Dave Bartkowiak Jr. reports: Blue Cross Blue Shield of Michigan announced Friday that the personal data of nearly 15,000 of Medicare Advantage members may have been compromised after an employee’s laptop computer was stolen in October. Blue Cross said it was notified on Nov. 12, 2018 by COBX, a subsidiary company vendor serving Medicare Advantage business for them, that…
Category: Health Data
Four months after disclosing breach, Adams County, Wisconsin notifies HHS
Adams County, WI disclosed a breach in August that affected 258,000 and may have been an insider breach. But they only notified HHS/OCR of that breach a few weeks ago. I wonder why. There’s nothing on their site to explain the late notification.
After nearly five years lawsuit against Flowers Hospital is over
WTVY reports that lawsuit stemming from an insider breach that was part of a tax refund fraud scheme has settled: A federal lawsuit claiming a Dothan hospital’s negligence resulted in the theft of patients’ personal information has been dismissed. Attorneys agreed to a settlement and a judge approved it. The settlement calls for Flowers Hospital…
Breaches have (advertising cost) consequences for hospitals
The following is the abstract of an observational study published on The American Journal of Managed Care. The TL;DR version seems to be that if entities were to spend more proactively on security, they might not have to pay about 64% more annually in advertising costs over the next two years following a breach. Understanding…
LifeBridge sued over 2016 breach
Remember the LifeBridge malware incident disclosed earlier this year where more than 500,000 patients were notified of a malware incident that had been discovered in March, 2018? LifeBridge’s notification indicated that their investigation had revealed that an unauthorized person had accessed the server in 2016. It wasn’t totally clear to me at the time whether…
MA: McLean Hospital to Implement New Security and Training Programs After Data Breach Exposed Sensitive Health Information
There’s a follow-up to a 2015 breach that was previously reported on this blog. Massachusetts Attorney General Maura Healey made the announcement yesterday: BOSTON — McLean Hospital Corporation will implement new security and training programs and pay a total of $75,000 to resolve claims that it exposed the personal and health information of more than 1,500 people, Attorney General Maura Healey announced today. According…