The press release below from Mercy Health/Love County Hospital is described as a supplement to an incident that they – and we – first reported in July. In September, the entity notified HHS that they had notified 13,004 patients, a notification that they reference below as a precautionary measure. I’m not sure why they needed…
Category: Health Data
MN: Colorado Center for Reproductive Medicine in Minneapolis warns clients of data breach
KARE reports: A Twin Cities fertility clinic is warning clients about a data security incident that may have put personal information at risk. CCRM Minneapolis, which is located in Edina, says the clinic’s servers were targeted by a ransomware attack on October 3, which triggered an investigation to determine if sensitive information had been put at…
Former employee reportedly steals mental health data on 28,434 Bexar County patients
Samantha Ehlinger reports: The Center for Health Care Services in San Antonio is notifying 28,434 local patients whose Social Security numbers, mental health and other sensitive records were stolen when a former employee allegedly took the data on his personal laptop after he was fired, the company said in a news release. The mental health…
Hacked IV Pumps and Digital Smart Pens Can Lead to Data Breaches
Dawn Kawamoto reports: An attack on a single IV infusion pump or digital smart pen can be leveraged to a widespread breach that exposes patient records, according to a Spirent SecurityLabs researcher. Saurabh Harit, managing consultant with Spirent, will present his findings on flaws in IV infusion pumps and digital smart pens at Black Hat…
Lawsuit claims Bend nurse shared confidential medical records
Kyle Spurr reports: St. Charles Health System is being sued for $500,000 by a patient who claims a nurse illegally shared his private health information without his permission. Jason Miller was receiving treatment at St. Charles Bend on May 15, 2016, for injuries related to an all-terrain vehicle accident. A nurse not assigned to him,…
Sensitive medical records dumped in public Allentown recycling bin
Paul Muschick and Emily Opilo report on one of those data protection fails that sometimes happen when a practice closes. And once again, we find no one stepping up to admit responsibility for the improper disposal of patient records with personally identifiable information and sensitive protected health information. In this case, the records appear to…