Keith Gerein reports: A former employee of Alberta Hospital Edmonton inappropriately accessed the records of more than 1,300 patients, Alberta Health Services announced Monday in what is believed to be the province’s largest deliberate breach of health information. “In terms of a unique individual inappropriately accessing health care records, it is not within the scope…
Category: Health Data
Newest OCR settlement highlights need to review and update Business Associate Agreements
A newly announced settlement between HHS OCR and Care New England reinforces what DataBreaches.net and Protenus, Inc. have been trying to remind everyone of this week: pay more attention to your business associate agreements and do so regularly. Care New England Health System (CNE), on behalf of each of the covered entities under its common ownership…
CT: Hospital Patients Caught in Identity Theft Ring
NBC reports: Federal investigators say two women orchestrated an identity theft ring that targeted at least 20 people in the greater New Haven area. But it’s how suspects Jamila Williams-Stevenson and Loretta Coburn are said to have gotten some of their victim’s personal information that is most shocking. Authorities said several of the alleged victims…
Napa Valley Dentistry notifies patients after theft of server from storage facility
A dental practice that purchased another dentist’s practice in 2012 finds itself having to notify their patients and his former patients after the theft of a server from a storage facility. In a letter to their patients and those of Dr. Justin Quinn, Dr. Justin Newberry of Napa Valley Dentistry states that on August 11, they discovered that a password-protected…
Dozens of clinics, thousands of patients impacted by third-party data leak
EMR4all, Inc. was a California business providing free EMR software to physical therapy, speech therapy, and occupational therapy practices that used their associated patient billing service, Rehab Billing Solutions (RBS). Over the summer, they began shutting down operations and notifying their clients of their closure. Their effort to make a graceful exit wound up marred by a data…
Keck Medical Center of USC discloses ransomware attack
Keck Medical Center of USC is notifying patients of a ransomware attack that they discovered on August 1. The ransomware affected two servers that did not contain EMR but that did contain internal documents that included demographic information, date of birth, health information including treatment and diagnosis, and in some cases, Social Security numbers. Other files…