Becky Bracken reports: A database filled with the medical records of nearly 200,000 U.S. military veterans was exposed online by a vendor working for the Veterans Administration, according to an analyst, who also presented evidence the data might have been exfiltrated by ransomware attackers. The VA for it’s part said that the evidence may point to…
Category: Health Data
It seems we are not yet done hearing about the Netgain Technology breach (with updates)
And another (7/1) CentraCare Health and Carris Health – Willmar Lakeland Clinic (formerly known as Family Practice Medical Center) And another (6/16) Imperial Beach Community Clinic (Health Center Partners of Southern California (“HCP”) And another (6/14) Family Health Centers of San Diego (Health Center Partners of Southern California (“HCP”) And another (6/8) Minnesota Community Care …
PA Health Dept Sued; Investigation Looms, After Contact Tracing Breach
Jessica Davis has the somewhat predictable follow-up to a recently reported breach involving Insight Global, a contact tracing vendor for the Pennsylvania Department of Health: The Pennsylvania Department of Health and its third-party contractor Insight Global have been sued, after reports that its COVID-19 contact tracing app exposed the sensitive data of at least 72,000…
Reported ransomware attack leads to weeks of Aprima EHR outages
This is the kind of news story that people may miss because it was published on a Friday afternoon. But it is one that shouldn’t be missed…. Kat Jercich reports: A reported ransomware attack on the CompuGroup Medical data center partner, MedNetwoRX, has impeded some customers’ access to their Aprima electronic health record systems…
OCR Investigator: Goal Is to Uncover ‘Root Cause,’ Remedy Harm From Violations
If you haven’t read it already, do read Theresa Defino’s excellent report from HCCA Compliance’s Report on Patient Privacy on JDSupra. It may be one of the most interesting — and most frustrating — reports I’ve read about OCR investigations. Why did I find it frustrating, you might wonder? Because of the lack of any…
UK: Hospital medic lost boxes of private patient data while conducting study without approval
Jonathan Humphries reports: A senior medic has been suspended after running a clinical trial using sensitive medical information without permission of his hospital. Miguel Martin Garcia, a band 8 physiotherapist at Liverpool Women’s Hospital, used patient consent forms headed with the trust’s branding and carted off boxes of patient records to a private practice. His decision…