DataBreaches.Net

Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report
Menu

PA: Ex-Geisinger employee accessed hundreds of patients’ info improperly

Posted on May 19, 2020 by Dissent

From their notice of May 18:

WILKES-BARRE, Pa. – Geisinger Wyoming Valley Medical Center has notified certain patients that their protected health information (PHI) may have been accessed by an individual employee in a non-permitted manner.

On March 20, 2020, Geisinger’s Privacy Office was alerted to a Geisinger Wyoming Valley employee possibly accessing medical records without a confirmed business need to do so.  An immediate investigation validated that this employee accessed medical records as part of their daily job responsibilities.  It was however confirmed that they accessed over 800 patients’ records without a business need.  The individual accessed records from July 2017 to March 2020. As a result of the investigation, the individual is no longer employed at Geisinger.

While the investigation did not reveal any evidence of malicious intent, the information that may have been viewed by the employee included: name, date of birth, social security number, address, phone number, email address, medical conditions, diagnoses, medications, dates of service, visit notes, results and appointment information.

“Geisinger is committed to protecting the privacy of our patients and members so we are actively exploring additional safeguards to protect our patients from a similar incident in the future,” Geisinger Assistant Privacy Officer, Deb Beaver. “We have no reason to believe the information was accessed to commit financial fraud or harm; however, out of an abundance of caution we are providing affected patients one year of identity theft protection free of charge.”

Detailed credit monitoring and identity theft protection enrollment instructions were provided to affected patients in their notification letters.

For those affected by this breach, Geisinger has established a toll-free number at 888-559-9945 which is available from 8 a.m. to 5 p.m. (Eastern Standard Time) Monday through Friday.

About Geisinger

Geisinger is committed to making better health easier for the more than 1.5 million consumers it serves. Founded more than 100 years ago by Abigail Geisinger, the system now includes 13 hospital campuses, a 600,000-member health plan, two research centers and the Geisinger Commonwealth School of Medicine. With 32,000 employees and 1,800 employed physicians, Geisinger boosts its hometown economies in Pennsylvania and New Jersey by billions of dollars annually. For more information, visit www.geisinger.org, or connect with us on Facebook, Instagram, LinkedIn and Twitter.

Category: Health DataInsiderU.S.

Post navigation

← Israel behind cyberattack that caused ‘total disarray’ at Iran port – report
Verizon DBIR: Breaches doubled, but plenty of silver linings →

Now more than ever

"Stand with Ukraine:" above raised hands. The illustration is in blue and yellow, the colors of Ukraine's flag.

Search

Browse by Categories

Recent Posts

  • CoinMarketCap Hacked, Scrambles to Remove Malicious Wallet Verification Popup
  • Montana Attorney General launches investigation into Lee Enterprises data breach
  • AT&T gets preliminary approval for $177 million data breach settlement
  • Aflac notifies SEC of breach suspected to be work of Scattered Spider
  • Former JBLM soldier pleads guilty to attempting to share military secrets with China
  • No, the 16 billion credentials leak is not a new data breach — a wake-up call about fake news (Updated)
  • Tonga’s health system hit by cyberattack (1)
  • Russia Expert Falls Prey to Elite Hackers Disguised as US Officials
  • Proposed class action settlement in In re Netgain Technology litigation
  • Qilin Offers “Call a lawyer” Button For Affiliates Attempting To Extort Ransoms From Victims Who Won’t Pay

No, You Can’t Buy a Post or an Interview

This site does not accept sponsored posts or link-back arrangements. Inquiries about either are ignored.

And despite what some trolls may try to claim: DataBreaches has never accepted even one dime to interview or report on anyone. Nor will DataBreaches ever pay anyone for data or to interview them.

Want to Get Our RSS Feed?

Grab it here:

https://databreaches.net/feed/

RSS Recent Posts on PogoWasRight.org

  • The Markup caught 4 more states sharing personal health data with Big Tech
  • Privacy in the Big Sky State: Montana’s Consumer Privacy Law Gets Amended
  • UK Passes Data Use and Access Regulation Bill
  • Officials defend Liberal bill that would force hospitals, banks, hotels to hand over data
  • US Judge Invalidates Biden Rule Protecting Privacy for Abortions
  • DOJ’s Data Security Program: Key Compliance Considerations for Impacted Entities
  • 23andMe fined £2.31 million for failing to protect UK users’ genetic data

Have a News Tip?

Email: Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Contact Me

Email: info[at]databreaches.net

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

DMCA Concern: dmca[at]databreaches.net
© 2009 – 2025 DataBreaches.net and DataBreaches LLC. All rights reserved.