DataBreaches.Net

Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report
Menu

HHS site update reveals three previously unreported breaches

Posted on October 19, 2010 by Dissent

The most recent update of HHS’s breach tool website reveals three breaches we didn’t know about and one breach that had previously been reported in the media:

The Utah Department of Health recently reported the Utah Department of Workforce Services incident involving access to and disclosure of 1298 immigrants’ information.  The incident was covered on databreaches.net and pogowasright.org back in July.  I asked the state why the delayed notification to HHS and received the following statement by e-mail today:

The Utah Department of Health has worked closely with the Utah Department of Workforce Services to ensure proper notification regarding this incident and to ensure appropriate policies and procedures are in place to ensure the safeguarding of protected health information. Although it appears that the
collection of information may have begun as early as March 2010, the agencies were not aware of the breach until July 2010. The incident was covered heavily in local media and clients were sent notification regarding the potential disclosure of protected health information. It is unclear to what extent that the disclosed information came from protected health information or from other sources. Because the State has determined that the breach may have affected more than 500 individuals, it has filed its report. The Utah Attorney General’s Office is currently investigating this breach.

Cumberland Gastroenterology, P.S.C. in Kentucky recently notified HHS of an incident involving the theft of paper records containing protected health information of 2,207 patients. The theft reportedly occurred on Sept. 18. The practice does not seem to have a website, so further details are not available at this time unless someone submits a copy of any notification letter they received.

The LoneStar Audiology Group in Texas reports that a laptop stolen on August 11 contained the PHI for 585 patients. The practice does not seem to have a website, so further details are not available at this time unless someone submits a copy of any notification letter they received.

WESTMED Medical Group in New York also experienced a laptop theft in August. They report that 578 patients had PHI on the stolen device.  I sent an e-mail inquiry to them but have yet to receive a response and do not see any statement on their website.

Category: Health Data

Post navigation

← Carolina West Wireless customer data found during vehicle search
Today’s WTF moment: Yeah, I failed at protecting your data. Please vote for me. →

Now more than ever

"Stand with Ukraine:" above raised hands. The illustration is in blue and yellow, the colors of Ukraine's flag.

Search

Browse by Categories

Recent Posts

  • Central Maine Healthcare tackles suspected cybersecurity issue; hospitals remain open
  • Cartier Data Breach: Luxury Retailer Warns Customers that Personal Data Was Exposed
  • Beyond the Pond Phish: Unraveling Lazarus Group’s Evolving Tactics
  • Akira doesn’t keep its promises to victims — SuspectFile
  • Fraudsters, murderers, students: who the GRU assembled a team of hacker provocateurs from and why it failed
  • Order of Psychologists of Lombardy fined 30,000 € for inadequate data security protection and detection following ransomware attack
  • Lower Merion School District says a data breach was caused by a computer glitch (1)
  • After $1 Million Ransom Demand, Virgin Islands Lottery Restores Operations Without Paying Hackers
  • Junior Defence Contractor Arrested For Leaking Indian Naval Secrets To Suspected Pakistani Spies
  • Mysterious leaker GangExposed outs Conti kingpins in massive ransomware data dump

No, You Can’t Buy a Post or an Interview

This site does not accept sponsored posts or link-back arrangements. Inquiries about either are ignored.

And despite what some trolls may try to claim: DataBreaches has never accepted even one dime to interview or report on anyone. Nor will DataBreaches ever pay anyone for data or to interview them.

Want to Get Our RSS Feed?

Grab it here:

https://databreaches.net/feed/

RSS Recent Posts on PogoWasRight.org

  • Stewart Baker vs. Orin Kerr on “The Digital Fourth Amendment”
  • Fears Grow Over ICE’s Reach Into Schools
  • Resource: HoganLovells Asia-Pacific Data, Privacy and Cybersecurity Guide 2025
  • She Got an Abortion. So A Texas Cop Used 83,000 Cameras to Track Her Down.
  • Why AI May Be Listening In on Your Next Doctor’s Appointment
  • Watch out for activist judges trying to deprive us of our rights to safe reproductive healthcare
  • Nebraska Bans Minor Social Media Accounts Without Parental Consent

Have a News Tip?

Email: Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Contact Me

Email: info[at]databreaches.net

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

DMCA Concern: dmca[at]databreaches.net
© 2009 – 2025 DataBreaches.net and DataBreaches LLC. All rights reserved.