Not only is the data security problematic, but so is the incident response in this case, as Rich Rodriguez reports:
A Visalia woman’s personal information is in the hands of a thief. Robin Walker wasn’t hacked, it was stolen from her doctor. She had knee surgery in July. Days before the operation her doctor’s car was broken into.
She learned that forty patients with Anesthesia Consultants of Fresno got their personal information stolen. “I got a letter on the 28th of July stating all my pertinent information that I trusted them with was stolen.” Walker was worried. She sought answers by phone and mail and got nowhere. “I called and tried to contact and there was no luck. I talked to a machine and for two weeks I got no information from anyone. No one contacted me. No one returned a phone call.”
Read more on Fox26. If you’re a believer that SMB’s should be cut more slack on data security and incident response, you may just shrug about this report. But when all is said and done, the data wound up in the hands of thieves who don’t and won’t care whether this was a small practice or a large hospital.