From the European Data Protection Board: The Commissioner for Data Protection and the Freedom of Information Rhineland-Palatinate imposed a fine of 105,000 euros on a hospital in Rhineland-Palatinate. The fine is based on several breaches of the General Data Protection Regulation in the framework of a patient mix-up when admitting the patient. This resulted in…
Category: Health Data
Good news, bad news: Presbyterian Healthcare Services said data stolen in May breach doesn’t appear to have been misused, but more patients impacted
Robert Nott reports: Nearly four months after Presbyterian Healthcare Services reported a data breach that allowed unauthorized access to personal information belonging to over 180,000 patients and health plan members, the provider sent out a notification letter telling its members the company does not believe anyone has improperly used that data. But the update also…
AU: Fears over patient data breach after cyberattack on Monash IVF
Melissa Cunningham reports: One of Australia’s largest IVF providers has warned patients that it could not rule out the possibility their personal information may have been breached following a widespread cyberattack on staff emails last month. Monash IVF Group, which is attached to clinics in six Australian states and territories, said scammers accessed emails, email…
More details emerge on Magellan Healthcare breach
Some breaches dribble out over time, especially when they involve a business associate. This time, it’s Magellan Healthcare, Inc. On September 17, Magellan Healthcare, Inc. notified HHS after an employee of Magellan Rx Management fell prey to a phishing attack in May that was discovered July 5. Analysis of the contents of the employee’s email…
Loudoun Medical Group D/B/A Comprehensive Sleep Care Center notifies patients after employee email account compromise
Loudoun Medical Group d/b/a Comprehensive Sleep Care Center (CSCC) in Virginia issued a press release yesterday. According to their timeline, on or around June 19, they became aware of unusual activity in an employee’s email account. Their investigation subsequently determined that unauthorized access to the one account occurred between June 15 and June 19. The…
IvyRehab reports data security breach after employee email accounts compromised
Update: This incident was subsequently reported to HHS as affecting 125,000 patients. Lee News reports: BLOOMINGTON — Ivy Rehab Physical Therapy, which has locations in Bloomington, Decatur and Clinton, has reported a data security breach and offering free credit monitoring to concerned patients. […] In May, the company discovered some employee email accounts may have…