We all know that medical identity theft to acquire treatment services is a risk, and that commingling of medical records could pose a real danger to patients, but you don’t read about that many actual instances. Here’s one out of New York, as reported by Amelia Camurati: A Glen Head couple was arrested last week for…
Category: Health Data
Private data on Gloucestershire hospital patients transferred to America by mistake
Matt Discombe reports: Private patient data held by Gloucestershire hospitals was mistakenly uploaded to a server in the USA due to problems with its new electronic record system. Information on 56 patients held by Gloucestershire Hospitals NHS Foundation Trust had been erroneously copied onto the server in October. The records, which included ‘identifiable sensitive data’…
Henry Ford Health System Warns 18,470 Patients Of Data Breach
CBS reports: Roughly 18,500 patients at Henry Ford Health System have possibly had their personal information stolen in a data breach. Officials say the breach was discovered in early October after the email credentials of a group of employees were stolen, which gave the thief access to patients’ records. Read more on CBS.
Lowell General Hospital notifies patients after firing rogue employee who accessed files improperly
Ah, I feel like I’ve been transported back in time, when it was always so hard to find a notification of a breach on an entity’s web site. I went searching for information on a breach Lowell General Hospital in Massachusetts reported to HHS as affecting 769 patients. I was looking for media contact information,…
Real Time Health Quotes leak affected health insurance applicants
So it appears I missed a third-party vendor/business associate leak that affected at least two covered entities and possibly more. Great thanks to Humana for sending along the vendor’s press release when I inquired about a breach report Humana had made to HHS as affecting 5,764 members or potential members. It turns out that the…
Baptist Health Louisville notifies 880 patients after phishing incident
Baptist Health Louisville in Kentucky recently notified 880 patients of a phishing incident. The incident was also reported to the U.S. Department of Health and Human Services. According to a substitute notice in response to the breach, on October 3, Baptist Health discovered that an employee’s email account credentials were obtained by an unauthorized third-party…