DataBreaches.Net

Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report
Menu

Malware discovered on UMass Amherst server left patient info vulnerable

Posted on March 10, 2011 by Dissent

The following statement was posted on UMass Amherst’s web site on March 7:

The University of Massachusetts Amherst is notifying clients of University Health Services (UHS) whose protected health information was possibly revealed after a workstation was inadvertently infected with a malware program.

The malware infection occurred on June 30, 2010 and the vulnerability on the workstation was corrected on Oct. 28, 2010. A subsequent investigation by the Office of Information Technologies at UMass Amherst found no evidence suggesting or indicating that any data was copied from the UHS workstation, which contained patient’s names, their health insurance company names, medical record numbers and information on prescriptions dispensed between Jan. 2, 2009 and Nov. 17, 2009, including the medication, dispensing pharmacist, quantity, length of prescription and the physician’s name.

University officials, while stressing that the risk of theft of the information is low, are notifying individuals whose data was on the affected workstation in accordance with the federal Health Information Technology for Economic and Clinical Health Act (HITECH).

In a letter to the affected patients, Bernette A. Melby, executive director of UHS, advises them to pay close attention to “any unusual activity with respect to your prescriptions and health insurance claims to limit the likelihood of misuse of your medical identity and personal health information.”

The letter adds that UMass Amherst officials have taken steps to increase and improve security training for system administrators, installed automated software to detect malicious activity and increased efforts by central technology staff to identify files in departmental computers containing personal information. In addition, current and new UHS staff members are receiving additional training in security practices.

Patients may call 877-255-0045 for additional information.

Joseph Goedert of Health Data Management, who first reported the breach, indicates that 942 patients were affected.

Not surprisingly, the statement leads to a number of questions:

1. Why are those affected first being notified now if the infection was discovered by October 2010? And will HHS do anything about the late notification? HITECH has a 60-day window for notification.
2. Why wasn’t the infection discovered more promptly? Did they have any software on the system prior to this incident that would have detected malware?
3. How did the malware get on the system?

No related posts.

Category: Health Data

Post navigation

← Twelve indicted in $10 million bank fraud conspiracy operated by a “network” that included bank employees
(Update) Birthdates, social security numbers of 45 Eastern Michigan University students stolen →

1 thought on “Malware discovered on UMass Amherst server left patient info vulnerable”

  1. Anonymous says:
    March 11, 2011 at 5:58 pm

    SHAME SHAME SHAME – June 2010 and only now telling us!

Comments are closed.

Now more than ever

"Stand with Ukraine:" above raised hands. The illustration is in blue and yellow, the colors of Ukraine's flag.

Search

Browse by Categories

Recent Posts

  • Hunters International to provide free decryptors for all victims as they shut down (1)
  • SEC and SolarWinds Seek Settlement in Securities Fraud Case
  • Cyberattacks Disrupt Iran’s Bread Distribution, Payments Remain Frozen
  • Hacker with ‘political agenda’ stole data from Columbia, university says
  • Keymous+ Hacker Group Claims Responsibility for Over 700 Global DDoS Attacks
  • Data breach reveals Catwatchful ‘stalkerware’ is spying on thousands of phones
  • DOJ investigates ex-ransomware negotiator over extortion kickbacks
  • Hackers Using PDFs to Impersonate Microsoft, DocuSign, and More in Callback Phishing Campaigns
  • One in Five Law Firms Hit by Cyberattacks Over Past 12 Months
  • U.S. Sanctions Russian Bulletproof Hosting Provider for Supporting Cybercriminals Behind Ransomware

No, You Can’t Buy a Post or an Interview

This site does not accept sponsored posts or link-back arrangements. Inquiries about either are ignored.

And despite what some trolls may try to claim: DataBreaches has never accepted even one dime to interview or report on anyone. Nor will DataBreaches ever pay anyone for data or to interview them.

Want to Get Our RSS Feed?

Grab it here:

https://databreaches.net/feed/

RSS Recent Posts on PogoWasRight.org

  • Record-Breaking $1.55M CCPA Settlement Against Health Information Website Publisher
  • Ninth Circuit Reviews Website Tracking Class Actions and the Reach of California’s Privacy Law
  • US healthcare offshoring: Navigating patient data privacy laws and regulations
  • Data breach reveals Catwatchful ‘stalkerware’ is spying on thousands of phones
  • Google Trackers: What You Can Actually Escape And What You Can’t
  • Oregon Amends Its Comprehensive Privacy Statute
  • Wisconsin Supreme Court’s Liberal Majority Strikes Down 176-Year-Old Abortion Ban

Have a News Tip?

Email: Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Contact Me

Email: info[at]databreaches.net

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

DMCA Concern: dmca[at]databreaches.net
© 2009 – 2025 DataBreaches.net and DataBreaches LLC. All rights reserved.