As it has done in past months, Protenus has compiled a monthly report on health data breaches in the U.S. that were disclosed during October. Their analyses are based on data and information provided by this site and blogger. Of special note: in the past two months, we have now learned of two incidents affecting at…
Category: Health Data
NHS patients being put ‘at risk’ because of cybersecurity flaws
Tom Cheshire reports: A Sky News investigation has discovered the NHS trusts putting patients at risk by not protecting their data online. Seven NHS trusts, serving more than two million people, spent nothing on cybersecurity in 2015. Sky News worked with security experts to find serious flaws in their cybersecurity, which could be easily exploited by…
Follow-up: Investigation Confirms No Patient or Employee Information Compromised in Cyberattack on Appalachian Regional Health system
ARH has issued an update to its report of a ransomware attack that occurred in August: After a thorough investigation into the late August cyberattack on the Appalachian Regional Healthcare (ARH) system, findings from independent computer forensic experts as well as federal authorities have determined that no ARH patient or employee health or financial information…
Emblem Health notifies GHI members whose SSN was exposed in mailing labels
Group Health Incorporated (GHI), an Emblem Health company, is notifying members of a breach due to exposure of PHI on mailing labels. The mailing error occurred between October 3 and October 14, and was discovered on October 13. They explain: Earlier this month, GHI mailed you a copy of your Medicare Prescription Drug Plan Evidence of…
Horizon says privacy breach could affect up to 170K N.J. customers
Susan K. Livio reports that a vendor error has affected as many as 170,000 BCBS members in New Jersey: Some benefit letters mailed to as many as 170,000 Horizon Blue Cross Blue Shield of New Jersey customers over a recent three-day period included the names, policy numbers and the physician information of other policy holders — a…
Woman accuses CAMC of confidentiality breach with infant’s information
Kyla Asbury reports: A woman is suing Charleston Area Medical Center after she claims it breached its duty of confidentiality and provided her infant’s private medical information to a third party. In late 2014, Z.D. was a patient in the Neonatal Intensive Care Unit at CAMC and Andrekia Lawton was informed by an acquaintance of…