So here’s yet another breach with what seems like a long delay to notification. In this case, Re-Solutions, a division of RSC Insurance Brokerage in Massachusetts, is a business associate to healthcare providers. On August 23, 2018, an employee’s laptop was stolen. In its disclosure letter, the laptop was described as “password-protected,” but there was…
Search Results for: HCA
MA: Emerson Hospital reports data breach
Robert Mills reports, in relevant part: Emerson Hospital is offering a two-year membership to an identity protection service to 6,300 patients whose personal information was part of a data breach caused by a third-party vendor last year. In a statement released Friday, the hospital said the data breach occurred between May 9 and May 17…
Hacker group behind SingHealth data breach identified, targeted mainly Singapore firms
Eileen Yu reports: Hackers that compromised the data of 1.5 million SingHealth patients has been identified as a group that launched attacks against several businesses based in Singapore, including multinational companies with operations in the city-state. Dubbed Whitefly, the group has attacked organisations in healthcare, media, telecommunications, and engineering, and is likely part of a…
Columbia Surgical Specialists of Spokane reports incident affecting 400,000 patients
On February 18, 2019, Columbia Surgical Specialists of Spokane reported a breach an incident to HHS. The incident, which appears on HHS’s public breach tool as a Hacking/IT Incident involving information on their network server, reportedly affected 400,000 patients. That’s a large breach for the healthcare sector, and yet I’ve seen no press releases in…
More than 5 months after ransomware incident, Wolverine Solutions Group still notifying more than 700 companies and 1.2 million patients
More than 5 months after a ransomware incident, Wolverine Solutions Group is still in the process of notifying more than 700 companies and 1.2 million patients. Should they even have to, or has the government imposed too burdensome a responsibility on entities that experience attacks to individually notify patients when there is no evidence of…
UW Medicine notifying 974,000 patients whose information was exposed online in December
The University of Washington Medicine (UW Medicine) is notifying patients after an error exposed protected health information of 974,000 patients online for three weeks in December. UW Medicine includes the University’s medical school as well as Harborview Medical Center, the UW Medical Center, Northwest Hospital and Medical Center, Valley Medical Center and more than two-dozen…