DataBreaches.Net

Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report
Menu

Harris County Hospital District notifies patients whose data were stolen by an employee

Posted on August 30, 2012 by Dissent

Patients of Harris County Hospital District in Texas who were patients between April 14, 2008 and February 11, 2011 are first being notified that their information may have been stolen by an employee.

In a notice posted on their site, David S. Lopez, President/CEO, writes that they wish to “urgently call your attention to the fact that certain information about you may have been improperly accessed, viewed, recorded and shared with others by a District employee. The employee has not been employed at the District since February 11, 2011. The information viewed and possibly shared with others may have included your name, address, phone number, date of birth, sex, Social Security (member) number, medical record number, emergency contact information, payer information, and information about the medical care you received at the District between April 14, 2008 and February 11, 2011.”

The District first became aware of the problem on February 11, 2011, when they received a grand jury subpoena related to the alleged activities.

Lopez says that the District complied with the subpoena and cooperated with the Office of Inspector General’s investigation. On July 20, 2012, they “received additional information that led to our decision to provide you with this notice.”

It’s not clear why they did not have sufficient information before last month to determine the seriousness of the breach and its scope, but they write that “Due to the pending criminal investigation, the District has been unable to determine with certainty which patients’ personal data and information was, in fact, improperly viewed, accessed or shared with others.”

The District believes that the purpose of the data theft was to defraud Medicare and not the patients.

“The former employee has been indicted in the United States District Court for the Southern District of Texas, Houston Division, and will be tried on criminal charges related to the stolen and misused information on September 24, 2012,” Lopez writes.

h/t, Click2Houston

Category: Health Data

Post navigation

← Ukrainian #Blizzard community hacked 19,000+ Accounts Leaked By #Anonymous
Attacks By Team Ghost Shell →

Now more than ever

"Stand with Ukraine:" above raised hands. The illustration is in blue and yellow, the colors of Ukraine's flag.

Search

Browse by Categories

Recent Posts

  • Credit Control Corporation data allegedly from 9.1 million consumers listed for sale on forum
  • Copilot AI Bug Could Leak Sensitive Data via Email Prompts
  • FTC Provides Guidance on Updated Safeguards Rule
  • Sentara Health terminates remote employees after realizing they couldn’t be sure who was doing the work.
  • Hackers Break Into Car Sharing App, 8.4 Million Users Affected
  • Cyberattack pushes German napkin company into insolvency
  • WMATA Train Operators Arrested in Health Care Fraud Scheme
  • Washington Post investigating cyberattack on journalists, WSJ reports
  • Resource: State Data Breach Notification Laws – June 2025
  • WestJet investigates cyberattack disrupting internal systems

No, You Can’t Buy a Post or an Interview

This site does not accept sponsored posts or link-back arrangements. Inquiries about either are ignored.

And despite what some trolls may try to claim: DataBreaches has never accepted even one dime to interview or report on anyone. Nor will DataBreaches ever pay anyone for data or to interview them.

Want to Get Our RSS Feed?

Grab it here:

https://databreaches.net/feed/

RSS Recent Posts on PogoWasRight.org

  • Vermont signs Kids Code into law, faces legal challenges
  • Data Categories and Surveillance Pricing: Ferguson’s Nuanced Approach to Privacy Innovation
  • Anne Wojcicki Wins Bidding for 23andMe
  • Would you — or wouldn’t you?
  • New York passes a bill to prevent AI-fueled disasters
  • Synthetic Data and the Illusion of Privacy: Legal Risks of Using De-Identified AI Training Sets
  • States sue to block the sale of genetic data collected by DNA testing company 23andMe

Have a News Tip?

Email: Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Contact Me

Email: info[at]databreaches.net

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

DMCA Concern: dmca[at]databreaches.net
© 2009 – 2025 DataBreaches.net and DataBreaches LLC. All rights reserved.