The Alpena News reports: MidMichigan Medical Center-Alpena notified approximately 1,900 patients last week about a potential breach of personal data, according to a press release. The information may have included patient names, addresses, social-security numbers and clinical data. The incident that gave rise to the medical center’s investigation occurred during the late evening hours of…
Category: U.S.
Attackers claim to have hacked MEDHOST (UPDATED)
Update of Dec. 23: As of this evening, the hacker has not responded to a request from this site that they provide proof of access to PHI. And according to a MedHost spokesperson, they will not be reporting this incident to HHS because no PHI was accessed. Under the circumstances, unless more emerges, DataBreaches.net is…
Chilton Medical Center hard drive containing protected health information was sold online
News12 NJ reports: Nearly 10 years of personal hospital records could be at risk after it was discovered that a former employee sold a hard drive containing the information online. The incident could affect patients at Chilton Medical Center in Pequannock who visited the hospital from May 1, 2008 through Oct. 15, 2017. The hard…
NYU Langone Health Notifies Patients of Improperly Disposed Binder Containing Patient Information
NYU Langone Health notified patients this week that a binder containing a log with information related to presurgical insurance authorizations from NYU Langone Health Pediatric Surgery Associates was mistakenly recycled by NYU Langone’s cleaning company on October 17, 2017. Patient social security numbers were not included and therefore are not at risk, and there is…
‘Lizard Squad’ hacker admits to conspiracy targeting ‘thousands’
Jon Seidel reports: A Maryland man with ties to international hacking groups with “thousands of victims” pleaded guilty in Chicago Tuesday to a conspiracy that may land him behind bars. But Zachary Buchta could also catch a big break if he continues to cooperate with federal prosecutors, according to his 20-page plea agreement. Buchta, 20,…
Federal Court’s Embrace Of FTC Data-Breach Settlements As ‘Common Law’ Treads On Due Process
Cory L. Andrews of Washington Legal Foundation has an OpEd that begins: The Federal Trade Commission (FTC) has developed a well-known penchant for using individually negotiated settlement agreements and consent decrees to announce for the first time what qualifies as “unfair” or “deceptive” conduct under the FTC Act. In the data-privacy arena, FTC views these…