Katie Stancombe reports: A Lake County woman whose medical records were unknowingly shared with her employer by a Community Hospital worker in Munster who took her x-rays has won a reversal of her dismissed complaint against the hospital. Amanda Henry, who received medical treatment in March 2018 at Community Hospital in Munster, was required to…
Category: U.S.
Taconic Biosciences settles lawsuit stemming from 2017 W-2 phishing breach (updated)
One of the victim companies of a W-2 phishing attack that this site reported in 2017 was a New York firm called Taconic Biocences. A copy of their notification to the Maryland Attorney General’s Office is still available online, here. Recently, News10 in New York reported that there has been a $2.7 million settlement in…
Cancer Treatment Centers of America in Atlanta discloses three phishing incidents in 6 months
The Cancer Treatment Centers of America (CTCA) has had its name cross my desk a lot this past year. And that’s not a good thing. There have been five Cancer Treatment Centers of America breach notices that have been publicly disclosed since November 2018. Three of them involved the Southeastern Regional Medical Center in Atlanta,…
NE: CHI Health says ransomware incident may have exposed info of patients at Lakeside Hospital’s orthopedic clinic
Not sure how I missed this one, but I did, it seems. Note that CHI Health stands for Catholic Health Initiative. They are a non-profit organization headquartered in Omaha, Nebraska. On September 28, Jessica Wade reported: A CHI Health clinic sent letters to patients Friday informing them that their personal information may have been exposed…
McAlisters Deli, Moe’s Southwest Grill, Schlotzsky’s Notice of Data Breach to Consumers
October 2, 2019 Notice of Payment Card Security Incident California residents please click here McAlister’s Deli values the relationship we have with our customers and understands the importance of protecting payment card information. We initially notified our customers on August 20, 2019 that we were investigating a payment card security incident involving some of our…
Advocate Christ Medical Center demonstrates how NOT to respond to a HIPAA breach
Ok, we know mis-mailings and mix-ups happen, right. But what allegedly happened with Advocate Christ Medical Center is yet another example of how NOT to respond to an incident while claiming you take privacy and security seriously. CBS in Chicago reports that Advocate Christ Medical Center in Oak Lawn Illinois sent Darnell Payne some other…