Today, the U.S. Attorney’s Office for the Southern District of Florida revealed a prosecution stemming from an insider breach impacting Aventura Hospital patients, although I’m not confident I can figure out which Aventura Hospital breach this is related to (see PHIprivacy.net and this site for previous reports of Aventura Hospital insider breaches). Note that the employee…
Category: Health Data
CA: Mastermind of $1 Million Medicare Fraud Sentenced to 30 Months
I’ve repeatedly noted that Medicare/Medicaid fraud schemes pose significant risks to patients who do not know that their files have now been corrupted by inaccurate or false records used to support a fraud scheme. The following press release from the FBI and the U.S. Attorney’s Office for the Southern District of California highlights yet an…
Advocate Health patients ask Seventh Circuit to revive data breach lawsuit
There’s an update to another case I’ve been following. Although Advocate Health won dismissal of some lawsuits stemming from the theft of four laptops with information on over 4 million patients, plaintiffs have asked the Seventh Circuit for another bite of the apple under the Fair Credit Reporting Act (FCRA). So far, trying to litigate breaches…
PA: Couple gets prison time for tax refund fraud scheme that used Crozer-Chester patients’ information
There’s an update to a case I’ve been covering since March, 2013, when Rafael Henriquez Polanco and his wife, Yanira Lopez, were first charged in a tax refund fraud scheme. According to court records, as part of the scheme, they paid employees at Crozer-Chester Medical Center and Chester Community Hospital to provide them with identity information of 144 patients. The hospitals…
OK: EyeCare of Bartlesville notifies patients after hard drive locked by malware
EyeCare of Bartlesville in Oklahoma reported a breach to HHS on March 13 that appeared on HHS’s public breach tool on March 19. There was no notice on their web site that I could find at that time. Nor could I locate any public notices via a Google search. The incident was coded on HHS’s breach tool as a…
NJ: Court dismisses breach lawsuit against Horizon Blue Cross Blue Shield
In December, 2013, Horizon Blue Cross Blue Shield of New Jersey notified almost 840,000 members that their protected health information was on laptops stolen from the insurer’s Newark headquarters on November 1, 2013. At the time, Horizon BCBS reported that the laptops were password-protected, but the data were unencrypted, and After a detailed review with…