In May 2020, DataBreaches noted that BJC Healthcare in Missouri was alerting patients to a data breach. The breach had first been discovered on March 6, shortly after three employee email accounts were compromised. At the time of notification, BJC Healthcare reported that investigators were unable to determine if any emails or attachments had actually…
Category: Health Data
This post provides substitute breach notification to one patient Oregon Health & Science University could not otherwise directly notify
Federal regulations requjire substitute notice when notification by postal mail or other direct means cannot be made, but I cannot recall ever seeing a substitute notice that announced it was only being made for one particular patient. The following was published by the Oregon Health & Science University: On May 16, 2022, a computer belonging…
Treating Healthcare’s Insider Threat
Gabriel Avner writes: There’s an old joke about why bank robbers rob banks. Because that’s where the money is. Given the valuable assets under their care, banks, fintech, insurance, and other financial institutions have understood that they have to take special care to avoid data breaches and other threats. But if the past week’s steady…
Baton Rouge General Medical Center ransomware attack has caused patients to be diverted to other hospitals, lost records, and lab services down — source
By July 1, word was circulating that the Baton Rouge General Medical Center in Louisiana had been hit by ransomware. A copy of the ransom note shared with DataBreaches pointed clearly to the Hive group, but when asked about it, Hive’s spokesperson claimed that DataBreaches had “incorrect info.” Since then, the medical center has not…
Oklahoma State University – Center for Health Services Pays $875,000 to Settle Hacking Breach
There’s an update to a breach previously reported on this site in 2018. From HHS: Oklahoma State University – Center for Health Sciences (OSU-CHS) has paid $875,000 to the Office for Civil Rights (OCR) at the U.S. Department of Health and Human Services (HHS) and agreed to implement a corrective action plan to settle potential…
Long Island Man Convicted of over $600 Million Health Care Fraud, Wire Fraud and Identity Theft Scheme
July 13, 2022 — Earlier today, a federal jury in Central Islip returned a guilty verdict on eight counts of a superseding indictment charging Mathew James with perpetrating an over $600 million health care fraud scheme, which also included wire fraud and aggravated identity theft charges. The verdict followed a six-week trial before United States…