Tom Joyner reports: The disability information of nearly 7,000 current and former students of the University of Sydney “lost” in a major privacy breach in February was unencrypted and unsecured, an internal review of incident has found. The information was lost when a software developer employed by the University left a laptop containing a student disability…
Category: Health Data
Breach at vendor’s results in Mayfield Brain & Spine patients receiving emails containing malware
CINCINNATI, OH: On February 23, 2016, many people began receiving a fraudulent email titled “Important Information: invoice 11471” from an unauthorized person who had accessed Mayfield Brain & Spine’s account at an outside vendor. This email was not sent by Mayfield. Mayfield notified recipients of the malicious email as soon as possible that same day,…
Ca: Confidential patient records accessed by Inuvik Hospital employees
Following up on an investigation first disclosed in February, CBC News reports: The Beaufort Delta Health Authority confirmed today that there was a breach of patients’ health records by employees at the Inuvik Hospital. The hospital said it has sent letters to 67 patients informing them their health records had been compromised. Read more on…
Chelsea and Westminster NHS trust fined £180,000 for HIV newsletter data breach
There’s a follow-up to the breach involving the 56 Dean Street clinic in London run by the the Chelsea and Westminster NHS Trust. The breach involved a staff member accidentally exposing all recipients of an HIV newsletter in the To: field. Today, the Information Commissioner’s Office announced a monetary penalty stemming from the incident: A London NHS…
Ohio Department of Mental Health and Addiction Services (OhioMHAS) notifies patients of PHI exposure
This April 22nd notice seems to have flown under the media radar: The Ohio Department of Mental Health and Addiction Services (OhioMHAS) today notified the public of a privacy incident involving protected health information (PHI). The issue involves a February 2016 postcard sent to consumers of mental health services inviting participation in a satisfaction survey….
Notice of Data Breach from Bay Area Children’s Association
To the Patients and Guarantors of Bay Area Children’s Association: On April 1, 2016, we received notice from our electronic medical record provider that some of our patient records were acquired by unauthorized persons. Specifically, they determined that cyber intruders may have installed malware on their system in January 2015 and, through credential theft, accessed…