DataBreaches.Net

Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report
Menu

FL: Barry University notifies patients that records with personal, financial, and medical information may have been compromised

Posted on December 31, 2013 by Dissent

Miami Herald staff report:

Barry University announced Monday night it is notifying patients of its Foot and Ankle Institute that their medical records and personal information may have been hacked.

The security breach was detected around May 14th via a school laptop infected by a form of malware – software used mainly to gain access to private computer systems.

The university launched a probe and hired an outside computer forensic company to investigate the extent of the infection and remove the malware infection from the university’s network, the school said in a news release.

The affected files have been restored to their original state and there is no longer any evidence of active malware on the device, the school said.

But Barry University has determined – seven-months after the incident – that certain sensitive information of patients treated at the institute may have been compromised. The number of patients affected was not released by the school.

The information at risk includes patients’ full name, date of birth, Social Security number, bank account number, credit/debit card number, driver’s license number, medical record number, health insurance information, diagnosis, and/or health information about specific treatment they received at the Miami Shores school.

Read more on Miami Herald. There does not seem to be any statement on Barry U.’s site or the clinic’s site at the time of this posting.

Once again – and frustratingly – an entity states it has not received any reports of identity fraud or theft resulting from the breach. Well, how could it if patients might have no way to link fraud they experienced to the breach in the absence of notification of the breach? In my opinion, breached entities – and not just in the health care sector – should not be allowed to make such statements without some qualifiers.

And while Barry U. is taking steps to secure its system, it hasn’t explained how the malware got on the laptop or how it’s going to prevent that from happening again.

Those affected are being offered free credit monitoring services, which sounds right given the nature of the breached information and the entity’s inability to determine if it was actually exfiltrated.

No related posts.

Category: Health Data

Post navigation

← T-Mobile USA customers to be notified of security breach at supplier’s (update 2)
Actelis Networks reports theft of safes with Human Resources files →

Now more than ever

"Stand with Ukraine:" above raised hands. The illustration is in blue and yellow, the colors of Ukraine's flag.

Search

Browse by Categories

Recent Posts

  • Hacker helped kill FBI sources, witnesses in El Chapo case, according to watchdog report
  • Texas Centers for Infectious Disease Associates Notifies Individuals of Data Breach in 2024
  • Battlefords Union Hospitals notifies patients of employee snooping in their records
  • Alert: Scattered Spider has added North American airline and transportation organizations to their target list
  • Northern Light Health patients affected by security incident at Compumedics; 10 healthcare entities affected
  • Privacy commissioner reviewing reported Ontario Health atHome data breach
  • CMS warns Medicare providers of fraud scheme
  • Ex-student charged with wave of cyber attacks on Sydney uni
  • Detaining Hackers Before the Crime? Tamil Nadu’s Supreme Court Approves Preventive Custody for Cyber Offenders
  • Potential Cyberattack Scrambles Columbia University Computer Systems

No, You Can’t Buy a Post or an Interview

This site does not accept sponsored posts or link-back arrangements. Inquiries about either are ignored.

And despite what some trolls may try to claim: DataBreaches has never accepted even one dime to interview or report on anyone. Nor will DataBreaches ever pay anyone for data or to interview them.

Want to Get Our RSS Feed?

Grab it here:

https://databreaches.net/feed/

RSS Recent Posts on PogoWasRight.org

  • Hacker helped kill FBI sources, witnesses in El Chapo case, according to watchdog report
  • Germany Wants Apple, Google to Remove DeepSeek From Their App Stores
  • Supreme Court upholds Texas law requiring age verification on porn sites
  • Justices nix Medicaid ‘right’ to choose doctor, defunding Planned Parenthood in South Carolina
  • European Commission publishes its plan to enable more effective law enforcement access to data
  • Sacred Secrets: The Biblical Case for Privacy and Data Protection
  • Microsoft’s Departing Privacy Chief Calls for Regulator Outreach

Have a News Tip?

Email: Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Contact Me

Email: info[at]databreaches.net

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

DMCA Concern: dmca[at]databreaches.net
© 2009 – 2025 DataBreaches.net and DataBreaches LLC. All rights reserved.