Michelle Marchante provides today’s reminder of the insider threat: More than 2,000 patients at Jackson Health System had their personal data, including names, address and medical information, accessed in a lengthy breach that spanned nearly five years. The data breach was conducted by a Jackson employee who accessed the information to promote a personal healthcare…
Category: Insider
North Shore University Sleep Disorders Center employee charged with secretly recording patients in restrooms
On May 23, the North Shore University Sleep Disorders Center in New York notified HHS that 13,332 patients were affected by a breach that it coded as “Unauthorized Access/Disclosure” of data located “Other.” While the number affected might not seem unusually disturbing in this day and age of big breaches, the circumstances of the breach…
Junior Defence Contractor Arrested For Leaking Indian Naval Secrets To Suspected Pakistani Spies
Here’s yet another insider threat report from a defense agency to end the week. This one is from India. NewsMobile reports: A 27-year-old junior defence contractor has been arrested for allegedly leaking restricted information on Indian Navy warships and submarines to suspected Pakistani intelligence agents, Maharashtra’s Anti-Terrorism Squad (ATS) said in a statement issued late…
HHS OCR Settles HIPAA Security Rule Investigation of BayCare Health System for $800k and Corrective Action Plan
HHS OCR has settled another enforcement action involving the HIPAA Security Rule. From their press release yesterday, it sounds like an insider wrongdoing case. In its formal resolution agreement, the government states that on October 23, 2018, OCR received a complaint alleging that on October 8, 2018, an unknown third party accessed her printed and…
Russian hospital programmer gets 14 years for leaking soldier data to Ukraine
Daryna Antoniuk reports: A Russian court sentenced a former hospital programmer to 14 years in a high-security penal colony for allegedly leaking personal data of Russian soldiers to Ukraine, authorities said. The court in the Russian Irkutsk region found 37-year-old Alexander Levchishin guilty of treason after he copied electronic medical records of Russian military personnel from…
Texas Doctor Who Falsely Diagnosed Patients as Part of Insurance Fraud Scheme Sentenced to 10 Years’ Imprisonment
How often have you read concerns that patient information can be used for fraudulent purposes or that patient records can be altered by wrongdoers? Here’s a case where the wrongdoer is a doctor who altered patient records and inserted false diagnoses to defraud insurers — to the tune of over $118 million in false claims….