The Federal Trade Commission charged that the genetic testing firm 1Health.io left sensitive genetic and health data unsecured, deceived consumers about their ability to get their data deleted, and changed its privacy policy retroactively without adequately notifying and obtaining consent from consumers whose data the company had already collected. As part of a proposed settlement with the…
Category: Health Data
16,000 Vermont health insurance customers affected by Fortra/GoAnywhere breach, more than previously known
DataBreaches continues to keep an eye out for reports on how the Fortra/GoAnywhere breach affected the healthcare sector. Here’s another report, this one by Tiffany Tan: The personal information of at least 16,000 Vermont health insurance customers was stolen in a cyberattack in January — more than twice the number originally reported. The affected people…
Healthcare and Public Health Sector Cybersecurity Notification: #TimisoaraHackerTeam Analysis
June 16 – #TimisoaraHackerTeam Analysis TLP: Clear
Canada: PRHC reaches $988K proposed settlement for patient privacy breaches in 2011-2012
Greg Davis reports an update to a breach case that DataBreaches has been covering since 2012. For previous coverage, search this site for “Peterborough Regional.” A proposed settlement of $988,550 has been reached in a class-action lawsuit relating to patient health records being wrongfully accessed by former employees at the Peterborough Regional Health Centre more than a…
Snooping in Medical Records by Hospital Security Guards Leads to $240,000 HIPAA Settlement
Today, the U.S. Department of Health and Human Services’ Office for Civil Rights (OCR) announced a settlement with Yakima Valley Memorial Hospital, a not-for-profit community hospital located in Yakima, Washington resolving an investigation under the Health Insurance Portability and Accountability Act of 1996 (HIPAA). OCR investigated allegations that several security guards from Yakima Valley Memorial…
Cyberattack is a factor in Illinois hospital’s closure
Sean Lyngaas reports: A hospital in Illinois will close on Friday due in part to a cyberattack – a rare case of a health care provider publicly linking a hack incident to its closure. The 2021 cyberattack on St. Margaret’s Health, a hospital in Spring Valley, Illinois, hobbled computer systems for months and prevented it…