Scott Carroll reports: Arkansas Attorney General Leslie Rutledge on Thursday announced a lawsuit against the defunct Eastern Ozarks Regional Health for failing to protect sensitive patient information after it closed. The former hospital in Cherokee Village is accused of leaving behind thousands of unsecured patient and employee records that contain social security numbers, driver’s license…
Category: Health Data
WA: Chelan Douglas Health District Warning Residents of 2021 Data Breach
Kyle Lamb reports: The Chelan Douglas Health District is warning the public of a data breach that may have led to the loss of identifiable personal and health information. The district said the hack occurred in early July of last year, with cybersecurity consultants finishing a review of the breach February 12th and the district…
East Tennessee Children’s Hospital Statement on Security Issue
Published on March 14, 2022 East Tennessee Children’s Hospital has been a victim of an information technology security issue in the evening hours of Sunday, March 13, 2022. Maintaining the safety and security of our patients and their care is our top priority. We are still able to care for our patients. Our cyber forensics teams…
Comprehensive Health Services Pays False Claims Act Settlement Involving EMR Security
Marianne Kolbasuk McGee reports: A healthcare services contractor has agreed to pay a $933,000 settlement in a federal whistleblower case involving alleged false claims by the entity about the security of electronic medical records containing the information of military personnel, diplomats and contractors. The settlement is the first under the Department of Justice’s Civil Cyber-Fraud Initiative,…
Another Technology Management Resources client reports a data breach
PhySynergy has disclosed a vendor breach involving IberiaBank’s lockbox service provider, Technology Management Resources, that may have impacted some of its customers and/or patients. From their press release: HUNTSVILLE, Ala., March 4, 2022 /PRNewswire/ — PhySynergy, LLC (the “Company”) is notifying individuals of a service provider security incident that involved the personal information of some of its patients and/or…
KS: Labette Health discloses October, 2021 data security incident
Labette Health in Kansas has started notifying employees and patients of a data security incident. According to a statement on their website, an investigation determined that unauthorized individual(s) potentially accessed and acquired information from portions of their network between October 15, 2021 and October 24, 2021. It appears that it took them four months from…