Nick Sambides Jr. reports: Health Access Network is warning “a very small number” of its 17,000 patients to beware of identity theft after firing a new employee for improperly accessing patient clinical information, its CEO said Wednesday. The federally funded community health center contacted the U.S. attorney general’s office and the Department of Justice on…
Category: U.S.
OH: Trooper accused of misusing police database for women’s info
AP reports: A former Ohio trooper accused of stalking a subordinate’s wife after an affair has been charged with finding or keeping personal information about 10 other women obtained from a law enforcement database without authorization. A Washington County court says William Elschlager pleaded not guilty to the new charges Wednesday. Read more on Daily…
NV: State agency audit withheld to protect sensitive data after serious security lapses found
Sandra Chereb reports: Auditors delayed release of a report detailing security vulnerabilities in state databases to protect the information of tens of thousands of current and former state employees and their beneficiaries, a legislative committee was told Tuesday. Douglas Peterson, information systems audit supervisor, told the Legislative Audit Subcommittee it was the first time he…
IL: Mercy Hospital & Medical Center notifies patients after billing service loses 547 patients’ documents
From their substitute notice: On August 15, 2016, Mercy Hospital & Medical Center discovered that some medical billing information for a total of 547 patients was potentially exposed as a result of a third-party billing service’s loss of Mercy’s documents from their offices. The information exposure occurred on August 15, 2016. We have taken the necessary…
Hackers stole credit card data from Republican website for 6 months: Report
Andrew Blake reports: A Republican Party website that sells bumper stickers and T-shirts advertising presidential candidate Donald Trump was compromised earlier this year by hackers who spent several months silently stealing credit card details and other personal information from purchasers, according to a Dutch security researcher. The digital storefront used by the National Republican Senatorial…
$2.14 million HIPAA settlement underscores importance of enterprise-wide risk analysis
St. Joseph Health (SJH) has agreed to settle potential violations of the Health Insurance Portability and Accountability Act of 1996 (HIPAA) Privacy and Security Rules following the report that files containing electronic protected health information (ePHI) were publicly accessible through internet search engines from 2011 until 2012. SJH, a nonprofit integrated Catholic health care delivery…