Logan Health Medical Center in Montana is notifying 213, 543 patients, employees, and business associates after discovering that files with personal and protected health information were accessed without authorization. According to a notification submitted to the Maine Attorney General’s Office, Logan first detected suspicious network behavior on November 22, 2021. On January 5, their investigation…
Category: Health Data
Boston law firm Taylor, Ganson & Perrin notifies clients of data breach
One month after first detecting a problem, Boston law firm Taylor, Ganson & Perrin LLP is providing notice of a data security breach. Like many law firms who have experienced breaches, clients’ medical information and what might be protected health information may have been accessed or acquired by the unnamed threat actor(s), but whether it…
One year later, Minimally Invasive Surgery of Hawaii notifies patients of ransomware incident
A notification letter template that showed up on the California Attorney General’s site this week is dated “February 19, 2021.” I assume the 2021 is a typo based on the rest of the letter. The letter from Orthopedic Associates of Hawaii (OAH) begins (emphasis added by this site): Orthopedic Associates of Hawaii, All Access Ortho…
Sg: Ex-deputy lead of MOH data unit jailed for leaking daily Covid-19 case numbers in 2020
Low Youjin reports from Singapore: Despite having signed an undertaking to safeguard official information, a former deputy lead from a data management unit of the Ministry of Health (MOH) chose to leak classified Covid-19 information to members of a chat group on multiple occasions before it was officially announced to the public. Zhao Zheng’s attitude towards…
Ie: Mother seeking compensation from HSE over data breach involving report into treatment of toddler at hospital
Independent.ie reports: A report compiled by the HSE in response to a complaint about the treatment given to a 19-month-old patient found its way into the wrong hands, Wexford Circuit Court was told. The result was a case taken on behalf of the now three-year-old girl from County Wexford seeking compensation for the breach of…
Michigan Medicine notifies 269 patients after discovering a snooping employee
Here’s a good example of how monitoring and logs can detect a problem and prevent even more problems. Michigan Medicine detected an employee accessing patient records without legitimate need. The improper access began in December, 2021, and continued until it was caught by monitoring on January 25, 2022. Access was cut off on January 27…