WRAL reports that the North Carolina Department of Health & Human Services has had a second breach involving hundreds of Medicaid patients. It was the second time in as many months that an employee error involving unencrypted e-mail resulted in exposure of patient information. This time, the breach reportedly affected 524 patients. Officials said they have installed…
Category: Exposure
NJ: Personal records left unprotected at shuttered Brisbane center
Mike Davis reports: Inside the former Arthur Brisbane Child Treatment Center sat piles of cardboard boxes, turning the former psychiatric hospital into a makeshift storage facility. The files contained within run the gamut of both state employees and Brisbane patients, including personal information such as social security numbers, medical history and banking information. The only problem? The…
Illinois data breach: Dept. of Insurance posts personal information on public website
Marcia Lense reports: The Illinois Department of Insurance announced an inadvertent data release, that exposed critical personal information. According to a news release, the department received a complaint that Social Security numbers from a health care provider could be seen. The department says it had sent filings from Blue Cross Blue Shield to the System…
UK: Probe into data breach at Telford & Wrekin Council as it sends out 222 letters revealing personal details
The Shropshire Star reports: The error, which saw 222 incorrectly printed letters sent to homes in the borough, was in breach of data rules, the authority has admitted. Council chiefs today apologised for the blunder, which they said was down to human error. A disabled woman in her 60s, who lives in Telford but does…
More than 1,000 Spotify email addresses and passwords leaked. Spotify denies any breach of their system/
Seung Lee reports: Over one thousand email addresses and passwords from the music streaming app Spotify were leaked following a hack attack last week, according to multiple victims who confirmed with Newsweek. Newsweek verified the details of the hack with nine individuals whose email addresses were posted publicly on November 2. One victim claimed he was locked out of his account for…
U. of Cincinnati Medical Center not liable for employee’s Facebook post on a patient’s STD (updated)
Kevin Grasha has an update on a breach previously noted on this site. University of Cincinnati Medical Center can’t be sued after an employee leaked private medical records about a patient who had syphilis, a judge ruled Monday. The patient, a woman in her early 20s, filed the lawsuit last year. A screen shot of the…