Daniel Tyson reports: Appalachian Regional Hospitals in Beckley and Summers County computer systems were breached Saturday afternoon, but company officials were tight-lipped as to the extent or what information was seized by the hackers. The hospitals’ parent company, Appalachian Regional Healthcare, issued a two-paragraph statement that their hospitals in West Virginia and Kentucky are on…
Category: Health Data
Lewis-Palmer School District tries to downplay vulnerability and chill a concerned parent’s speech
Back in May and then again in July, I noted several articles about Lewis-Palmer School District 38 in Colorado. A parent had raised concerns about whether the Infinite Campus platform might have compromised more than 2,000 students’ personal and academic information. The parent also alleged that the district had known about the problem since September…
Prosthetic & Orthotic Care patient info remains publicly exposed
First, a quick update on the Athens Orthopedic Clinic breach: It took two requests, but I’m pleased to report that Pastebin removed three pastes with over 1,350 patients’ information. Those pastes were separate from an earlier paste with an additional 500 patients’ information. News outlets that continue to report that 500 patients’ information was exposed and put up for sale are, to…
When is a PHI breach reported to HHS not a breach of PHI?
Back in March, this site reported on an incident disclosed by the Eye Institute of Corpus Christi. The incident involved individuals copying the patient database and providing it to doctors formerly associated with the entity. The doctors then allegedly used the information to recruit patients to their practice. It was not clear from the notification…
OCR closes investigation of Bizmatics, Inc. breach
In doing some of my weekly investigating, I discovered that OCR seems to have closed its investigation into the Bizmatics, Inc. breach that affected an untold number of PrognoCIS customers and their patients. At last count, I think we knew about almost 300,000 patients that were notified of an incident where Bizmatics could not even…
Details emerge on Cefalu Eye-Tech of Green breach
As much as I try to find or obtain details on breaches in a timely fashion, it’s not always possible. For example, this month, there are several entities who reported breaches to HHS but have not responded to email and/or phone requests from this site for explanations of their incidents. But now we finally have…