On Friday, HHS added 14 new incident reports to its breach tool. Half of them are organizations affected by the ADPI breach, and I’ve added their numbers to the list I’ve been keeping of affected organizations and number notified of that incident. Another breach HHS added today was one already covered on this blog….
Search Results for: HCA
AU: Hackers’ extortion bid on schools
I don’t recall ever seeing an media report on an extortion/ransom attempt on a school, but here’s a case out of Australia, where they also seem to have more media reports of ransomware in the healthcare and small business sectors than we do. As reported by the Herald Sun: Schools have emerged as a new…
State Farm and Nationwide fail to convince WV Supreme Court to let them retain – and share – medical records obtained under protective orders
Here’s another recent and interesting privacy case in West Virginia discussed by Bordas & Bordas, who have just been added to my bookmarks: In September, they wrote: Insurance companies routinely gather medical records in the course of taking applications and processing claims. What do you think they do with this private healthcare information? The answer…
Third Annual Benchmark Study on Patient Privacy & Data Security
The Third Annual Benchmark Study on Patient Privacy & Data Security by Ponemon Institute, sponsored by ID Experts® was released today. Their findings are what we would expect, i.e., fairly discouraging, with entities reporting even more multiple breaches than previously. From their executive summary: … healthcare organizations face an uphill battle in their efforts to…
HITRUST's Analysis of U.S. Breach Data Finds Little Progress and Concern for Un-reported Breaches
The following is a press release from HITRUST, released today: -According to the Health Information Trust Alliance’s (HITRUST) analysis of U.S. healthcare data breaches from 2009 to the present, the healthcare industry has made little progress in reducing the number of breaches with troubling statistics seen from the same types of organizations, breaches and locations….
University of Virginia Medical Center reports lost handheld device held patients' personal and medical information (updated)
The University of Virginia Medical Center has posted a notice of a breach: The University of Virginia Medical Center and Continuum Home Infusion are committed to protecting the personal information entrusted to us by our patients and potential patients referred to us for care. Regrettably, this notice is regarding an incident involving some of that…