On March 18, attorneys for Summit Health, Inc. in Pennsylvania notified the Maryland Attorney General’s Office that on February 19, the hospital had learned that some of its employees had fallen for a phishing attempt. As a result of the successful phishing, employees’ information in the Lawson Employee Self-Service System, used to access payroll and benefits information, may…
Category: Health Data
Tiversa’s CEO responds to former employee’s testimony in FTC v. LabMD
Tiversa CEO Robert Boback has responded to the testimony of a former employee, Richard (“Rick”) Wallace at yesterday’s hearing in FTC v. LabMD. In a statement sent to this site, he writes: What was probably lost on most people in the audience was that Wallace testified that HE downloaded the 1,718 file (the LabMD file in…
FL: Orlando Health patient information allegedly found in neighborhood driveway
WFTV reports that Orlando Health has been sending out letters to some patients whose protected health information was disclosed when a patient list was found in a driveway. Henderson said the letter stated the patient list contained names, medical record numbers, account numbers and even diagnoses. It goes on to say it appears the list was…
Illinois AG sues records storage company FileFax for dumping thousands of Suburban Lung Associates’ patients’ records
There’s a follow-up to a breach that was first disclosed by CBS in Chicago in February. The incident, involving patients of Suburban Lung Associates, was reported to HHS in April as affecting 2,984 patients. The following is the press release from Attorney General Lisa Madigan’s office: Chicago — Attorney General Lisa Madigan today filed a lawsuit against…
Is this a HIPAA breach?
Over on HIPAA Blog, Jeff Drummond poses this question: Is this a HIPAA breach? A guy had a leg amputated, and the hospital threw the leg in the trash, with the patient’s name written on it. The cops found it in the landfill and, as you might expect, checked up on the guy, thinking foul play…
SC: Roper St. Francis Hospital notifying 360 patients about lost flash drive (updated)
WCSC reports that 360 patients of Roper St. Francis Hospital will be getting a letter about a lost flash drive that contained what a hospital spokesperson described as “limited patient information.” The information may be “limited,” but it still is sensitive: names, ages, diagnoses, and dates of procedures. Hospital officials say a thorough search and investigation was conducted, and…