Over on DataBreaches.net, I’ve struggled to keep up with all the hacks that dump PII on the Internet. But there’s one from yesterday that involves patient data that should be mentioned here. A hack of vaguscosmetics.net (Part 1, Part 2, Part 3) reveals 1,973 2,555 patients’ information. Here are the data fields from the dumped database:…
Category: Health Data
UK: Cleaner did not breach data security says hospital
A follow-up from Scotsman.com on a breach at the Edinburgh Royal Infirmary mentioned previously on this blog: … NHS Lothian last night said that the cleaner had not breached the hospital’s computer systems and said instead that her name was on a computerised floor plan in the A&E ward. Jackie Sansbury, chief operating officer at…
UK: Police probe hospital patient privacy breach
Gareth Rose reports: An investigation is under way into a breach of patient confidentiality at one of Scotland’s biggest hospitals after a cleaner looked up a young mother’s medical records on a computer and used them to pester her online. The worker noticed the woman while she was being treated at the hospital’s accident and…
Personal info from more than 500 patients on Web
Associated Press reports that a patient in Alaska conducting a Google search discovered that patient records were exposed on the web and notified the police. Dr. Paul Beane, a chiropractor at the Sitka Wellness Center, told the [Daily Sitka] Sentinel an “electronic medical record software vendor” he used for about 9 months in 2008 had…
Two potential class action lawsuits filed against Sutter Health (updated)
It was only a matter of time, right? Darrell Smith reports: Sutter Health is being sued for negligence and other allegations in the mid-October theft of a computer from Sutter Medical Foundation headquarters that held information on more than 4 million of its patients. The class-action suit, filed Monday on behalf of plaintiff Karen Pardieck…
University of Kentucky HealthCare notifying almost 900 patients that lost phone may have contained information on them
The University of Kentucky HealthCare has posted a public notice on its web site today: The University of Kentucky is notifying 878 people regarding a breach of protected health information. On September 25, 2011, a phone was lost. The employee had access to electronic mail that may have included information about health conditions with medical…