As noted on this site in July 2012, Boston.com reported that a laptop with patient information had been stolen from a physician’s office at Beth Israel Deaconess Medical Center in May. By August 2013, the breach had cost the medical center over $500,000, but there was at least one silver lining. Now, however, the breach has cost them…
Search Results for: HCA
Other breaches reported by HHS
The following breaches were reported on HHS’s breach tool, but no media coverage or statements have been found to provide additional details. If you have additional information on any of these, please use the Comments section to let me know. Thomas Cristello, Chiropractor PC in New York reported that 914 patients had information on a portable…
NC: Central Dermatology Center notifies patients after discovering malware had been inserted in their system in 2012
Central Dermatology Center (“Central”) announced on November 7, 2014 that on September 25, 2014 it became aware that one of its servers had been compromised by malicious software (“malware”). Central immediately consulted with forensic IT experts to identify and remove the malware and determine exactly what information on the server may have been accessed. The…
Breaking up is hard to do
In August, I reported on a dispute between the State of Texas Department of Health and Human Services and Xerox State Healthcare (formerly ACS Healthcare). The dispute arose after Texas terminated its contract with Xerox, who had operated the state’s Medicaid program and orthodontia pre-authorization program. Texas claimed that Xerox had not returned all records and…
Updated details on the Penn Highlands Brookville hacking incident
Last month, Penn Highlands Brookville in Pennsylvania disclosed a breach affecting patients of Dr. Barry Snyder. The breach did not affect Dr. Snyder or PHB directly, but rather, it appeared that the firm hosting his patient records may have been compromised. At the time, PHB did not name the third-party vendor. Nor did they indicate how many patients were…
If you don't respond to notifications of a leak, the problem doesn't go away – it gets worse
On September 3, SLC alleged that WakeMed was leaking patient information: Type: PII Area: Healthcare First Noted: 3 September 2014 Location: NC Total Records: 5000+ Status: Not Monitoring for Follow Up (Not a client) SLC Security Services LLC has noted that this medical establishment has failed to secure patient records. Observed were patient name and date of birth as well as specific…