As part of my research collaboration with Protenus for their Breach Barometer reports, I spend time every week reaching out to entities to ask them for details about incidents if I cannot find any notice on their site or a state attorney general’s site. Most entities respond with the requested information or a copy of…
Category: Health Data
New Haven Health Department failed to terminate former employee’s access to protected health information
The City of New Haven, Connecticut (New Haven) has agreed to pay $202,400 to the Office for Civil Rights (OCR) at the U.S. Department of Health and Human Services (HHS) and to implement a corrective action plan to settle potential violations of the Health Insurance Portability and Accountability Act (HIPAA) Privacy and Security Rules. The…
Statement from Universal Health Services
Updated Thursday, October 29, 2020, 4:30 pm ET — As previously disclosed on September 29, 2020, we experienced an information technology security incident in the early morning hours of September 27, 2020. As a result of this cyberattack, we suspended user access to our information technology applications related to operations located in the United States. While…
Cyberattack causes ‘significant’ UVM Health Network technology outage
AP and NBC report from Vermont: The University of Vermont Health Network is experiencing a systemwide network disruption following a cyberattack Wednesday. Six hospitals throughout Vermont and northern New York are being affected by a “significant and ongoing system-wide network issue,” said spokesperson Neal Goswami. The group has not confirmed an exact timeline for restoring…
Data breach involving personal information reported at Rady Children’s Hospital
Dillon Davis reports Rady Children’s Hospital has disclosed that some patient data was impacted by the Blackbaud ransomware incident earlier this year: Those files contained personal information including names, addresses, physicians, department of service, procedure name and date of births, the hospital said. Read more on FOX5. The hospital did not disclose the number of…
Dozens of patient records dumped in St. Louis industrial area
Erin Richey reports that someone found boxes of patient records belonging to DaVita Florissant Dialysis on West Florissant Avenue. “Found names, Social Security numbers, addresses, lab reports, entire medical history of people and personal information,” he said. “ Read more on KSDK. According to the report, because Missouri does not regulate dialysis clinics, the state department…