Andrew Weichel reports: The B.C.-based laboratory testing company that was targeted in a cyberattack last fall is trying to keep the province’s privacy commissioner from accessing a third-party report on the breach. In a petition filed this month in B.C. Supreme Court, LifeLabs argued it shouldn’t have to turn over a report prepared by cybersecurity…
Category: Health Data
UK: Rotherwood Healthcare AWS bucket security fail left elderly patients’ DNR choices freely readable online
Gareth Corfield reports: A leak of 10,000 records at a Leicestershire care home provider exposed elderly patients’ wishes not to be resuscitated, detailed care plans and precisely how much councils paid for individual patients’ care. Not only did Rotherwood Care Group, trading as Rotherwood Healthcare, leave an Amazon Web Services S3 bucket accessible to everyone…
UK: Concerns after patient information stolen from doctor’s car
Maia Snow reports: Concerns have been expressed after documents containing patient information was stolen from a doctor’s car in the north of the county. The Castle Medical Group, in Burton Road, Ashby, has revealed that on the evening of Monday February 24 items were stolen from a doctor’s car. Among the stolen items was paperwork containing…
Munson Healthcare notifies patients after discovering compromised employee email accounts contained PHI employee email accounts compromised
Munson Healthcare in Michigan has published notice of a data breach: Munson Healthcare became aware of a recent data security incident where certain employee email accounts were accessed by an unauthorized third-party. Upon learning of this issue, Munson Healthcare commenced a prompt and thorough investigation, working closely with external cybersecurity professionals. After an extensive forensic…
Tennessee Orthopaedic Alliance notifies more than 81,000 patients after discovering two employee email accounts had been compromised
Tennessee Orthopaedic Alliance (TOA) recently notified more than 81,000 patients after an unknown party gained access to an employee’s email account. TOA first detected unusual activity in the account on October 18, 2019. A forensic investigation determined that data containing former and current patients’ personal or protected health information contained within two email accounts may…
Medical Records From Shuttered Mental Health Clinic Found Dumped In West Englewood Alley
Tara Molina reports: Hundreds of pieces of paper containing people’s most sensitive information were found dumped in an alley. The papers were mental health records from a South Side center that closed years ago. CBS 2’s Tara Molina worked Tuesday to determine how they ended up on the street. […] We found the documents are…