On July 9, SunBridge Healthcare Corporation of New Mexico issued the following press release: A password-protected laptop computer, containing resident information from 10 states was stolen in May 2010. The states involved are Arizona, California, Colorado, Idaho, Montana, New Mexico, Oklahoma, Utah, Washington and Wyoming. The theft was immediately reported to local law enforcement and…
Author: Dissent
California Department of Health Care Services notifies 29,808 of missing CD
On July 6, the California Department of Health Care Services (DHCS) issued the following press release: The California Department of Health Care Services (DHCS) has reported to federal authorities that a missing compact disc (CD) delivered to the department may not have been encrypted by the sender, Care 1st Health Plan. The CD contains personal…
UK: Barking and Dagenham data breach put bank details at risk
A data breach cost the council £20,000 to fix after fears that bank details of employees may have been hacked into. Council staff discovered the breach on February 3 and found that the financial system had been cloned into a test server, copying sensitive data. They detected a large amount of hacking activity from overseas…
No more anonymous “private practice” on HHS breach list
HHS has now started revealing the names of the HIPAA-covered entities who had previously been listed only as “private practice” in their list of those having breaches affecting 500 or more individuals. PHIprivacy.net had been one of a number of entities that had complained about private practices being shielded, but OCR had interpreted the Privacy…
Two more Dutch data breaches
Karin Spaink summarizes and translates two more breaches: City leaks bank numbers Private data of people who have received a building license in Groningen, is visible via the city’s website. (One needs to apply for such a license when expanding one’s house or building an addendum to it.) Data disclosed are names, addresses, bank numbers,…
No more anonymous "private practice" on HHS breach list
HHS has now started revealing the names of the HIPAA-covered entities who had previously been listed only as “private practice” in their list of those having breaches affecting 500 or more individuals. PHIprivacy.net had been one of a number of entities that had complained about private practices being shielded, but OCR had interpreted the Privacy…