As I commented to someone recently, a security incident involving Appalachian Regional Hospital facilities in Beckley and Summers County struck me as a really serious one because it was impacting patient care. While ARH responded promptly and initiated its emergency operations plan after detecting that its system was infected, it seemed clear that shifting to an…
Category: U.S.
OR: Asante Notifies Patients of Inappropriate File Access by Employee
The following is a press release: Asante announced today that it is notifying individuals related to a privacy incident involving certain patient information. On July 13, 2016, Asante determined that an employee had inappropriately accessed certain electronic patient records. Asante immediately began an investigation related to this incident and the specific employee, which was completed on July…
PA: King of Prussia Dental Associates and Pediatric Dentistry of Collegeville notify patients after finding computer intrusion
The following is a press release: King of Prussia Dental Associates and its affiliate Pediatric Dentistry of Collegeville (KOP Dental) are committed to maintaining the privacy and security of the protected health care information of the organizations’ patients. Recently, KOP Dental detected irregular activity on a computer server and immediately took action. On or about June 1, 2016,…
IN: McDonald’s employee stole about 100 credit card numbers while working drive-thru
Gabby Gonzalez reports: Newly unsealed court documents reveal how detectives were able to track down a McDonald’s employee who allegedly stole around 100 credit card numbers while working the drive-thru. Police say Makeisha Roberts, the McDonald’s employee, and Quentin Deshawn Creamer worked together to steal customers’ information and make fake credit cards they used to…
Seagate sued by its own staff for leaking personal info to identity thieves
Shaun Nichols reports on a lawsuit filed by Seagate employees whose W-2 information was given to criminals who successfully tricked an employee via business email compromise. The suit [PDF], originally filed in July through the Northern California District Court, accuses the hard drive maker of negligence and unfair business practices stemming from the March 1, 2016…
KS: Breach of Protected Health Information discovered at Decatur Health Systems
September 7 – OBERLIN, KS – On July 25, 2016, it was discovered that a CAT scan log binder detailing patient information was not in its typical location on the Decatur Health System (DHS) premises. The binder was believed to be taken from DHS premises between 5pm on July 22, 2016 and 7am on July 25,…