Naseem S. Miller reports: Family Physicians Group, a large practice in Orlando that was recently acquired by Humana, is notifying more than 8,000 patients about a privacy breach that may have compromised their personal health information. The breach occurred due to a phishing attack on an employee’s email account, the company said in a news release…
Category: Health Data
Blue Cross: Theft of employee’s computer may have compromised 15,000 customers’ data
Dave Bartkowiak Jr. reports: Blue Cross Blue Shield of Michigan announced Friday that the personal data of nearly 15,000 of Medicare Advantage members may have been compromised after an employee’s laptop computer was stolen in October. Blue Cross said it was notified on Nov. 12, 2018 by COBX, a subsidiary company vendor serving Medicare Advantage business for them, that…
Four months after disclosing breach, Adams County, Wisconsin notifies HHS
Adams County, WI disclosed a breach in August that affected 258,000 and may have been an insider breach. But they only notified HHS/OCR of that breach a few weeks ago. I wonder why. There’s nothing on their site to explain the late notification.
After nearly five years lawsuit against Flowers Hospital is over
WTVY reports that lawsuit stemming from an insider breach that was part of a tax refund fraud scheme has settled: A federal lawsuit claiming a Dothan hospital’s negligence resulted in the theft of patients’ personal information has been dismissed. Attorneys agreed to a settlement and a judge approved it. The settlement calls for Flowers Hospital…
Breaches have (advertising cost) consequences for hospitals
The following is the abstract of an observational study published on The American Journal of Managed Care. The TL;DR version seems to be that if entities were to spend more proactively on security, they might not have to pay about 64% more annually in advertising costs over the next two years following a breach. Understanding…
LifeBridge sued over 2016 breach
Remember the LifeBridge malware incident disclosed earlier this year where more than 500,000 patients were notified of a malware incident that had been discovered in March, 2018? LifeBridge’s notification indicated that their investigation had revealed that an unauthorized person had accessed the server in 2016. It wasn’t totally clear to me at the time whether…