Associated Press reports: A University of Pittsburgh Medical Center employee has sued the hospital network for credit restoration services and identity theft insurance in the wake of a data breach that has seen hackers use the personal information of hundreds of employees to file bogus federal income tax returns. Alice Patrick, who works at UPMC…
Category: Health Data
Class action lawsuit filed against UPMC over data breach
Update: Ultimate Software Group has denied any responsibility for the UPMC breach and say they don’t think UPMC is even a client. Read more here. Original article: Bob Mayo reports: A class action lawsuit filed in federal court targets both the University of Pittsburgh Medical Center (UPMC) and a payroll software company it uses called…
Cincinnati notifies almost 6,000 employees enrolled in their health plan about a mailing error
One of the breaches added to HHS’s public breach tool this week was an incident involving the City of Cincinnati, who reported that 5,696 individuals were notified of a breach on April 4 involving their business associate, OptumRx. PHIprivacy.net contacted the City of Cincinnati, who sent this statement about the incident: “In April we notified…
Greenwood Leflore Hospital notifies patients whose old x-rays were stolen
Greenwood Leflore Hospital in Greenwood, Mississippi has notified 3,750 patients after five bins of old x-rays with limited patient information was stolen from hospital grounds. From the notice posted on their website: Notice to Patients of X-Ray Films Made in 2007 or Earlier That Were Removed from the Hospital Without Authorization We are providing this…
Four more breaches reported by Baylor Health affiliates (updated)
[Update: The Irving incident affected 2,308 and the McKinney incident affected 1,253. Baylor Health declined to discuss their internal security policies, so we do not know if the doctors were violating any policy by having unencrypted PHI in their email accounts or if Baylor Health permits this.] Original article: After posting the two phishing reports from Baylor…
AHIMA offers data breach toolkit to healthcare providers and suits their action to their advice
Over on HealthITSecurity.com, Patrick Ouellette notes that American Health Information Management Association’s (AHIMA) recently published a Breach Management Toolkit. The tool requires an AHIMA membership, but the Journal of AHIMA detailed what the tool has to offer providers and a sample of required elements within a data breach notification letter. Patrick reports that the toolkit discusses five critical pieces of…