Wil Crisp reports: One member of hospital staff has been sacked and another has been given a written warning for accessing Ed Sheeran’s personal details without authorisation, it has emerged. The singer was admitted to Ipswich Hospital on October 16 last year. Ipswich hospital said both staff members “accessed patient information without legitimate or clinical…
Category: Health Data
Steward Must Convince Jury Doc Fired For HIPAA Violation
Chris Villani reports: Steward Healthcare System LLC will need to convince a jury it fired a psychiatrist for violating the Health Insurance Portability and Accountability Act and not because, as the doctor claims, he took disability leave after getting pneumonia, a Massachusetts federal judge ruled Wednesday in denying part of a summary judgment bid. You…
Los Angeles County 211 exposed call logs with details
Another day, another leak involving sensitive information. From the UpGuard team: The UpGuard Cyber Risk Team can now disclose that sensitive data from the Los Angeles County 211 service, a nonprofit assistance organization described on their website as “the central source for providing information and referrals for all health and human services in LA County,” was…
LifeBridge Health and LifeBridge Potomac Professionals Notify Patients of a Recent Security Incident
From their press release: LifeBridge Health and LifeBridge Potomac Professionals announced today that it is sending letters to patients about a recent security incident involving patient information. On March 18, 2018, LifeBridge Health discovered that malware infected the server that host LifeBridge Potomac Professional’s electronic medical record, and LifeBridge Health’s patient registration and billing systems….
UT physician group improperly shared patient email addresses
Todd Ackerman reports: A clinic owned by the physicians organization of the University of Texas Health Science Center at Houston improperly sent out mass emails containing the email addresses of many of its patients. UT Physicians’ Davis Clinic sent batches of emails, notification of a doctor leaving the clinic, to patients last week. There were…
More than 200,000 patients’ records were exposed on MedEvolve’s public FTP server – researcher
Common sense dictates that patients’ protected health information should not be made freely available on FTP servers that have no login required. And yet it still happens, and has happened again. Recently, this site learned of another FTP server exposing patients’ information. This particular FTP server belongs to MedEvolve, an Arkansas company that provides practice management…