Occasionally I just pop a different search string into Google to see if it reveals any breaches I didn’t know about. Here are three breaches I stumbled across, none of which seem to have been listed on HHS’s breach tool: The first find was a vendor breach affecting Mission Hospital that they disclosed to patients in…
Category: Health Data
Omnicell databreach affects over 8,500 patients in New Jersey
And yet another organization — South Jersey Healthcare — has come forward to say that their patients were affected by the Omnicell breach discussed previously on this blog. According to The Daily Journal, 8,555 of their patients were affected. Interestingly, The Daily Journal describes the device as a laptop. All other coverage has been silent…
Update on Omnicell stolen device breach: 56,000 Sentara patients impacted
When an electronic device with unencrypted patient information was stolen from the unattended vehicle of an Omnicell employee, the University of Michigan Health System notified 3,997 of their patients, but there were other hospitals that were not named at the time. Thanks to WVEC, we now know 56,000 Sentara Healthcare patients treated between Oct. 18 and…
HHS announces first HIPAA breach settlement involving less than 500 patients
I was hoping we’d get more information about this settlement and now HHS has provided it. As I had suspected, the Hospice of North Idaho breach affected fewer than 500 patients. And as a commenter suggested, the fine was because they had no risk analysis nor policies for mobile device security. From HHS’s press release:…
Reducing insider breaches – what works?
Over the past year, I’ve had the opportunity to talk to a number of people in different organizations who are concerned with insider breaches in the health care sector. One of those people is Kurt Long, CEO and Founder of FairWarning, a firm that provides patient privacy monitoring (privacy breach detection) systems. So, here’s a…
Gibson General Hospital notifies 29,000 patients after laptop stolen from an employee's home
Brad Conaway reports that Gibson General Hospital has mailed letters to 29,000 patients informing them that their name, address, Social Security number and/or clinical information may have been on a laptop stolen from an employee’s home on November 27. Unfortunately, as the hospital explains in its statement and FAQ, the hospital cannot determine with any…