The Detroit Medical Center announced a data breach of health information that involves about 1,500 patients seen at one of its facilities in 2015 and 2016. The health system announced today that a staffing agency contracted by the DMC notified hospital officials that one of the agency’s employees provided the information to unauthorized people who weren’t…
Category: Health Data
Sydney surgeon reprimanded for privacy breach
The Cape Breton Post reports: The Nova Scotia College of Physicians and Surgeons has reprimanded a former Cape Breton vascular surgeon for failing to properly dispose of confidential medical records as he closed his practice in Sydney. Dr. Ronen Jhirad consented to the reprimand and will contribute toward the cost of the college’s investigation. The…
Bupa IPMI notifies customers of insider breach; former employee claimed to have 1million records for sale on dark web
Over on Hot for Security, Graham Cluley beat me to the punch on reporting an insider breach involving Bupa. You can begin by watching Bupa’s public notice, and then read Graham’s report for some more information. Of note, he reports: In all, around 108,000 international health insurance policies are said to be affected. An email…
Ivinson Memorial Hospital notifies patients of FastHealth breach
Another FastHealth client is disclosing the vendor’s malware breach to its patients. Eve Newman reports: More than 500 Ivinson Memorial Hospital patients should receive notices in coming days that their billing and health information might have been compromised because of a security breach involving a hospital website vendor. FastHealth, which provides website services to IMH,…
University of Iowa Health Care notifies 5,292 patients about files exposed online for two years
Public Notice – Patient Information Improperly Disclosed at University of Iowa Health Care On April 29, 2017, University of Iowa Health Care (UIHC) discovered that, in May 2015, a limited set of data containing protected health information of approximately 5,300 patients at University of Iowa Hospitals & Clinics was inadvertently saved in unencrypted files that…
OR: Prineville woman charged in St. Charles Bend data breach
Barney Lerten reports the latest update on an insider-snooping case previously noted on this site: Deschutes County District Attorney John Hummel filed criminal charges Tuesday against a Prineville woman for illegally accessing scores of electronic patient records in the St. Charles Health System. Dawnielle Vaca, 35, while employed as a certified nursing assistant at St….