Over on PogoWasRight.org this morning, I linked to a post by Eric Goldman involving litigation over a medical privacy breach. One plaintiff claimed to have suffered significant harm in her life due to a hospital employee mailing her information to an unrelated third party who then posted it online. I mention that case because although…
Category: Insider
Ca: Riverside Health Care reports privacy breach was due to inappropriate access of EMR by a staff member
Press Release: Riverside Health Care recently concluded an investigation into a privacy breach that was the result of a staff member inappropriately accessing patient electronic medical records. The inappropriately accessed personal health information was not disclosed or otherwise used by the staff member. Steps were immediately taken to prevent further inappropriate access to personal health…
Meta Fires Employees and Contractors for Improperly Accessing Users’ Accounts and Selling Them to Hackers
Daniel Kreps reports: Meta, the parent company of Facebook, has fired or disciplined dozens of employees and contractors — including Meta security guards — following an internal probe that revealed they were improperly accessing users’ accounts for reasons including bribery. The Wall Street Journal reports that, for years, the employees and contractors wrongly used Facebook’s internal mechanism for helping password-forgetting…
Five Former Methodist Hospital Employees Charged with HIPAA Violations
Criminal prosecutions under HIPAA are still relatively rare. Here’s one reported by the U.S. Attorney’s Office in the Western District of Tennessee on November 10: Memphis, TN – A federal grand jury has indicted five former Methodist Hospital employees for conspiring with Roderick Harvey, 40, to unlawfully disclose patient information in violation of the Health Insurance…
Booz Allen Hamilton Holding Corporation notifies employees of insider breach
Booz Allen Hamilton Holding Corporation has disclosed an insider breach involving the sensitive, personally identifiable information (PII) of active employees as of March 29, 2021. According to their notification, a copy of which was submitted to the Montana Attorney General’s Office, Booz Allen recently learned that while employed by Booz Allen, a former employee obtained…
PA: Medical assistant charged with stealing and misusing patient identity information
Altoona Mirror reports on a case of insider wrongdoing: A medical assistant has been arrested on charges related to stealing patient information for personal use. Ashley Latimer, 34, of Philadelphia, used information she collected from patient records and licenses to open credit cards, purchase items and lease apartments, Attorney General Josh Shapiro said in a…