The University of Massachusetts Amherst (UMass) has agreed to settle potential violations of the Health Insurance Portability and Accountability Act of 1996 (HIPAA) Privacy and Security Rules. The settlement includes a corrective action plan and a monetary payment of $650,000, which is reflective of the fact that the University operated at a financial loss in…
Category: Health Data
Former Owner of Florida Pharmacy Convicted at Trial of $700,000 Medicare Fraud Scheme
More medical identity theft for fraud: The former owner of a Miami based retail pharmacy was convicted, following a three-day trial, for his participation in a scheme that involved the fraudulent submission of approximately $700,000 dollars in false billing to Medicare. Andres Alfonso, 54, of Miami, was convicted of three substantive counts of health care…
Wentworth-Douglass reports insider breach at business associate, Ambucor (UPDATE5)
First it was Carolina Cardiology Consultants disclosing that 2500 of their patients had been affected by a breach at their business associate, Ambucor. Then it was Lebanon Cardiology Associates, PC (now known as WellSpan Cardiology) notifying HHS that 537 of their patients had been affected by Ambucor’s incident. Now it’s Wentworth-Douglass Hospital notifying 775 of their patients of the breach….
Briar Hill Management notifies 2,000 nursing facilities residents of lost laptop
Notice of Privacy Event at Briar Hill Management Briar Hill Management of Ridgeland, Mississippi provides management services for skilled nursing facilities in the State. The company takes resident privacy very seriously and, as part of that commitment, it is notifying all potentially affected residents of a privacy event that may impact personal health information. On…
EXCLUSIVE: Bay Sleep Clinic patients were viewable online during sleep studies
Bay Sleep Clinic (BSC) has more than one dozen locations in California offering sleep medicine diagnostic services. Their site advertises that BSC: Provides monitoring during a complete sleep cycle in our fully equipped, comfortable setting. That monitoring appears to include video monitoring of their patients who, after being wired up to monitors, attempt to sleep in one of their…
More Rehab Billing Solutions clients notify their patients of exposed PHI
Back in September, DataBreaches.net reported on an exposed MongoDB database that had been discovered by MacKeeper security researcher Chris Vickery. The database contained protected health information from tens of thousands of patients seen at dozens of clinics that were clients of EMR4All and Rehab Billing Solutions, companies owned by Todd Jones. Since that report, we have begun…