As Robert Lord of Protenus explains in the May issue of Compliance Today, pediatric patient data continues to remain not only vulnerable to criminals, but also quite valuable to them, in part because the medical records of these young patients provide criminals a blank slate upon which they can build a false identity. This—combined with the fact…
Category: Health Data
Lithuania: Cybercriminals Blackmail Plastic Surgery Clinic with Stolen Photos
Šarūnas Černiauskas reports: Cybercriminals who stole personal records and photos of patients from the data system of a Lithuanian plastic surgery clinic – including those of national and foreign celebrities – have put them up for sale. The perpetrators put the Grožio Chirurgija data online, at a Dark Web website and are selling them for…
CVS pharmacy tech charged with 20 counts of identity theft
From Boston 25: A 22-year-old pharmacy technician faces numerous counts of identity theft after he was accused of stealing credit card information from customers at a Nashua CVS. Police say Bounhange Tang, 22, took photos of credit cards from 20 different customers at the pharmacy on Daniel Webster Highway and then looked up the customers’…
Hill Country Memorial Hospital notifies patients after employee email accessed without authorization
Hill Country Memorial Hospital (“Hill Country”) of Fredericksburg, Texas has advised its patients and some job applicants of a privacy event that may have compromised certain personal information. On April 21, HCMH issued the following press release: Hill Country Memorial Hospital (“Hill Country”) of Fredericksburg, Texas has advised its patients and some job applicants of…
Pentucket Medical notifies employees and patients of data security incident
Speaking of confusing incident reports, Pentucket Medical in Massachusetts reported a somewhat confusing incident to the New Hampshire Attorney General’s Office. It seems that on January 18, four boxes of mainly physician/clinician records were removed from CubeSmart Storage Facility by another client of the facility. Why that client might knowingly remove those cartons, and how…
Harrisburg Gastroenterology notifies patients of data security incident
Harrisburg Gastroenterology, Ltd. issued a press release yesterday that leaves a lot of questions unanswered: Harrisburg Gastroenterology, Ltd. announced today that it is notifying individuals related to a privacy incident involving certain patient information. On March 17, 2017, following an investigation of potentially suspicious system activity, Harrisburg Gastroenterology determined that an unauthorized individual could have…