HHS has added the May breach involving Midwest Women’s Healthcare Specialists in Missouri, where “dozens, possibly hundreds” of former patients’ records were found blowing in the wind outside Research Hospital. The HHS entry indicates that 1,376 patients were possibly affected and/or notified of the improper disposal of their records.
Month: September 2014
Update on Cottage Health System breach
In December 2013, I reported on a breach involving Cottage Health System. In their notification to patients, which I included in that post, Cottage Health indicated that about 32,500 patients had their information exposed when a vendor removed security controls on a server. That vendor was later identified as InSync. On September 4 of this year,…
HHS breach tool: When "theft" doesn't mean what you think it means
In May 2011, I noted a breach that had appeared on HHS’s public breach tool involving Community Action Partnership of Natrona County, WY. An update to that breach was added to the breach tool on September 3 that suggests that the original breach coding by the covered entity as “theft, desktop computer” could have misled some…
Investigation closed: Diversified Resources, Inc.
In October 2011, I noted that HHS had added an incident to the breach tool for which I could find no additional information: “Diversified Resources, Inc.”,GA, 863, 8/11/2011, Theft, Laptop On September 4, 2014, HHS added a summary to the entry, indicating that its investigation is now closed: “Diversified Resources, Inc.”,GA,””,863,08/11/2011,Theft,Laptop,09/04/2014,” A password protected, but…
HHS breach entries that leave us wondering
HHS’s public breach tool continues to provide evidence of breaches involving patient information, but unfortunately, we often don’t know the details. The following incidents were recorded on their breach tool, but I have been unable to find any public notices (substitute notices or press releases) or web site notifications. Indeed, some of the practitioners listed…
Irish Water confirms possible breach of data protection
From RTÉ: Irish Water has confirmed a possible breach of data protection may have occurred after it sent information packs with the wrong names to over 6,000 customers. The water company said it occurred with packs sent to the owners of multiple properties. The company has contacted the customers involved. They also alerted the Data…