On March 18, attorneys for Summit Health, Inc. in Pennsylvania notified the Maryland Attorney General’s Office that on February 19, the hospital had learned that some of its employees had fallen for a phishing attempt. As a result of the successful phishing, employees’ information in the Lawson Employee Self-Service System, used to access payroll and benefits information, may…
Category: U.S.
Oops – don’t forget to scrub those drivers license images!
On March 20, 2015, attorneys for the Central Dauphin School District in Pennsylvania notified the Maryland Attorney General’s Office of a breach involving visitors’ drivers license images. The district has a security system that involves scanning visitors’ drivers licenses when they enter the administration building. The laptop that stored those images, which was provided by…
FL: Orlando Health patient information allegedly found in neighborhood driveway
WFTV reports that Orlando Health has been sending out letters to some patients whose protected health information was disclosed when a patient list was found in a driveway. Henderson said the letter stated the patient list contained names, medical record numbers, account numbers and even diagnoses. It goes on to say it appears the list was…
Illinois AG sues records storage company FileFax for dumping thousands of Suburban Lung Associates’ patients’ records
There’s a follow-up to a breach that was first disclosed by CBS in Chicago in February. The incident, involving patients of Suburban Lung Associates, was reported to HHS in April as affecting 2,984 patients. The following is the press release from Attorney General Lisa Madigan’s office: Chicago — Attorney General Lisa Madigan today filed a lawsuit against…
MI: FireKeepers Casino investigating possible data security breach
Lansing State Journal reports: FireKeepers Casino Hotel is investigating a possible data security incident involving the casino’s point of sale system, Vice President of Marketing Jim Wise said Wednesday. Wise said the investigation comes after the casino recently received “a couple of calls” from guests indicating concern about their bank or credit card statements. Wise…
SC: Roper St. Francis Hospital notifying 360 patients about lost flash drive (updated)
WCSC reports that 360 patients of Roper St. Francis Hospital will be getting a letter about a lost flash drive that contained what a hospital spokesperson described as “limited patient information.” The information may be “limited,” but it still is sensitive: names, ages, diagnoses, and dates of procedures. Hospital officials say a thorough search and investigation was conducted, and…