Another insider breach for identity theft. Another case where the entity never detected the breach until notified by law enforcement. An employee working at a University of Florida medical practice who had ties to an identity theft ring may have compromised patient personal and health information. UF is notifying 5,682 patients and parents of patients…
Category: Health Data
Oregon Psychiatric Security Review Board breach disclosed
I was reading an article by Yuxing Zheng of The Oregonian , and noticed a reference to a breach involving the state’s Psychiatric Security Review Board that I don’t recall seeing before: The paper and electronic documents were stolen from an employee’s vehicle on May 16, according to a notification letter the board sent the…
HITRUST confirms a public server was hacked, but no sensitive data involved
Given how many claimed hacks are just — well, let’s just call them flat-out lies — more entities are starting to adopt a verify/confirm first before publishing approach. Or they’re publishing and then trying to confirm – a less desirable approach, in my opinion. Adopting the latter approach, Softpedia reached out to HITRUST after hackers…
Sonoma Valley Hospital notifies patients whose information was exposed on the Internet
Sonoma Valley Hospital has disclosed that patient information was exposed on the Internet due to an employee error. The Sonoma Valley Sun reports the breach occurred on February 14, 2013, and involved 1,350 surgery patients’ names, dates of service, procedure, surgeon, hospital charges, and name of insurance company. The hospital did not learn of the breach…
Jackson Health System notifies 1,407 patients of missing records
Statement from Jackson Health System in Florida: Jackson Health System has conducted an internal investigation regarding several boxes of medical records that are unaccounted for and/or are missing from Jackson Health System Health Information Management (HIM) department. Those 1,407 patients whose personal information was accessed have been notified and offered free credit card fraud protection….
Woman involved in hospital identity theft sentenced to 10 years
More follow-up on a tax refund fraud scheme that used patient information from Troy Regional Medical Center in Alabama and other non-medical entities. This case was noted previously on this blog. Robbyn Brooks of the Troy Messenger reports: A woman who pled guilty in an identity theft/tax refund scam involving Troy Regional Medical Center records has…