Kaiser Permanente Northern California Department of Research is notifying patients of a breach that they believe occurred in October 2011. OK, now that I have your attention, on or about April 3, they will begin sending out breach notification letters that say that on February 12, 2014, they discovered that a server used to store…
Your employee info is in the mail….. somewhere….
So TrustHCS hires Human Resource Advantage (“HR Advantage”) to provide employment resources support. HR Advantage stupidly (yes, I said stupidly) sends unencrypted employee information on a thumb drive via U.S. mail to TrustHCS. The information included names, Social Security numbers, dates of birth, bank account information, postal and email addresses, and any leave of absence…
TX: EveryChild notifies 2,934 families after computers with PHI stolen
Peggy O’Hare reports: A nonprofit advocacy group for children with developmental disabilities is notifying 2,934 families of a potential data breach that occurred when someone stole computers from the group’s Austin office. EveryChild, Inc. said the computers, which were discovered missing Feb. 2, contained clients’ birthdates, Social Security numbers, Medicaid numbers, photos and health information. Read more…
Update: Archdiocese of Seattle data breach appears to target Oregon Catholics
KGW reports: A data breach at the Archdiocese of Seattle that led to rampant tax fraud appears to have spread to Oregon. The Archdiocese of Portland said hackers have stolen Social Security numbers from Catholic Church employees and volunteers in order to file false tax returns and claim the refund. So far, 105 Catholic Oregonians…
LewisGale Regional Health System dealing with insider data breach
Susan Bahorich reports what appears to be an insider breach affecting patients of Hospitalists of Tennessee/Salem Hospitalists: WDBJ7 learned Wednesday that patient information from the hospital’s billing department may have been compromised. The Secret Service tells WDBJ7 this is a multi-state investigation. A LewisGale spokesperson says approximately 40 local patients are affected. We’re talking about…
Federal Agencies Need to Enhance Responses to Data Breaches – GAO
From a GAO report (GAO-14-487T) released today, the highlights: The number of reported information security incidents involving personally identifiable information (PII) has more than doubled over the last several years (see figure). As GAO has previously reported, major federal agencies continue to face challenges in fully implementing all components of an agency-wide information security program, which…