DataBreaches.Net

Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report
Menu

CT Attorney General investigating MidState Medical/Hartford Healthcare breach

Posted on April 7, 2011 by Dissent

In the aftermath of the breach involving MidState Medical Center, Connecticut’s Attorney General George Jepsen and Consumer Protection Commissioner William M. Rubenstein are asking Hartford Healthcare and its Midstate Medical Center affiliate in Meriden for more information about a data breach that may have compromised medical records of 93,500 patients.

The hospital notified the Attorney General that a hard drive containing protected health information and personal information was taken home by an employee of Hartford Healthcare and subsequently lost. The hard drive contained patient names, addresses, dates of birth, Social Security numbers and medical record numbers.

“I strongly believe in protecting the confidentiality of patients’ private information. Hospitals, like health insurance companies, have access to very sensitive health and personal information. They have a duty to protect that information from unlawful disclosure,” Attorney General Jepsen said.

In a letter to the hospitals’ attorney, Jepsen asked that affected patients be provided with two years of credit monitoring services, identity theft insurance, and reimbursement for the costs associated with placing and lifting security freezes. “When protected information is lost or otherwise disclosed, the hospitals have a responsibility to help protect the identities of the individuals affected,” Jepsen said.

Jepsen and Commissioner Rubenstein are seeking more information about the hospitals’ policies and practices to protect patient information, how the breach occurred and what is being done to keep it from happening again.

“Connecticut law requires companies and organizations that collect and hold personal data to have stringent controls in place to protect that data,” Rubenstein said. “Ensuring that companies comply with the law before consumers get hurt is always more effective than trying to protect consumers after a breach. We will assess the hospitals’ security protocols to assure that a system is in place to prevent this kind of breach from happening again.”

Assistant Attorney General Matthew Fitzsimmons is handling this matter for Jepsen.

Source: Attorney General Jepsen

No related posts.

Category: Health Data

Post navigation

← Who should be notifying consumers about the Epsilon breach?
ME: State Prisoner Sentenced For False Tax Claims and Misuse of Social Security Numbers →

Now more than ever

"Stand with Ukraine:" above raised hands. The illustration is in blue and yellow, the colors of Ukraine's flag.

Search

Browse by Categories

Recent Posts

  • McDonald’s McHire leak involving ‘123456’ admin password exposes 64 million applicant chat records
  • Qilin claims attack on Accu Reference Medical Laboratory. It wasn’t the lab’s first data breach.
  • Louis Vuitton hit by data breach in Türkiye, over 140,000 users exposed; UK customers also affected (1)
  • Infosys McCamish Systems Enters Consent Order with Vermont DFR Over Cyber Incident
  • Obligations under Canada’s data breach notification law
  • German court offers EUR 5000 compensation for data breaches caused by Meta
  • Air Force Employee Pleads Guilty to Conspiracy to Disclose Unlawfully Classified National Defense Information
  • UK police arrest four in connection with M&S, Co-op and Harrods cyberattacks (1)
  • At U.S. request, France jails Russian basketball player Daniil Kasatkin on suspicion of ransomware conspiracy
  • Avantic Medical Lab hacked; patient data leaked by Everest Group

No, You Can’t Buy a Post or an Interview

This site does not accept sponsored posts or link-back arrangements. Inquiries about either are ignored.

And despite what some trolls may try to claim: DataBreaches has never accepted even one dime to interview or report on anyone. Nor will DataBreaches ever pay anyone for data or to interview them.

Want to Get Our RSS Feed?

Grab it here:

https://databreaches.net/feed/

RSS Recent Posts on PogoWasRight.org

  • DeleteMyInfo Wins 2025 Digital Privacy Excellence Award from Internet Safety Council
  • TikTok Loses First Appeal Against £12.7M ICO Fine, Faces Second Investigation by DPC
  • German court offers EUR 5000 compensation for data breaches caused by Meta
  • How to Build on Washington’s “My Health, My Data” Act
  • Department of Justice Subpoenas Doctors and Clinics Involved in Performing Transgender Medical Procedures on Children
  • Google Settles Privacy Class Action Over Period Tracking App
  • ICE Is Searching a Massive Insurance and Medical Bill Database to Find Deportation Targets

Have a News Tip?

Email: Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Contact Me

Email: info[at]databreaches.net

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

DMCA Concern: dmca[at]databreaches.net
© 2009 – 2025 DataBreaches.net and DataBreaches LLC. All rights reserved.