If you read only one thing today, read this. Shannon Pettypiece and Jordan Robertson report: Dan Abate doesn’t have diabetes nor is he aware of any obvious link to the disease. Try telling that to data miners. The 42-year-old information technology worker’s name recently showed up in a database of millions of people with “diabetes…
Category: Uncategorized
HHS corrects entry for LANAP & Implant Center breach
There’s been an interesting update to HHS’s breach tool for the entry concerning a breach reported by Dr. David DiGiallorenzo of the LANAP & Implant Center in Williamsport, Pennsylvania. I had first noted the breach in December 2013, and then provided an update here. When the breach was added to HHS’s breach tool, I noted the addition and commented on…
D&J Optical sues former employees for misappropriation of patient/proprietary information
D&J Optical in Alabama reported a breach to HHS that appears to have involved a hacking/IT incident on November 15, 2013. It is not clear when they first reported the breach to HHS, but it was only added to HHS’s breach tool on August 25. The incident reportedly affected 1,100 patients. In attempting to investigate the…
Midwest Women's Healthcare Specialists breach may have affected over 1,300 patients
HHS has added the May breach involving Midwest Women’s Healthcare Specialists in Missouri, where “dozens, possibly hundreds” of former patients’ records were found blowing in the wind outside Research Hospital. The HHS entry indicates that 1,376 patients were possibly affected and/or notified of the improper disposal of their records.
Update on Cottage Health System breach
In December 2013, I reported on a breach involving Cottage Health System. In their notification to patients, which I included in that post, Cottage Health indicated that about 32,500 patients had their information exposed when a vendor removed security controls on a server. That vendor was later identified as InSync. On September 4 of this year,…
HHS breach tool: When "theft" doesn't mean what you think it means
In May 2011, I noted a breach that had appeared on HHS’s public breach tool involving Community Action Partnership of Natrona County, WY. An update to that breach was added to the breach tool on September 3 that suggests that the original breach coding by the covered entity as “theft, desktop computer” could have misled some…