On September 1, I reported that a breach disclosure by Hand Rehabilitation Specialists to the Vermont Attorney General’s Office was actually an incident that had involved TheDarkOverlord, a hacker or hacking collective who have been targeting the healthcare sector since last March or April. That notification did not name TheDarkOverlord as attackers. Nor did it…
Category: Health Data
UK: Trust employee prosecuted for snooping on colleagues’ records
A former data co-ordinator employed by The University Hospitals of North Midlands NHS Trust has been prosecuted at North Staffordshire Magistrates’ Court. Linda Reeves accessed the sensitive medical records of colleagues as well as people she know that lived in her locality, without the consent of the data controller. Ms Reeves pleaded guilty to the…
Community Memorial Health System in Ventura suffers data security breach
Robert Shutt reports: The Community Memorial Health System in Ventura has sent out a notice regarding a data security breach involving patient information. A CMHS employee’s email account was compromised by a phishing email and on June 23 the employee saw irregularities in their account and notified the CMHA administration. Read more on Pacific Coast Business…
FL: Billing employee in healthcare office sentenced for ID theft role
There’s an update to an insider breach case previously reported on this site. Sharmekia Young, the former Rotech Healthcare employee convicted of stealing almost 1,000 patients’ information, has been sentenced to three years in prison.
Alaska malware incident may have compromised personal info held by Office of Children’s Services
And yet another breach disclosed at the beginning of a holiday weekend – this one posted by the State of Alaska: September 1, 2017 ANCHORAGE – The Alaska Department of Health and Social Services had a security breach that may have disclosed personal information of individuals who have interacted with the Office of Children’s Services….
The Neurology Foundation discloses employee wrongdoing
Yes, let’s release a breach notification at 5 pm on the Friday of a big holiday weekend…. In this case, it’s The Neurology Foundation in Rhode Island, reporting on an incident involving employee wrongdoing. You can read the full press release here. Note that although the problem was discovered months ago, notification of the breach was…