From the stop-me-if-you’ve-heard-this-one-before dept: Over on Daily Dot this morning, I reported that the FBI executed a search warrant at the home of researcher Justin Shafer. Shafer’s name will be familiar to regular readers of DataBreaches.net because he exposed a long-standing security vulnerability in Dentrix software and challenged Henry Schein’s claims that their product provided “encryption.” Our combined efforts resulted in…
Category: Health Data
CA Health & Longevity Institute patients notified of Bizmatics breach
Seen on dailynews.kaango.com, another Bizmatics client discloses the breach to their patients: (DAILY NEWS) PUBLIC NOTICE: HIPAA Breach Notification. CA Health and Longevity Institute would like to alert patients that in 2015 cyber intruders may have accessed confidential patient information that was stored on an electronic health record system. The clinic uses an electronic health…
Precision Medicine Initiative and Data Security
Secretary Sylvia Mathews Burwell and Lisa O. Monaco write: The health care system of the future is taking shape right now, and the foundation of that new system is health care data that is private, trusted and secure. Today, we are pleased to release the final Data Security Policy Principles and Framework (Security Framework) for President Obama’s Precision…
VA: Associates in Eye Care notifies patients of breach
Associates in Eye Care notified HHS on May 16 about an incident affecting 971 patients. DataBreaches.net could find nothing on their web site about the incident. The Prince William Times ran a small item that may be related, but the following incident occurred in Virginia, and the HHS report gave Kentucky as the state. Associates in Eye…
UK: Data watchdog probe as patient records go missing in transit
Press Association reports: The Information Commissioner’s Office is investigating problems with a national service for transporting patient records after GPs complained some were going missing. NHS England has commissioned private firm Capita to run the Primary Care Support England service, which handles GP payments, medical supplies, moving records and patient registrations. It has contracted CitySprint,…
CA: Email gaffe at clinic exposes patients’ names and email addresses
Oops. It appears that somehow, Berkeley Endocrine Clinic had spam sent to a number of its patients. Trying to address that, they sent out an email to all patients. Unfortunately, as Dr. Omar Murad explains, the patients’ names and email addresses showed in the TO: field: On April 22, 2016, my office was subject to a spam…