Here’s yet another ransomware incident in which investigators couldn’t really determine whether ePHI were actually accessed, so the entity notified HHS and is notifying patients. In this case, we are dealing with what could be treatment information for more stigmatizing conditions such as alcoholism or addiction. According to their report to HHS, 25,148 patients are…
Category: Health Data
Independent Health mistakenly emailed information on 7,600 members
Tracey Drury reports: Protected health information on more than 7,600 Independent Health members was accidentally emailed to a member in March, a breach that violates federal privacy laws. The Amherst-based health plan told members that an employee inadvertently emailed documents containing their information on March 19 to an unauthorized recipient who happened to be an…
TX: UMC Physicians Notifies Patients of Compromised Patient Data
Press Release: UMC Physicians (UMCP) is educating employees on approved cloud storage solutions and notifying patients of an incident that may have compromised the privacy of protected health information held by their clinic: UMC Southwest Gastroenterology. UMCP has no evidence of actual or attempted misuse of personal information at this time. On March 12, 2019,…
NY: Episcopal Health Services – Notice of Data Privacy Event
A press release issued today. On September 18, 2018 Episcopal Health Services became aware of suspicious activity in employee email accounts. We immediately began an investigation to determine what happened and what information may have been affected. With the assistance of third-party forensic investigators, we determined that certain employee email accounts were subject to unauthorized access between…
Memorial Hermann worker accused of stealing patients’ credit card numbers to pay rent
Sophia Beausoleil reports: A Memorial Hermann employee has been suspended after he was charged with credit and debit card abuse. He’s accused of stealing patients information to pay for rent, buy food and purchase rides to work. According to Harris County court records, 26-year-old Elliott Phylow admitted to Harris County Precinct Four constables that he…
American Medical Collection Agency breach impacted 200,000 patients – Gemini Advisory
A data breach involving a medical collection agency affected more than 200,000 patients who had used the firm’s online payment portal between September, 2018 and the beginning of March, 2019. At the end of February, Gemini Advisory analysts identified a Card Not Present (CNP) database that had been posted for sale in a dark web…