DataBreaches.Net

Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report
Menu

Data theft results in court battle

Posted on November 25, 2011 by Lee J

LOS ANGELES, Nov 23, 2011 (BUSINESS WIRE) — Harris & Ruble, a prominent class-action law firm based in Los Angeles, announced their November 16, 2011, filing of a class-action lawsuit against Sutter Medical Foundation and Sutter Physician Services, alleging the medical provider did not properly safeguard medical information for more than 4 million of its patients affected by the mid-October theft of a computer from the Sutter Medical Foundation headquarters. The suit was filed on the same day that Sutter admitted the unencrypted stolen computer contained patients’ medical records. Sutter officials have acknowledged this is the largest data breach the health network has ever experienced as it impacts millions of patients seen in their facilities between 2005 and 2011. Filed in Alameda County Superior Court on behalf of plaintiff Javier Garcia, the class-action lawsuit alleges Sutter was negligent in protecting patient information stored in computer databases and failed to properly notify patients within the timeframes required by law. A month earlier – October 17, 2011 – a computer with unencrypted patient data was reported stolen from the administrative offices of the Sutter Medical Foundation. Patients first learned of the security breach from the media and did not receive notices from Sutter until late last week. Some 3.3 million patients with providers supported by Sutter Physician Services and 943,000 Sutter Medical Foundation patients are affected. The stolen data includes names, addresses, email addresses, dates of birth, telephone numbers, health insurance plans, and in some cases, descriptions of medical diagnoses or procedures. The Defendants "utterly failed to protect private medical information for the millions of patients who entrusted their healthcare and private information to these companies," said attorney Alan Harris. "Securing equipment and encrypting data were not a priority for Sutter and now patients will have to worry about what medical or insurance information is out there for others to view. That Pat Fry, Sutter Health President and CEO, has acknowledged his responsibility to work harder to protect such information in the future, does not excuse the failure to safeguard the confidential information that has already been disclosed." For additional information, patients impacted by this data breach may contact: Alan Harris Harris & Ruble 6424 Santa Monica Boulevard Los Angeles, CA 90038 (323) 962-3777 [email protected] SOURCE: Harris & Ruble

Related posts:

  • Operation Anti Security Breakdown and targets, the full time line
  • Breaking: Sutter Health reports stolen desktop contained data on 4.2 million patients
  • Operation Phish Phry reels in 100 in U.S. and Egypt
Category: Breach Incidents

Post navigation

← United States authorities Arrest four Filipino hackers
UK: Cleaner did not breach data security says hospital →

Now more than ever

"Stand with Ukraine:" above raised hands. The illustration is in blue and yellow, the colors of Ukraine's flag.

Search

Browse by Categories

Recent Posts

  • Alert: Scattered Spider has added North American airline and transportation organizations to their target list
  • Northern Light Health patients affected by security incident at Compumedics; 10 healthcare entities affected
  • Privacy commissioner reviewing reported Ontario Health atHome data breach
  • CMS warns Medicare providers of fraud scheme
  • Ex-student charged with wave of cyber attacks on Sydney uni
  • Detaining Hackers Before the Crime? Tamil Nadu’s Supreme Court Approves Preventive Custody for Cyber Offenders
  • Potential Cyberattack Scrambles Columbia University Computer Systems
  • 222,000 customer records allegedly from Manhattan Parking Group leaked
  • Breaches have consequences (sometimes) (1)
  • Kansas City Man Pleads Guilty for Hacking a Non-Profit

No, You Can’t Buy a Post or an Interview

This site does not accept sponsored posts or link-back arrangements. Inquiries about either are ignored.

And despite what some trolls may try to claim: DataBreaches has never accepted even one dime to interview or report on anyone. Nor will DataBreaches ever pay anyone for data or to interview them.

Want to Get Our RSS Feed?

Grab it here:

https://databreaches.net/feed/

RSS Recent Posts on PogoWasRight.org

  • Germany Wants Apple, Google to Remove DeepSeek From Their App Stores
  • Supreme Court upholds Texas law requiring age verification on porn sites
  • Justices nix Medicaid ‘right’ to choose doctor, defunding Planned Parenthood in South Carolina
  • European Commission publishes its plan to enable more effective law enforcement access to data
  • Sacred Secrets: The Biblical Case for Privacy and Data Protection
  • Microsoft’s Departing Privacy Chief Calls for Regulator Outreach
  • Nestle USA Settles Suit Over Job-Application Medical Questions

Have a News Tip?

Email: Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Contact Me

Email: info[at]databreaches.net

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

DMCA Concern: dmca[at]databreaches.net
© 2009 – 2025 DataBreaches.net and DataBreaches LLC. All rights reserved.