UW Health announced today that it is sending letters to certain patients about a privacy incident. UW Health learned on August 3, 2016, that patient satisfaction surveys were addressed “To the parents or guardians [patient’s name]” of some adult patients and mailed between July 29, 2016, and August 2, 2016. The enclosed cover letter was…
Category: U.S.
NY: Corinth pharmacist used customer ID to steal opioid
Times Union reports: A Saratoga County pharmacist was arrested Monday after she assumed a customer’s identity in order to steal hydrocodone, the Saratoga County Sheriff’s Office said Mary B. Murphy, 48, of Ballston Spa, was charged with second-degree forgery and first-degree identity theft and falsifying a business record. Read more on Times Union.
Ex-Arkansas hospital orderly sentenced for identity theft
AP reports: A Texas man has been sentenced to two years in prison for theft and for stealing the identities of patients at an Arkansas hospital where he was an orderly. Federal court records show 28-year-old Sir John Ashley Holliday of Dallas was sentenced Thursday in U.S. District Court in Little Rock after pleading guilty in May…
Feds rehire contractor linked to massive OPM data breach
Nicole Duran reports: The Obama administration has rehired an outside contractor that was partly responsible for what many think was the largest theft of personal information from the government in U.S. history, even as it continues to boast of several new steps it is taking to enhance federal cybersecurity. […] One of them is Key…
Contracting in the Cloud: Who Pays for a Data Breach?
In a recent white paper I co-authored with Protenus, Inc., we noted the significant risks of a breach involving a vendor or business associate. In following up in a subsequent post, I also included a “pop quiz” for readers to use to test their understanding about the terms of any contract they have in terms of…
CA: Apria Healthcare notifies patients of breach
Apria Healthcare today announced a data security incident involving unauthorized access to an employee’s email account. Apria Healthcare is one of the nation’s leading providers of home respiratory services and certain medical equipment. Affected individuals may have received certain medical equipment from Apria Healthcare. On August 5, 2016, Apria Healthcare discovered that the email account of…