IA: Allen Hospital in Waterloo reports patient data breach

Pat Kinney reports:

UnityPoint Health-Allen Hospital is reviewing a breach of patient information which occurred over about seven years.

The hospital is notifying approximately 1,620 patients that a former employee inappropriately accessed their personal information in the hospital’s electronic medical record.

Allen Hospital compliance staff detected inappropriate access to the hospital’s medical record on March 14, and opened an immediate review, said Jim Watrbury, the hospital’s vice president for institutional advancement. Allen compliance staff traced the employee’s unauthorized entries from September 2009 through March 2016.

Read more on The Courier.

So far, I’m not seeing this incident on their web site or on HHS’s public breach tool. Nor have I yet located any copy of the press release they reportedly sent out.

Snowflake Loses Two More Bids to Dismiss Data Breach Plaintiffs
US company with access to biggest telecom firms uncovers breach by nation-state hackers
UK: FCA fines former employee of Virgin Media O2 for data protection breach
Former General Manager for U.S. Defense Contractor Pleads Guilty to Selling Stolen Trade Secrets to Russian Broker
Safaricom-Backed M-TIBA Victim of a Possible Data Breach Affecting Millions of Kenyans
Another plastic surgery practice fell prey to a cyberattack that acquired patient photos and info

Related: