Category: Health Data

Is this a HIPAA breach?

Posted on by Dissent

Over on HIPAA Blog, Jeff Drummond poses this question: Is this a HIPAA breach?  A guy had a leg amputated, and the hospital threw the leg in the trash, with the patient’s name written on it.  The cops found it in the landfill and, as you might expect, checked up on the guy, thinking foul play…

Read more

SC: Roper St. Francis Hospital notifying 360 patients about lost flash drive (updated)

Posted on by Dissent

WCSC reports that 360 patients of Roper St. Francis Hospital will be getting a letter about a lost flash drive that contained what a hospital spokesperson described as “limited patient information.” The information may be “limited,” but it still is sensitive: names, ages, diagnoses, and dates of procedures. Hospital officials say a thorough search and investigation was conducted, and…

Read more

Security Advisory – PillPack.com Online Pharmacy

Posted on by Dissent

Yakov Shafranovich found a vulnerability that exposed patients’ prescription histories to others as long as the other(s) had their full name and date of birth: During the signup process, PillPack.com prompts users for their identifying information. In the end of the signup rocess, the user is shown a list of their existing prescriptions in all…

Read more

Ca: Confidential medical records found abandoned

Posted on by Dissent

So HHS discloses a settlement with a pharmacy that did not properly dispose of patient records, and now we hear that a Canadian pharmacy has also failed to dispose of records properly. CTV reports: A discovery inside an apartment building’s recycling bin has one London man fuming, after private medical documents from a nearby pharmacy…

Read more