The Napa County Health and Human Services Agency in California has sent out breach notification letters to clients of its In Home Supportive Services program. The program is under the county’s Comprehensive Services for Older Adults division. The notification followed the discovery that a thumb drive with unencrypted information was lost in the rubble after a big earthquake….
Category: Uncategorized
MA: Twin Sisters Charged with Stealing Mental Health Professionals' Information to Defraud Federal, State, Local Agencies
Here’s another case of identity theft for fraud. In this case, the names and license numbers of mental health professionals were misused to defraud Lawrence Public Schools, UMass Medical School, Medicare, and Medicaid. From the Massachusetts Attorney General’s Office: BOSTON – Twin sisters who formerly lived in Burlington have been indicted and arrested in connection with…
Connecticut Attorney General Wants Apple To Answer Questions About How The Apple Watch Stores Your Personal Health Data
Sam Colt reports: Connecticut’s attorney general has called for a meeting with Apple over concerns about the privacy of health data collected by the Apple Watch. “When new technologies emerge in consumer markets they inevitably lead to new questions, including questions about privacy,” Attorney General Jepsen said. Apple has already said that it will not…
Monthly reports to Congress show VA still experiencing hundreds of breaches each month
The Veterans Administration continues to struggle with securing veterans’ personal and protected health information, as its monthly reports to Congress reflect. First, consider the sheer number of different types of incidents reported to Congress for the month of August: Total number of Internal Un-encrypted E-mail Incidents 92 Total number of Mis-Handling Incidents 114 Total number…
Aventura Hospital notifies 82,601 patients of possible data theft; third theft incident in 2 years
A breach entry added to HHS’s public breach tool last week reveals that 82,601 Aventura Hospital and Medical Center patients may have had their identity information stolen by an employee of their business associate, Valesco Ventures. At the time of this publication, there is no statement or notification on Aventura’s web site. PHIprivacy.net was, however, able to find a Legal Notice published in…
McKesson subsidiary exposed over 10,000 patients' information via Google search; data exposed for more than 4 months
PST Services, a McKesson subsidiary providing medical billing services, reportedly had a breach that impacted multiple clients and left more than 10,000 patients’ information exposed via Google search for over four months. The full scope of the breach has yet to be determined. Based on HHS’s public breach tool, it appears that the breach occurred on December 1, 2013 and affected 24…