Okay, this seems a bit harsh in terms of monetary penalty. From another HHS/OCR settlement announced today: Memorial Hermann Health System (MHHS) has agreed to pay $2.4 million to the U.S. Department of Health and Human Services (HHS) and adopt a comprehensive corrective action plan to settle potential violations of the Health Insurance Portability and Accountability…
Search Results for: patient
Diamond Institute for Infertility and Menopause notifies patients after hack
Diamond Institute for Infertility and Menopause in New Jersey recently started notifying patients of an incident involving their electronic health records server, maintained by an unnamed third party. In a letter to the New Hampshire Attorney General’s Office, Diamond’s external counsel wrote: On February 27, 2017, Diamond discovered that an unknown individual had gained access to the…
Hard drive with medical information on 2,200 LSU Health patients stolen
Chad Calder reports: A hard drive containing the personal information of 2,200 LSU Health New Orleans patients was stolen in March, and while police quickly made an arrest, the hard drive has not been recovered, the LSU Healthcare Network said Friday. The network said the theft occurred in the Department of Neurology Research on or…
TheDarkOverlord dumps 180,000 patients’ records from 3 hacks
While thousands of their followers on Twitter seem to be eagerly waiting for TheDarkOverlord (TDO) to dump more tv films or episodes of popular series, TDO went non-fiction this morning, dumping patient/medical records from some of their hacks in the healthcare sector last year. All told, almost 180,000 patients had their personal information shared with the world. Two of…
Hill Country Memorial Hospital notifies patients after employee email accessed without authorization
Hill Country Memorial Hospital (“Hill Country”) of Fredericksburg, Texas has advised its patients and some job applicants of a privacy event that may have compromised certain personal information. On April 21, HCMH issued the following press release: Hill Country Memorial Hospital (“Hill Country”) of Fredericksburg, Texas has advised its patients and some job applicants of…
Pentucket Medical notifies employees and patients of data security incident
Speaking of confusing incident reports, Pentucket Medical in Massachusetts reported a somewhat confusing incident to the New Hampshire Attorney General’s Office. It seems that on January 18, four boxes of mainly physician/clinician records were removed from CubeSmart Storage Facility by another client of the facility. Why that client might knowingly remove those cartons, and how…