A newly announced settlement between HHS OCR and Care New England reinforces what DataBreaches.net and Protenus, Inc. have been trying to remind everyone of this week: pay more attention to your business associate agreements and do so regularly. Care New England Health System (CNE), on behalf of each of the covered entities under its common ownership…
Category: Health Data
CT: Hospital Patients Caught in Identity Theft Ring
NBC reports: Federal investigators say two women orchestrated an identity theft ring that targeted at least 20 people in the greater New Haven area. But it’s how suspects Jamila Williams-Stevenson and Loretta Coburn are said to have gotten some of their victim’s personal information that is most shocking. Authorities said several of the alleged victims…
Napa Valley Dentistry notifies patients after theft of server from storage facility
A dental practice that purchased another dentist’s practice in 2012 finds itself having to notify their patients and his former patients after the theft of a server from a storage facility. In a letter to their patients and those of Dr. Justin Quinn, Dr. Justin Newberry of Napa Valley Dentistry states that on August 11, they discovered that a password-protected…
Dozens of clinics, thousands of patients impacted by third-party data leak
EMR4all, Inc. was a California business providing free EMR software to physical therapy, speech therapy, and occupational therapy practices that used their associated patient billing service, Rehab Billing Solutions (RBS). Over the summer, they began shutting down operations and notifying their clients of their closure. Their effort to make a graceful exit wound up marred by a data…
Keck Medical Center of USC discloses ransomware attack
Keck Medical Center of USC is notifying patients of a ransomware attack that they discovered on August 1. The ransomware affected two servers that did not contain EMR but that did contain internal documents that included demographic information, date of birth, health information including treatment and diagnosis, and in some cases, Social Security numbers. Other files…
Lost and Found: Ventura County Health Care Agency notifies patients of breach
The Ventura County Star reports that 777 patients of the Ventura County Health Care Agency have been notified of a breach that happened in July because an employee took paperwork home and then couldn’t find it. The data reportedly included names, birth dates and medical history. Two cases involved financial data including Social Security numbers. The files…