Log Cabin Democrat reports: On Nov. 29, 2021, UAMS became aware that a former employee sent emails from her UAMS email to her personal Gmail account with patient information attached on November 15, 2021, while still employed with UAMS. The attachments consisted of Excel spreadsheets used for internal billing compliance auditing purposes and/or billing statements…
Category: U.S.
Revised Health Breach Notification Rule resources spell out companies’ legal obligations
Lesley Fair writes: Shoppers can find a plethora of apps, trackers, and sensors that hold or capture almost every conceivable form of personal health information. If your business or nonprofit offers products like that or provides certain services to entities that do – and you aren’t subject to HIPAA – you may be covered by…
NYU Langone notified 1,123 patients of privacy issue due to mailing vendor error
NYU Langone Health notified patients the week of January 4, 2022, about a potential privacy incident resulting in misdirected, limited patient information. The incident occurred on or about November 12, 2021, when a communication was sent via U.S. mail to inform patients of a planned relocation of an NYU Langone Health oncology surgeon originally based…
GA: Peachtree Orthopaedic Clinic reports breach to HHS
It appears that Peachtree Orthopaedic Clinic in Georgia reported a breach to HHS on January 3 that impacted 53,686 patients. They reported the breach as “hacking — other.” There is nothing on their website at this time to explain the incident and so far, I have found no press release. The only additional information at…
Two covered entities who discovered breaches last summer first notifying patients
Two breaches that were first reported to HHS in November have now been more fully disclosed. Both of the following breaches were first reported to HHS in November as impacting 500 or 501 patients — entries that this site usually suspects are just “markers” for “we have no idea yet how many were impacted.” Anne…
CA: Chico State computer hacker sentenced
Chloe Curtis reports on an insider breach that exposed students’ personal information and requests for COVID vaccination exemptions: A 22-year-old Chico man was sentenced to probation, fines and community service after admitting to illegally hacking multiple computers at Chico State. Alejandro Benitez appeared in Butte County Superior Court on Thursday where he entered a plea…