AP reports: Aetna will pay $935,000 after one of its vendors sent letters to California patients that revealed via a window on the envelopes that the recipients were taking HIV-related medications, officials said Wednesday. The settlement resolves allegations that Aetna violated state health privacy laws, California Attorney General Xavier Becerra said. Nearly 2,000 Californians —…
Category: U.S.
Palisades Park officials say nearly $500,000 is missing from its accounts in bank breach
Kristie Cattafi reports: Officials in Palisades Park were notified last week that nearly half a million dollars had been drained from its accounts at Mariner’s Bank, the borough’s mayor and business administrator said Wednesday. Mariner’s Bank, which is based in Edgewater and has seven locations in Bergen County, told the officials that $460,000 was missing…
NJ: Addictions Recovery Provider Integrity House Notifies Individuals of Burglary of Device with PHI
From their notification: NEWARK, NEW JERSEY – January 18, 2019 – Integrity House has become aware of a potential data security incident that may have resulted in unauthorized access to personal information, including Social Security numbers and limited health information. Although at this time there is no evidence of any attempted or actual misuse of…
Verity Health System of California, Inc. and Verity Medical Foundation Notify Individuals and Regulatory Bodies of Data Security Incident
From their public notification: [El Segundo, CA, January 25, 2019] – Although there is no evidence of the unauthorized access or use of individual health or personal information, Verity Health System of California, Inc. and Verity Medical Foundation (collectively “Verity”) are notifying potentially affected individuals that some of their personal information may have been accessed…
Judge Denies Yahoo Privacy Data Breach Settlement
Matthew Renda reports: A federal judge denied approval of a settlement in the Yahoo data breach class action on Monday, saying Yahoo’s refusal to disclose the total amount to be paid out to those affected by the largest data breach in history renders it insufficient. “The proposed notice does not disclose the costs of credit…
CO: Critical Care, Pulmonary & Sleep Associates notifies almost 24,000 patients after hack of employee email accounts
Critical Care, Pulmonary & Sleep Associates in Colorado has notified 23,377 patients of a privacy incident. Their on-site notice offers a useful reminder that while bad actors may be seeking to engage in financial theft or fraud, when files with ePHI are connected to employee email accounts, patients and HHS may wind up needing to be…