Another medical facility added to LSU Health Care Services Division HIPAA breach

As Louisiana State University Health Care kept investigating, they found more of their affiliated entities were impacted. WDSU reports:

Another medical facility has been added to a cyber intrusion that happened at LSU Health New Orleans Health Care Services Division.

The breach was first reported back in November.

LSU HCSD has since become aware that the employee’s electronic mailbox also included information from its partner hospital, Leonard J. Chabert Medical Center.

Leonard J. Chabert Medical Center was notified on Nov. 24, 2020, by LSU HCSD of the possibility that some of its patients’ protected information may have been accessible to the cyber intruder.

Read more on WDSU. The report says that “out of an abundance of caution, patients who received care at Leonard J. Chabert Medical Center in 2013-14 are encouraged to monitor their credit reports.” The center has not yet mailed out individual patient notification letters.

LA: Laptop with 5,000 minors' protected health info stolen from doctor's unattended car
HIPAA Compliance and Breach Communications: Helpful Tips for SMBs
U.S. medical entities fall prey to Pysa threat actors, but many haven't disclosed it - at least, not yet.
Small-Scale Violations of Medical Privacy Often Cause the Most Harm
Thousands of patients’ information potentially accessed after cyber breach at Louisiana State University Health

Related: