I have been following this case from the beginning and wondering why the heck HHS didn’t come down on Walgreens like they did on their competitors CVS and RiteAid. And now we learn that OCR just closed the case with no penalty? Seriously? So CVS and RiteAid get clobbered by both the FTC and HHS/OCR, and Walgreens…….
Category: Of Note
Analysis of World Check data leak by Risk Based Security: Hackers & Collectives
From RBS: In early July, it was revealed that a Thomson Reuters service known as World-Check had licensed information to a client that subsequently failed to secure the database. The leak, discovered by Chris Vickery, affected over 2.2 million persons identified as “heightened-risk individuals” that had been included in the World-Check database between 3/17/2000 and 9/17/2014. Shortly after the discovery, Risk…
Analysis of July healthcare data breaches
What kind of month was July for breaches involving health information. I counted 39 incidents reported during the month. Read Protenus’s blog for an analysis of the incidents. Update: Tom Sullivan of HealthcareITNews has a great write-up on the blog post.
An Assessment of the Anthem Data Breach Litigation Rulings
David Silverman writes: [Eric’s intro: this blog post helps distill Judge Koh’s two rulings, In re Anthem Inc. Data Breach Litig., No. 15-MD-02617 (N.D. Cal. Feb. 16, 2016) (“Anthem I”) and In re Anthem Inc. Data Breach Litig., No. 15-MD-02617 (N.D. Cal. May 27, 2016) (“Anthem II”). These are complicated opinions, and I hope this post helps…
Hack of former DST business exposes Blue Cross Blue Shield member info
This may turn out to be one of the biggest healthcare sector breaches of the year. Kansas City Business Journals reports: Newkirk Products Inc. reported a security breach of personal information for health insurance ID cards, including those for Blue Cross and Blue Shield of Kansas City. However, Newkirk said in a Friday release, the breach did not…
Data breaches at Advocate Health Care leads to biggest ever settlement
I’ve had a lot of coverage of Advocate Health’s breaches over the past years that you can access here. Here’s is HHS’s announcement of the settlement of their charges: Advocate Health Care Network (Advocate) has agreed to a settlement with the U.S. Department of Health and Human Services, Office for Civil Rights (OCR), for multiple…