A periodontist from Germantown, Maryland has notified HHS of a security breach that affected 1,000 patients. A web site about the breach, created by ID Experts, describes the incident: On October 14, 2010, when the computer system of the dental Practice of Gary C. Spinks, DMD, PC, shut down, the Practice learned that a hacker had…
Author: Dissent
PinnacleHealth notifies patients that a medical transcription service breach exposing patient records went undetected for two years
Another breach involving a transcription service. This time, it’s PinnacleHealth System in Pennsylvania, who recently reported an incident to HHS involving Gair Medical Transcription Services. On December 17, PinnacleHealth issued a press release that indicates that the breach may have occurred back in 2008, but was only detected when someone searching for something online stumbled across…
OhioHealth patient data exposed
Suzanne Hoholik reports: OhioHealth officials announced yesterday that they will provide one year of credit protection to anyone who was a patient at Grant Medical Center from Jan. 1, 2008, through Nov. 5, 2010. Mark Hopkins, a spokesman for OhioHealth, which owns Grant, said an employee stole computers from an inventory storage facility that contained…
CVS Caremark Abuses Medical Info To Compete Unfairly, Class Claims
Bridget Freeland reports that a complaint mentioned on this blog previously has now become a class action lawsuit in North Carolina: CVS Caremark, the nation’s dominant pharmacy chain, uses and abuses the patient information it gets from handling prescriptions from competing pharmacies, by selling the information to drug companies and using it to solicit rivals’…
MI: One of two suspects in Taco Bell credit card scheme pleads guilty
John Tunison reports: Onil Rivas-Perez, a man police say took part in a scheme to digitally skim credit card numbers from Taco Bell customers, has pleaded guilty to identity theft. Rivas-Perez, 36, of Byron Center, entered the plea Tuesday before Kent County Circuit Court Judge Dennis Lieber and will be sentenced Feb. 24. Police said…
Massachusetts Attorney General Reviews 2010 Data Breach and Data Security Regulations Compliance
Ellen M. Giblin writes: With the first anniversary of the Massachusetts Data Security Regulations, 201 CMR 17 (pdf)(“Regulations”), coming in March, the International Association of Privacy Professionals (IAPP) recently hosted a panel discussion providing direct access to the Massachusetts Attorney General’s Office and the Office of Consumer Affairs and Business Regulation to discuss their investigations…