Randy Westergren looked into Christiana Care’s online payment portal, which involves a third party payment processor developed by BYL Companies, LLC. What Randy found was very concerning, and he promptly notified BYL of his findings. You can read his write-up of it all on his site. So here’s the thing: how many people may have actually exploited the vulnerability…
Category: Health Data
NY: Nurse who took pics of patients’ private parts at Syracuse hospital turns in license
James T. Mulder reports a follow-up on a very disturbing patient privacy breach: A nurse who took photos of an unconscious [SUNY] Upstate University Hospital patient’s penis with her smart phone has turned in her nursing license. The state Education Department announced it has approved a request from Kristen Johnson, 27, of Fulton to surrender her…
Ca: Alberta Health Services implements new privacy training following massive fall 2015 breach
Jeremy Simes reports: Following a breach of privacy investigation at a southern Calgary hospital last fall, Alberta Health Services (AHS) has withdrawn or reduced disciplinary action against dozens of hospital employees, though they’re getting personalized training so it doesn’t happen again. The breach involved 48 South Health Campus employees in connection to a Calgary police…
MA: Patient information taken from Northgate Medical Primary Care
David McKay reports that Northgate Medical Primary Care in Springfield, Massachusetts has issued a press release about a HIPAA breach. I haven’t been able to find any copy of it online or on their web site as of the time of this post, however. McKay reports: Northgate said they discovered in January that a former employee had…
MedStar Health hit by virus affecting system
So no sooner do I get done updating the Mercy Iowa City breach that involved a virus infection of their system, then I see that MedStar Health in Washington also suffered a breach due to virus infection. John Cox of Washington Post reported: A virus infected the computer system of MedStar Health on Monday, forcing…
Michigan dentist notifies patients of missing backup drive
On March 4, W. Christopher Bryant DDS P.C. alerted his patients to a potential data security breach that impacted 2,200 patients. On March 15, he posted this letter on his web site: 8285 S. Saginaw Suite 102 Grand Blanc, Michigan 48439 Dear Patients and Friends March 15, 2016 You are receiving this letter because of a recent…