The following incidents have been added to HHS’s web site of reported breaches involving unsecured PHI:
University of Pittsburgh Student Health Center
State: Pennsylvania
Approx. # of Individuals Affected: 8,000
Date of Breach: 3/11/10
Type of Breach: Theft, Loss
Location of Breached Information: Paper Records
Laboratory Corporation of America/US LABS/Dianon Systems, Inc.
State: Arizona
Approx. # of Individuals Affected: 2,773
Date of Breach: 2/18/10
Type of Breach: Theft
Location of Breached Information: Portable Electronic Device
VHS Genesis Lab Inc.
State: Illinois
Approx. # of Individuals Affected: 6,800
Date of Breach: 1/01/10 [corrected 5/17/10 by HHS to read 1/10/10]
Type of Breach: Loss
Location of Breached Information: Paper Records
None of the above have appeared in the mainstream media to date. The John Muir Network breach, previously reported on this site, was also added to their list.
As additional information on the Providence Hospital breach reported earlier this month, although the hospital did not reveal to the media the total number of individuals affected and indicated that only about a dozen had Social Security numbers on the hard drive, in its report to HHS, the hospital indicated that 83,945 patients had information on the lost or stolen hard drive.