DataBreaches.Net

Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report
Menu

University of Miami Miller School of Medicine notifying patients after flash drive stolen from pathologist's car

Posted on January 30, 2012 by Dissent

The Miami Herald reports that U. of Miami is notifying 1,219 patients after a flash drive with unencrypted patient data was stolen from a pathologist’s car in November.

From the FAQ on the breach:

What Happened?

On November 24, 2011 a vehicle belonging to a Pathologist from the University of Miami Miller School of Medicine had its rear window broken and a briefcase containing an electronic storage device (a USB hard drive) stolen.

What Kind Of Information Was Included On The Lost Drive?

Information stored on the drive included limited data elements of certain patients who had specimens reviewed by the department of Pathology between 2005 and 2011. This information included name, medical record number, age, sex, diagnosis and treatment information. No financial information or social security numbers were stored on the stolen drive.

[…]

Why Was My Information Being Stored On The Drive? 

The Pathologist involved kept a copy of limited aspects of some patient information on the stolen drive to facilitate data analysis and review while away from the office.

What Is The University Of Miami Doing About The Incident?

The incident was reported to local law enforcement for investigation. The University is notifying all individuals whose information was included on the stolen drive. However, it is important to note, at this time, there is no indication that the information has been misused in any fashion. It appears to be petty theft. The University continuously reviews its physical and electronic safeguards to ensure that personally identifiable information remains secure. The University currently encrypts portable laptop computers and will be examining further means to secure its data at rest. The University is also posting pertinent information to an incident website and establishing a toll free number (855-540-4773) for affected individuals to call for further information. As required, this issue will be reported to the US Department of Health and Human Services.

Is There Any Evidence That This Information Has Been Misused?

No, there is no evidence that this information has been misused.

How Do I Know Whether My Information Was On The Stolen Drive?

Only individuals whose information was stored on the stolen hard drive will receive a letter about this incident.

[…]

 

They also posted a copy of the letter sent to affected patients.

Category: Health Data

Post navigation

← Lexington Clinic Notifying Patients of Information Security Breach
Regions says employee 401k data lost when auditor Ernst & Young mailed flash drive and code key together →

Now more than ever

"Stand with Ukraine:" above raised hands. The illustration is in blue and yellow, the colors of Ukraine's flag.

Search

Browse by Categories

Recent Posts

  • AMI Group – Travel & Tours notice of ransomware attack
  • Resource: Insider Threat reports
  • Za: Cyber extortionist sentenced to eight years in jail
  • ICE takes steps to deport the Australian hacker known as “DR32”
  • Hearing on the Federal Government and AI
  • Nigerian National Sentenced To More Than Five Years For Hacking, Fraud, And Identity Theft Scheme
  • Data breach of patient info ends in firing of Miami hospital employee
  • Texas DOT investigates breach of crash report records, sends notification letters
  • PowerSchool hacker pleads guilty, released on personal recognizance bond
  • Rewards for Justice offers $10M reward for info on RedLine developer or RedLine’s use by foreign governments

No, You Can’t Buy a Post or an Interview

This site does not accept sponsored posts or link-back arrangements. Inquiries about either are ignored.

And despite what some trolls may try to claim: DataBreaches has never accepted even one dime to interview or report on anyone. Nor will DataBreaches ever pay anyone for data or to interview them.

Want to Get Our RSS Feed?

Grab it here:

https://databreaches.net/feed/

RSS Recent Posts on PogoWasRight.org

  • The Decision That Murdered Privacy
  • Hearing on the Federal Government and AI
  • California county accused of using drones to spy on residents
  • How the FBI Sought a Warrant to Search Instagram of Columbia Student Protesters
  • Germany fines Vodafone $51 million for privacy, security breaches
  • Malaysia enacts data sharing rules for public sector
  • U.S. Enacts Take It Down Act

Have a News Tip?

Email: Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Contact Me

Email: info[at]databreaches.net

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

DMCA Concern: dmca[at]databreaches.net
© 2009 – 2025 DataBreaches.net and DataBreaches LLC. All rights reserved.