DataBreaches.Net

There’s an update to the Coulee Medical Center breach, where 2,500 patients were notified that a physician had improperly shared PHI with his wife between January 2010 and November 2013.  He subsequently claimed that his wife, an actuary, was helping him develop a statistical tool for analyzing data. Even so… From HHS’s summary of their…

In today’s installment, we update one Pruitt breach reported on this blog in December 2013, and we also find out about another Pruitt breach, not previously reported on this site. HHS has updated its breach entry for a September 2013 incident involving a UHS-Pruitt stolen laptop with data on 1,300 patients: “A manager’s unencrypted laptop computer was stolen…

In November of 2011, this site reported on a breach involving Lawrence Memorial Hospital in Kansas. Available information at the time indicated that 8,000 patients’ financial information might have been accessed. The online payment system was provided by Mid Continent Credit Services. Yesterday, HHS updated their entry on the incident. Their records show that 8,275…

In January 2011, this site noted that Southern Perioperative Services in Alabama had reported a breach to HHS that occurred in November 2010 and affected 2,000 patients. Other than HHS’s coding of the incident as “Theft, Other Portable Electronic Device, Other,” no additional details were available. Yesterday, HHS updated its entry for the breach to…

There have been two important developments in the FTC’s administrative case against LabMD over data security. Today, FTC Administrative Law Judge Chappell issued an order that agreed with LabMD that as a non-party, Tiversa had no right to submit any filing without first seeking – and obtaining – leave to intervene. Tiversa had neither sought nor…