There’s an update to an insider breach previously reported on this site. From the U.S. Attorney’s Office for the Middle District of Florida on May 19: Ocala, Florida – Senior U.S. District Judge James D. Whittemore today sentenced Stacey Lavette Hendricks (49, Leesburg) to 48 months in federal prison for aggravated identity theft and wire…
Category: Health Data
(UPDATED) Cyber attack on the San Raffaele hospital in Milan
Marco A. De Felice (@amvinfe on Twitter) reports: In the midst of the COVID19 emergency, the San Raffaele hospital in Milan was the victim of a computer attack. Steal the personal data of patients, doctors, nurses and employees. Names, tax codes, email accounts and passwords stolen during a cyber attack that took place between March and April. Anonymous…
Ontario: North Bay Parry Sound District Health Unit Announces Privacy Breach
The following is their notice: NORTH BAY, ON – The North Bay Parry Sound District Health Unit (“Health Unit”) announced today that there was a privacy breach in relation to its online COVID-19 dashboard. The dashboard contained information related to the number of COVID-19 tests and confirmed cases in the local community. Inadvertently, personal identifying…
PA: Ex-Geisinger employee accessed hundreds of patients’ info improperly
From their notice of May 18: WILKES-BARRE, Pa. – Geisinger Wyoming Valley Medical Center has notified certain patients that their protected health information (PHI) may have been accessed by an individual employee in a non-permitted manner. On March 20, 2020, Geisinger’s Privacy Office was alerted to a Geisinger Wyoming Valley employee possibly accessing medical records without…
AU: My Health Record system hit by hack attempt
Justin Hendry reports: The My Health Record system was the subject of an attempted hack over the past 11 months, the Australian Digital Health Agency has revealed. National health chief information officer Ronan O’Connor told a parliamentary inquiry into cyber resilience the cyber incident was one of two “potential data breaches” to occur since July…
PsyGenics notifies patients after discovering employee emailed patient info to her personal email account
Michigan-based PsyGenics, Inc. provides holistic mental health services to individuals diagnosed with intellectual and developmental disabilities. On March 25, during a routine security review, they discovered that an employee had emailed files to her personal email account on March 24 — and the spreadsheet contained patients protected health information: name, diagnosis code, appointment time, and…