Little Rock-based Nephropathology Associates, PLC (“Nephropath”) notified HHS of a breach impacting 1,260 patients. In a substitute notice on their web site, they explain: On July 30, 2015 a Nephropath employee inadvertently transmitted a data-set including both Protected Health Information (PHI) and de-identified information to a vendor via unsecured e-mail. The vendor was the intended recipient of the…
Category: U.S.
OK: Indian Territory Home Health and Hospice, LLC, DBA “Aspire Home Care and Hospice” notifies patients of potential compromise of their information
A recent update to HHS’s public breach tool includes an incident affecting patients of Indian Territory Home Health and Hospice (“Aspire Home Health and Hospice”). From a statement on their web site: On August 10, 2015, Indian Territory Home Health and Hospice, LLC, DBA “Aspire Home Care and Hospice” learned that it was the target…
Former Assistant Band Director Sentenced for Identity Theft Tax Fraud Scheme Involving Former Students and Other Individuals’ Personal Identifying Information
There’s a follow-up to a case previously reported on this site. From the U.S. Attorney’s Office for the Southern District of Florida: A former assistant band director was sentenced today to 61 months in prison, followed by three years of supervised release, and was ordered to pay restitution in the amount of $129,321 for his participation…
Miami-Dade patient information compromised
Daniel Chang reports: About 150 clients of the Florida Department of Health’s Children’s Medical Services program in Miami-Dade may have had their personal information compromised after vendors were faxed a clinic roster containing names, birth dates and membership numbers, agency officials reported Friday. […] The breach occurred when four vendors that provide services to the…
In wake of OPM breach, DoD proposes hack victim database
Roy Urrico reports: Weeks after the Federal government began sending snail mail notifications to the 21.5 million victims of the Office of Personnel Management breach, the Department of Defense proposed creating a hack victims database. The Pentagon’s proposed database, the Defense Manpower Data Center, would store the information in a “holding file,” according to an…
Failure to update software left Naperville computers vulnerable: report
A costly reminder of the need to patch and update promptly. Geoff Ziezulewicz reports: Hackers were able to break into Naperville’s computer network in an unprecedented 2012 cyber attack because of a vulnerability in the city’s web software that had not been patched, even though an alert and update had been released roughly a month…