One of the reasons DataBreaches.net has never confined its reporting and analyses to HIPAA-covered entities is that there are so many other types of entities that collect and store health or medical information. Today’s example comes from the National Capital Poison Center, who found themselves in the unenviable position of reporting a ransomware attack that…
Category: Health Data
What were the worst health data breaches in 2017?
I’ve been working on compiling some annual statistics for 2017 for Protenus. This will be their second year of publishing an annual report for U.S. breaches involving health data, and I think readers will find some surprises in the statistics. Sometimes numbers do not match our impressions. But as I was working on entering and…
Glens Falls Hospital workers’ Social Security numbers and flu shot status released in internal email
Michael Goot reports on a breach involving hospital employees’ health information. In this case, the health information relates to a work issue, and Social Security numbers are also involved, but it’s still their health information that caught my eye. The names and Social Security numbers of Glens Falls Hospital employees who had not received flu…
24,000 UNC Health Care patients affected by potential security breach
John Murawski reports: UNC Health Care is notifying 24,000 patients about a potential security breach at a UNC dermatology practice in Burlington. UNC said Friday that personal patient information was contained on a hard drive of a laptop computer that was stolen from UNC Dermatology & Skin Cancer Center in October. The absence of the…
Sinai Health System notifies 11,350 patients after phishing incident
Ally Marotti reports: At least two employees at Sinai Health System had their email accounts compromised in a phishing incident, potentially affecting the information of 11,350 people. The seven-member hospital system said in a statement Thursday that it cannot confirm whether any patient information in the email accounts was viewed. However, there is a low…
Mad River Twp. Fire and EMS data hacked, encrypted with ransomware
Parker Perry reports: The Mad River Twp. Fire and EMS station is without years of data after its server was breached and encrypted with ransomware. Chief Elmer Beard said the virus was found in August and the department has tried to work out solutions to get the information unencrypted. The hackers demanded payment for the…