Vendor’s error appears to have exposed personal and confidential medical data of patients seen at Bronx-Lebanon Hospital Center since 2014; Records also include addiction histories, psych histories, and histories of physical or sexual abuse; Hospital investigating to determine what happened and who may have accessed data. By now, you may be tired of reading reports on misconfigured MongoDB installations…
Category: Health Data
Website Flaw Let True Health Diagnostics Users View All Medical Records
Brian Krebs reports on yet another entity/site that did not adequately secure patient information: True Health is a privately held health services company specializing in “comprehensive testing for early detection of chronic diseases,” according to the company’s Web site. The medical reports that True Health produces contain vast amounts of extremely personal information on patients,…
Diamond Institute for Infertility and Menopause notifies patients after hack
Diamond Institute for Infertility and Menopause in New Jersey recently started notifying patients of an incident involving their electronic health records server, maintained by an unnamed third party. In a letter to the New Hampshire Attorney General’s Office, Diamond’s external counsel wrote: On February 27, 2017, Diamond discovered that an unknown individual had gained access to the…
Hard drive with medical information on 2,200 LSU Health patients stolen
Chad Calder reports: A hard drive containing the personal information of 2,200 LSU Health New Orleans patients was stolen in March, and while police quickly made an arrest, the hard drive has not been recovered, the LSU Healthcare Network said Friday. The network said the theft occurred in the Department of Neurology Research on or…
Ca: Chatham-Kent Health Alliance discloses March privacy incident
Matt Weverink reports: Two months after a privacy breach took place at the Chatham-Kent Health Alliance, the hospital is now reporting the incident to the public. Hospital officials say on March 6, 2017, a document containing sensitive health information about seven patients was found on the front lawn of a community member. The document was…
TheDarkOverlord dumps 180,000 patients’ records from 3 hacks
While thousands of their followers on Twitter seem to be eagerly waiting for TheDarkOverlord (TDO) to dump more tv films or episodes of popular series, TDO went non-fiction this morning, dumping patient/medical records from some of their hacks in the healthcare sector last year. All told, almost 180,000 patients had their personal information shared with the world. Two of…