DataBreaches.Net

Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report
Menu

Children’s Hospital Los Angeles and the Children’s Hospital Los Angeles Medical Group notify parents of laptop theft

Posted on January 13, 2017 by Dissent

On December 21, Children’s Hospital Los Angeles and the Children’s Hospital Los Angeles Medical Group learned that a laptop had been stolen from a locked car of one of the physicians. The laptop, which contained minor children’s protected health information, was unencrypted.

According to a notification letter dated January 13, a copy of which was submitted to the California Attorney General’s Office:

The laptop may have had files on it with your child’s name, date of birth, address, medical record number and some clinical information. We have been working with law enforcement but, to date, they have been unable to find the stolen laptop.

In response to this incident, the hospital and medical group say that they are, “enhancing the encryption levels of all laptops that physicians use in the provision of care for patients.”

Parents of affected children were advised to check explanation of benefits statements or communications from health insurers carefully, although they have no evidence that the information has been used.

Update: This post was edited post-publication after receiving a copy of this notice from CHLA:

Children’s Hospital Los Angeles (CHLA) and Children’s Hospital Los Angeles Medical Group (CHLAMG) learned on Dec. 21, 2016 that a laptop stolen on Oct. 18 may have contained personal health information for nearly 3,600 patients.

The password-protected laptop was stolen from the locked personal vehicle of a CHLAMG physician who practices at CHLA. An initial investigation indicated that the laptop had been encrypted to current institutional standards. Upon additional review and historical discovery, on Dec. 21, 2016, it was determined that there was a possibility that the laptop was not encrypted. Out of an abundance of caution, the institutions are notifying patients who may have had limited information stored on the laptop which included name, address, medical record number and some clinical information.

“Following the notification regarding the burglary, an investigation took place to determine whether patient health information existed on the laptop,” says CHLA spokesman Lorenzo Benet. “Based on the investigation, the laptop has not been used to access the internet. From that information, we believe that all data may have been erased from the device without any patient data being accessed.” Additionally, a protocol has been established to erase data from the device the next time it logs onto the internet.

Impacted families will be notified by mail in the coming days. Patients and families will be instructed to carefully review their health insurance documents (including any Explanation of Benefits Statements) for signs that their health information is being misused and, should they identify anything that looks inaccurate, notify their insurance company.

Physician members of the Children’s Hospital Los Angeles Medical Group provide medical care for patients treated at Children’s Hospital Los Angeles. CHLA and CHLAMG jointly implement electronic security to protect patient data. Protocols have been established and technology is being utilized to safeguard the hospital’s equipment.

All patients who may have been affected are being proactively alerted by mail. Patients who are concerned about this notice may call 1-844-299-6983, Monday through Friday between 6 a.m. and 6 p.m. Pacific Time to find out more.

 

Category: Health DataTheftU.S.

Post navigation

← Student Hacker Faces 10 Years in Prison For Spyware That Hit 16,000 Computers
2016: Healthcare data breaches in review, Part 1 →

Now more than ever

"Stand with Ukraine:" above raised hands. The illustration is in blue and yellow, the colors of Ukraine's flag.

Search

Browse by Categories

Recent Posts

  • Nigerian National Sentenced To More Than Five Years For Hacking, Fraud, And Identity Theft Scheme
  • Data breach of patient info ends in firing of Miami hospital employee
  • Texas DOT investigates breach of crash report records, sends notification letters
  • PowerSchool hacker pleads guilty, released on personal recognizance bond
  • Rewards for Justice offers $10M reward for info on RedLine developer or RedLine’s use by foreign governments
  • New evidence links long-running hacking group to Indian government
  • Zaporizhzhia Cyber ​​Police Exposes Hacker Who Caused Millions in Losses to Victims by Mining Cryptocurrency
  • Germany fines Vodafone $51 million for privacy, security breaches
  • Google: Hackers target Salesforce accounts in data extortion attacks
  • The US Grid Attack Looming on the Horizon

No, You Can’t Buy a Post or an Interview

This site does not accept sponsored posts or link-back arrangements. Inquiries about either are ignored.

And despite what some trolls may try to claim: DataBreaches has never accepted even one dime to interview or report on anyone. Nor will DataBreaches ever pay anyone for data or to interview them.

Want to Get Our RSS Feed?

Grab it here:

https://databreaches.net/feed/

RSS Recent Posts on PogoWasRight.org

  • California county accused of using drones to spy on residents
  • How the FBI Sought a Warrant to Search Instagram of Columbia Student Protesters
  • Germany fines Vodafone $51 million for privacy, security breaches
  • Malaysia enacts data sharing rules for public sector
  • U.S. Enacts Take It Down Act
  • 23andMe Bankruptcy Judge Ponders Trump Bill’s Injunction Impact
  • Hell No: The ODNI Wants to Make it Easier for the Government to Buy Your Data Without Warrant

Have a News Tip?

Email: Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Contact Me

Email: info[at]databreaches.net

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

DMCA Concern: dmca[at]databreaches.net
© 2009 – 2025 DataBreaches.net and DataBreaches LLC. All rights reserved.