Catherine Lillington reports: Medical records of 24 hospital patients have been found dumped in a bin in Coventry. An investigation has now been launched following the discovery of the confidential University Hospital paperwork last week. The location of the bin has not been disclosed, but is not on the hospital site itself. How the information ended up…
Category: Health Data
IA: Allen Hospital in Waterloo reports patient data breach
Pat Kinney reports: UnityPoint Health-Allen Hospital is reviewing a breach of patient information which occurred over about seven years. The hospital is notifying approximately 1,620 patients that a former employee inappropriately accessed their personal information in the hospital’s electronic medical record. Allen Hospital compliance staff detected inappropriate access to the hospital’s medical record on March…
Ontario health privacy breach notification bill passes third reading
Canadian Underwriter notes: An Ontario government bill proposing to increase fines, to $500,000, for health privacy violations recently passed third reading at Queen’s Park in Toronto. Bill 119 proposes some changes to Ontario’s Personal Health Information Protection Act (PHIPA). Read more on Canadian Underwriters.
Children’s National Medical Center blames former transcription vendor for privacy breach
In March, 2015, the D.C.-based Children’s National Medical Center notified 18,000 patients of a breach that occurred between July 26, 2014 and December 26, 2014 after employees fell for phishing emails. In May, 2015, they were sued over that breach. Now, CNMC has disclosed another breach, this one involving a former vendor who provided medical transcription services. Their press…
Student disability info ‘lost’ by uni was unencrypted and unsecured
Tom Joyner reports: The disability information of nearly 7,000 current and former students of the University of Sydney “lost” in a major privacy breach in February was unencrypted and unsecured, an internal review of incident has found. The information was lost when a software developer employed by the University left a laptop containing a student disability…
Breach at vendor’s results in Mayfield Brain & Spine patients receiving emails containing malware
CINCINNATI, OH: On February 23, 2016, many people began receiving a fraudulent email titled “Important Information: invoice 11471” from an unauthorized person who had accessed Mayfield Brain & Spine’s account at an outside vendor. This email was not sent by Mayfield. Mayfield notified recipients of the malicious email as soon as possible that same day,…