WTVY reports that lawsuit stemming from an insider breach that was part of a tax refund fraud scheme has settled: A federal lawsuit claiming a Dothan hospital’s negligence resulted in the theft of patients’ personal information has been dismissed. Attorneys agreed to a settlement and a judge approved it. The settlement calls for Flowers Hospital…
Category: Health Data
Breaches have (advertising cost) consequences for hospitals
The following is the abstract of an observational study published on The American Journal of Managed Care. The TL;DR version seems to be that if entities were to spend more proactively on security, they might not have to pay about 64% more annually in advertising costs over the next two years following a breach. Understanding…
LifeBridge sued over 2016 breach
Remember the LifeBridge malware incident disclosed earlier this year where more than 500,000 patients were notified of a malware incident that had been discovered in March, 2018? LifeBridge’s notification indicated that their investigation had revealed that an unauthorized person had accessed the server in 2016. It wasn’t totally clear to me at the time whether…
MA: McLean Hospital to Implement New Security and Training Programs After Data Breach Exposed Sensitive Health Information
There’s a follow-up to a 2015 breach that was previously reported on this blog. Massachusetts Attorney General Maura Healey made the announcement yesterday: BOSTON — McLean Hospital Corporation will implement new security and training programs and pay a total of $75,000 to resolve claims that it exposed the personal and health information of more than 1,500 people, Attorney General Maura Healey announced today. According…
MO: Use BJC’s patient portal to pay your bills? Company announces possible malware breach.
Hana Muslic reports: At least 5,850 people have been alerted about a possible breach of credit card information through Barnes-Jewish Company HealthCare’s online payment portal. On Nov. 19, BJC learned information submitted through the portal could have been intercepted through the use of a malicious computer software that had been installed on their website, a…
University of Vermont Health Network – Elizabethtown Community Hospital notifies 32,000 patients after employee’s email account was accessed without authorization.
The University of Vermont Health Network – Elizabethtown Community Hospital takes seriously the privacy and confidentiality of our patients’ information. Regrettably, this notice is regarding an incident involving some of that information. We are notifying individuals potentially affected by a recent data security incident in which, for a brief period of time, an employee’s email…