2,400 members’ info stolen, Kaiser Permanente says

Nereida Moreno reports:

A mail delivery truck carrying the personal information of 2,400 Kaiser Permanente members on the Inland Empire Health Plan was stolen last month from a parking lot in Santa Clarita, officials announced Friday.

Michelle Simms, a Kaiser Permanente spokeswoman, said the health care provider reported the theft to Los Angeles County Sheriff’s station in Santa Clarita. Officials believe the incident took place sometime between March 12 and March 14.

Read more on The Press Enterprise.

So the vendor violated KP’s policies, it seemed. Will HHS investigate what KP does to monitor/audit its vendors for compliance?

So far, I don’t see this incident up on HHS’s public breach tool.

HHS OCR Settles HIPAA Ransomware Investigation with Syracuse ASC for $250k plus corrective action plan
Clorox Files $380M Suit Alleging Cognizant Gave Hackers Passwords in Catastrophic 2023 Cyberattack
PowerSchool commits to strengthened breach measures following engagement with the Privacy Commissioner of Canada
Two more entities have folded after ransomware attacks
Data breach feared after cyberattack on AMEOS hospitals in Germany
Michigan ‘ATM jackpotting’: Florida men allegedly forced machines to dispense $107K

Related: