Johanna Weidner reports: Personal information for thousands of children was mailed to strangers in an OHIP privacy breach. The province confirmed Thursday that all the incorrectly printed health card renewal notices it mailed belonged to children who have a birth date in early July. A printing mistake on the double-sided form resulted in a mismatch…
Category: Health Data
Walnut Place notifies patients of ransomware attack
From their press release: On March 13, 2017, LCS-WP LLC d/b/a Walnut Place (“Walnut Place”) leadership discovered that some of its systems had been infected with ransomware (a type of computer malware that encrypts files). Walnut Place’s investigation has revealed that the ransomware began affecting its systems on or around January 25, 2017 and was…
Developing: Multiple NHS trusts across England disrupted by ransomware attack
Digital Health is reporting: Multiple hospitals across England have been hit by a large-scale cyber attack on Friday afternoon, with trusts switching off systems. NHS Digital confirmed to Digital Health News that it is aware of a “cyber security incident”. Sources told Digital Health News that there was a major N3 cyber security issue on…
Texas health system settles potential HIPAA violations for disclosing patient information
Okay, this seems a bit harsh in terms of monetary penalty. From another HHS/OCR settlement announced today: Memorial Hermann Health System (MHHS) has agreed to pay $2.4 million to the U.S. Department of Health and Human Services (HHS) and adopt a comprehensive corrective action plan to settle potential violations of the Health Insurance Portability and Accountability…
Confidential medical records from Bronx-Lebanon Hospital exposed online by vendor’s error
Vendor’s error appears to have exposed personal and confidential medical data of patients seen at Bronx-Lebanon Hospital Center since 2014; Records also include addiction histories, psych histories, and histories of physical or sexual abuse; Hospital investigating to determine what happened and who may have accessed data. By now, you may be tired of reading reports on misconfigured MongoDB installations…
Website Flaw Let True Health Diagnostics Users View All Medical Records
Brian Krebs reports on yet another entity/site that did not adequately secure patient information: True Health is a privately held health services company specializing in “comprehensive testing for early detection of chronic diseases,” according to the company’s Web site. The medical reports that True Health produces contain vast amounts of extremely personal information on patients,…