not seem to have a website, so further details are not available at this time unless someone submits a copy of any notification letter they received.

WESTMED Medical Group in New York also experienced a laptop theft in August. They report that 578 patients had PHI on the stolen device.  I sent an e-mail inquiry to them but have yet to receive a response and do not see any statement on their website.

Category: Health Data

Post navigation

← Carolina West Wireless customer data found during vehicle search
Today’s WTF moment: Yeah, I failed at protecting your data. Please vote for me. →

Now more than ever

"Stand with Ukraine:" above raised hands. The illustration is in blue and yellow, the colors of Ukraine's flag.

Search

Browse by Categories

Recent Posts

  • Why Dumping Sensitive Data on Network Shares is a Liability
  • A militarily degraded Iran may turn to asymmetrical warfare – raising risk of proxy and cyber attacks
  • Pro-Russian hackers disrupt Dutch government websites ahead of NATO summit
  • Iran-Linked Threat Actors Leak Visitors and Athletes’ Data from Saudi Games
  • UK: Oxford City Council still investigating cyberattack from earlier this month
  • Steelmaker Nucor Says Hackers Stole Data in Recent Attack
  • People’s Republic of China cyber threat activity: Cyber Threat Bulletin
  • Ukrainian Web3 security auditing company Hacken suffered an attack that allowed a hacker to create 900 million HAI tokens
  • McLaren provides written notice to 743,131 patients after ransomware attack in July 2024 (1)
  • A state forensics lab was leaking its files. Getting it locked down involved a number of people.

No, You Can’t Buy a Post or an Interview

This site does not accept sponsored posts or link-back arrangements. Inquiries about either are ignored.

And despite what some trolls may try to claim: DataBreaches has never accepted even one dime to interview or report on anyone. Nor will DataBreaches ever pay anyone for data or to interview them.

Want to Get Our RSS Feed?

Grab it here:

https://databreaches.net/feed/

RSS Recent Posts on PogoWasRight.org

  • Sky Views Personal Data as a Potential Weapon in IPTV Piracy War
  • Florida Used a Nationwide Surveillance Camera Network 250 Times To Aid in Immigration Arrests
  • Federal Court Strikes Down HIPAA Reproductive Health Care Privacy Rule
  • The Markup caught 4 more states sharing personal health data with Big Tech
  • Privacy in the Big Sky State: Montana’s Consumer Privacy Law Gets Amended
  • UK Passes Data Use and Access Regulation Bill
  • Officials defend Liberal bill that would force hospitals, banks, hotels to hand over data

Have a News Tip?

Email: Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Contact Me

Email: info[at]databreaches.net

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

DMCA Concern: dmca[at]databreaches.net
© 2009 – 2025 DataBreaches.net and DataBreaches LLC. All rights reserved.