First, a quick update on the Athens Orthopedic Clinic breach: It took two requests, but I’m pleased to report that Pastebin removed three pastes with over 1,350 patients’ information. Those pastes were separate from an earlier paste with an additional 500 patients’ information. News outlets that continue to report that 500 patients’ information was exposed and put up for sale are, to…
Category: U.S.
Director at Citizens in Ohio Resigns Over Email Server Dispute
Joseph Kellard reports: A director at Citizens Independent Bancorp in Logan, Ohio, resigned after members of management chastised him for an email security breach. The $181 million-asset company said in a filing with the Securities and Exchange Commission that Michael Shawd resigned Aug. 18 as one of nine directors of the company and Citizens Bank of…
When is a PHI breach reported to HHS not a breach of PHI?
Back in March, this site reported on an incident disclosed by the Eye Institute of Corpus Christi. The incident involved individuals copying the patient database and providing it to doctors formerly associated with the entity. The doctors then allegedly used the information to recruit patients to their practice. It was not clear from the notification…
OCR closes investigation of Bizmatics, Inc. breach
In doing some of my weekly investigating, I discovered that OCR seems to have closed its investigation into the Bizmatics, Inc. breach that affected an untold number of PrognoCIS customers and their patients. At last count, I think we knew about almost 300,000 patients that were notified of an incident where Bizmatics could not even…
Details emerge on Cefalu Eye-Tech of Green breach
As much as I try to find or obtain details on breaches in a timely fashion, it’s not always possible. For example, this month, there are several entities who reported breaches to HHS but have not responded to email and/or phone requests from this site for explanations of their incidents. But now we finally have…
Dropbox: Resetting passwords to keep your files safe
It looks like Dropbox had a late discovery on scope of a previously reported breach. From their blog yesterday: If you signed up for Dropbox prior to mid-2012 and haven’t changed your password since, you’ll be prompted to update it the next time you sign in. We’re doing this purely as a preventive measure, and there is…