Pharmacy Times has more on the case of a pharmacy technician at a San Diego CVS store who was accused of stealing patient data for identity theft. It appears that CVS had no knowledge of the data theft until they were contacted by the Secret Service, who had raided her apartment:
During an interview with CVS management, Flores admitted to printing out patient information and leaving with the records in her pockets between May 2013 and November 2014, as well as during a 3-month period from February 2015 to April 2015. She would then give the information to her property manager, who used it to fraudulently obtain credit cards and other forms of credit.
Printing out patient data in very small quantities? Would any employer really be likely to catch that type of insider threat? How might you protect against that?
Read more on Pharmacy Times.