Category: Health Data

St. Vincent Hospital in Indianapolis is part of St. Vincent Health. A statement uploaded today and linked from the hospital’s homepage says: St.Vincent officials sent letters to approximately 1,100 patients informing them that a laptop connected to an electroencephalogram (EEG) machine and functioning as a medical device was detached and stolen from the hospital on…

From HIMSS: Results of the 2013 HIMSS Security Survey show that, despite progress toward hardened security and use of analytics, more work must be done to mitigate insider threat, such as the inappropriate access of data by employees. Although federal initiatives such as OCR audits, Meaningful Use and the HIPAA Omnibus Rule continue to encourage healthcare organizations…

Rachel King reports: Computer-security researchers have discovered on a website documents that could allow hackers easily to obtain electronic medical records and payment information from health-care providers. The documents—found by two cybersecurity firms on a site commonly used by hackers—detail the type of equipment used in computer networks, the Internet addresses for computers and other…

Marianne Kolbasuk McGee interviewed David Navetta of InformationLawGroup on how covered entities can avoid legal woes related to breaches and the significance of a recent settlement between Kaiser and the California Attorney General’s Office.  You can listen to the interview on HealthcareInfoSecurity.com.  It’s important for covered entities to remember that although HIPAA may allow you…

Steven Slivka of the Las Vegas Review-Journal reported on an OCR complaint last week. According to Slivka, the Nevada Health Services Coalition filed a complaint against Dignity Health, the owner of St. Rose Dominican Hospitals, alleging improper use of patient information.  The caption for the accompanying photo, which appears to be misleading or just erroneous, says, “The…