DataBreaches.net discovered today that two copies of a paste (data dump) with over 860 AOC patients’ information is still available online if you know where to look for it. I’m providing a redacted screenshot below so patients can get a sense of what these pastes/leaks look like, although I’ve blacked out most of the street addresses, the…
Category: Health Data
LA: Center for Neurosurgical and Spinal Disorders discloses hack
KPLC-TV reports that Center for Neurosurgical and Spinal Disorders announced a breach that occurred in July. From the center’s news release: Lake Charles, LA – On the morning of July 21, 2016, we detected an unauthorized intruder in one of our computers. Access to this computer was immediately shut down; subsequently, CNSD’s servers and network were taken…
California dentist notifies patients of backup drive stolen from car
Why are we still reading reports of devices with unencrypted patient information being stolen from providers’ unattended vehicles? This is the second report this month I’ve read like this. And while it’s one thing to inform patients that you believe the device was stolen for commercial value and not contents, does this letter go too far…
AU: Albany hospital staff avoid censure over confidential patient document find
ABC reports: Staff at Albany’s public hospital have avoided serious consequences after confidential patient information was found by a member of the public in the building’s courtyard. A double-sided paper document listing the personal details of 11 mental health patients, their reason for admission and their risk factors was found in the courtyard of the Albany…
KY: Lawrence County Medical Practice, Employees Charged with Medicaid Fraud, Prescription Forgery
FRANKFORT, Ky. (Aug. 16, 2016) – Attorney General Andy Beshear and his Office of Medicaid Fraud and Abuse today announced the indictment of a Lawrence County Medical Practice and the arrest of three providers of the practice on charges related to Medicaid fraud and forgery of prescriptions, both Class D felonies. Tri-State Family Medical Center LLC,…
Athens Orthopedic Clinic incident response leaves patients in the dark and out of pocket for protection
On June 26, after learning that databases with patients’ protected health information had been put up for sale on the dark web, DataBreaches.net began investigating and trying to alert the victim entities so that they could take immediate steps to try to mitigate harm to patients. By that evening, I had sent an email to Athens Orthopedic…