A press release issued today. On September 18, 2018 Episcopal Health Services became aware of suspicious activity in employee email accounts. We immediately began an investigation to determine what happened and what information may have been affected. With the assistance of third-party forensic investigators, we determined that certain employee email accounts were subject to unauthorized access between…
Category: Health Data
Memorial Hermann worker accused of stealing patients’ credit card numbers to pay rent
Sophia Beausoleil reports: A Memorial Hermann employee has been suspended after he was charged with credit and debit card abuse. He’s accused of stealing patients information to pay for rent, buy food and purchase rides to work. According to Harris County court records, 26-year-old Elliott Phylow admitted to Harris County Precinct Four constables that he…
American Medical Collection Agency breach impacted 200,000 patients – Gemini Advisory
A data breach involving a medical collection agency affected more than 200,000 patients who had used the firm’s online payment portal between September, 2018 and the beginning of March, 2019. At the end of February, Gemini Advisory analysts identified a Card Not Present (CNP) database that had been posted for sale in a dark web…
Member of Sophisticated China-Based Hacking Group Indicted for Series of Computer Intrusions, Including 2015 Data Breach of Health Insurer Anthem Inc. Affecting Over 78 Million People
More than four years from hack to indictment. How many more until they actually have the alleged hackers in custody? From the U.S. Department of Justice, this press release today: A federal grand jury returned an indictment unsealed today in Indianapolis, Indiana, charging a Chinese national as part of an extremely sophisticated hacking group operating…
Lest we forget physical security, too
It’s easy to lose interest in low-tech data theft or compromise when we have topics like ransomware and extortion to consider. But physical security of paper records is still something that cannot be taken too casually, as this notice from Bloodworks Northwest reminds us. Was the document stolen or did it just get thrown out…
Spectrum Health Lakeland notifies patients after billing vendor breach
I’m not finding anything on their web site just yet, but Spectrum Health Lakeland has reportedly been notifying patients about a breach involving their billing provider, OS Inc. WSJM reports that the health system learned of the breach on March 8 after an OS employee’s email account containing patient information was accessed without authorization. The information…