Jason Clayworth reports that Iowa’s Department of Human Services mistakenly shared 425 Iowans’ information with nursing facilities. The DHS became aware of the incident on Jan. 22. The agency sent letters dated Feb. 12 to each person, noting that the agency’s Medicaid Enterprise Medical Services United had mailed roster reports to the homes and had…
Category: Health Data
21st Century Oncology Notifies Patients of Data Security Incident
Update, March 8: A 21st Century Oncology spokesperson confirmed today to DataBreaches.net that 2.2 million patients were impacted by this breach. Note that this is the second time 21st Century Oncology learned of a data breach from federal authorities. In 2013, this site reported on an incident involving a rogue employee. That incident never appeared on HHS’s breach…
Nintendo Health Plan breach impacts 6,248 (Updated)
It’s all fun and games until you have to report a breach involving your health plan to HHS. Nintendo of America, Inc. notified HHS on February 26 of an incident impacting 6,248. The incident was coded as “Hacking/IT Incident” involving their Network Server, but still covers a lot of possibilities. [CORRECTION: It was not their…
Was the company involved in FTC charges against LabMD raided by the FBI?
A business whose evidence the FTC relied upon in opening an investigation of LabMD has allegedly been raided by the FBI. It’s just the latest development in a case that has now involved the FTC, DOJ, the security of Marine One, the House Oversight Committee, and a slew of businesses who were told that their…
Follow-up: Wayne Memorial Hospital Incident
Wayne Memorial Hospital has updated its breach disclosure, reported previously on this site as involving unauthorized insider access to 360 patients’ records. On March 1, the hospital updated the situation: One month after the termination of an employee for a patient privacy breach, Wayne Memorial Hospital continues to have no information that the accessed information was…
NL: Records of 781 cancer patients stolen from hospital car park
Negligence and laziness are not uniquely American phenomena. In this case, the researcher was violating policy, with all-too-predictable results: A hard drive containing the medical records of 781 cancer patients has been stolen from a researcher at Amsterdam’s Antoni van Leeuwenhoek hospital. The drive, which was not secured with a password, was taken from the boot…