DataBreaches.Net

Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report
Menu

Follow-up: Woman Who Stole and Sold Protected Health Information Sentenced to 2 ½ Years in Prison

Posted on July 30, 2021 by Dissent

There was a follow-up last week to a case DataBreaches.net has reported on several times, beginning in December, 2020 when Demetrius Cervantes, 46, of McKinney, and Amanda Lowry, 40, of Sherman, Texas pleaded guilty to conspiracy to obtain protected health information from a protected computer. A third conspirator, Lydia Henslee, faced additional charges and subsequently also pleaded guilty.

Cervantes was sentenced earlier this month to 48 months in prison.  On July 22, Lowry was sentenced to 30 months in prison.

According to information presented in court, Lowry,  Cervantes, and Henslee were named in a federal indictment on Sept. 11, 2019 charging them with conspiracy to obtain information from a protected computer and conspiracy to unlawfully possess and use a means of identification.  They are alleged to have breached a health care provider’s electronic health record (EHR) system in order to steal protected health information and personally identifiable information belonging to patients.  This stolen information was then “repackaged” in the form of false and fraudulent physician orders and subsequently sold to durable medical equipment (DME) providers and contractors.  The defendants obtained more than $1.4 million in proceeds from the sale of the stolen information.  The defendants then used those proceeds to purchase items such as sport utility vehicles, off-road vehicles, and jet skis.

Henslee has not yet been sentenced.

 

Category: Health DataID TheftInsiderU.S.

Post navigation

← EE: Threat actor downloads close to 300,000 personal ID photos
The Life Cycle of a Breached Database →

Now more than ever

"Stand with Ukraine:" above raised hands. The illustration is in blue and yellow, the colors of Ukraine's flag.

Search

Browse by Categories

Recent Posts

  • PowerSchool hacker pleads guilty, released on personal recognizance bond
  • Rewards for Justice offers $10M reward for info on RedLine developer or RedLine’s use by foreign governments
  • New evidence links long-running hacking group to Indian government
  • Zaporizhzhia Cyber ​​Police Exposes Hacker Who Caused Millions in Losses to Victims by Mining Cryptocurrency
  • Germany fines Vodafone $51 million for privacy, security breaches
  • Google: Hackers target Salesforce accounts in data extortion attacks
  • The US Grid Attack Looming on the Horizon
  • US govt login portal could be one cyberattack away from collapse, say auditors
  • Two Men Sentenced to Prison for Aggravated Identity Theft and Computer Hacking Crimes
  • 100,000 UK taxpayer accounts hit in £47m phishing attack on HMRC

No, You Can’t Buy a Post or an Interview

This site does not accept sponsored posts or link-back arrangements. Inquiries about either are ignored.

And despite what some trolls may try to claim: DataBreaches has never accepted even one dime to interview or report on anyone. Nor will DataBreaches ever pay anyone for data or to interview them.

Want to Get Our RSS Feed?

Grab it here:

https://databreaches.net/feed/

RSS Recent Posts on PogoWasRight.org

  • How the FBI Sought a Warrant to Search Instagram of Columbia Student Protesters
  • Germany fines Vodafone $51 million for privacy, security breaches
  • Malaysia enacts data sharing rules for public sector
  • U.S. Enacts Take It Down Act
  • 23andMe Bankruptcy Judge Ponders Trump Bill’s Injunction Impact
  • Hell No: The ODNI Wants to Make it Easier for the Government to Buy Your Data Without Warrant
  • US State Dept. says silence or anonymity on social media is suspicious

Have a News Tip?

Email: Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Contact Me

Email: info[at]databreaches.net

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

DMCA Concern: dmca[at]databreaches.net
© 2009 – 2025 DataBreaches.net and DataBreaches LLC. All rights reserved.