Here’s a good example of how monitoring and logs can detect a problem and prevent even more problems. Michigan Medicine detected an employee accessing patient records without legitimate need. The improper access began in December, 2021, and continued until it was caught by monitoring on January 25, 2022. Access was cut off on January 27…
Category: Health Data
UK: Tens of thousands of NHS patients’ private medical information leaked in shocking data breach
Michael Powell reports: Private medical information about tens of thousands of NHS patients has been leaked in a shocking data breach, The Mail on Sunday can reveal. The confidential files include hospital appointment letters for women who have suffered miscarriages, test results of cervical screening and letters to parents of children needing urgent surgery at Alder…
NC: Charlotte Radiology notifies patients of December security incident
Joe Marusak reports: A prominent Charlotte medical services provider experienced a recent weeklong data breach in which some patient information was stolen, “including a very limited number of patients’ Social Security numbers,” company officials said Friday. In a statement, Charlotte Radiology officials said they found no evidence of “fraud or misuse” as a result of…
Sea Mar Community Health Centers Hit with Class Action Suits Over 2021 Data Breach
Kendal Enz reports: Sea Mar Community Health Centers is facing numerous class action complaints for alleged inadequate cyber security procedures that resulted in a data breach of more than 650,000 class members’ sensitive information. The complaints, which were filed in November 2021 in King County Superior Court, were removed to Washington’s Western District Court this…
NY: Nassau notifies 209 workers their confidential personal data may have been breached by employees
Scott Eidler reports: Nassau officials have notified more than 200 current and former employees in the Assessment Department their confidential personal data may have been breached after some co-workers last year gained unauthorized access to human resources information about department workers. In a letter Thursday to Nassau County Executive Bruce Blakeman and county legislators, Technology…
2021 Saw Sharp Increase in Ransomware Data Leaks and Ransom Demands
HIPAA Journal has a piece highlighting some findings from Crowdstrike’s 2021 report. It begins: CrowdStrike has released its annual threat report which shows there was a major increase in data leaks following ransomware attacks in 2021, rising 82% from 2020. CrowdStrike observed 2,686 ransomware attacks in 2021 compared to 1,474 in 2020. There were more…