Greenwood Leflore Hospital in Greenwood, Mississippi has notified 3,750 patients after five bins of old x-rays with limited patient information was stolen from hospital grounds. From the notice posted on their website: Notice to Patients of X-Ray Films Made in 2007 or Earlier That Were Removed from the Hospital Without Authorization We are providing this…
Four more breaches reported by Baylor Health affiliates (updated)
[Update: The Irving incident affected 2,308 and the McKinney incident affected 1,253. Baylor Health declined to discuss their internal security policies, so we do not know if the doctors were violating any policy by having unencrypted PHI in their email accounts or if Baylor Health permits this.] Original article: After posting the two phishing reports from Baylor…
AHIMA offers data breach toolkit to healthcare providers and suits their action to their advice
Over on HealthITSecurity.com, Patrick Ouellette notes that American Health Information Management Association’s (AHIMA) recently published a Breach Management Toolkit. The tool requires an AHIMA membership, but the Journal of AHIMA detailed what the tool has to offer providers and a sample of required elements within a data breach notification letter. Patrick reports that the toolkit discusses five critical pieces of…
Target breach: 50,000 card numbers from Minn. for sale this week
Maury Glover reports: It’s been months since hackers stole the credit and debit card information of millions of Target customers, but the effects are far from over. In fact, thousands of Minnesota credit card numbers are currently for sale. […] In the wake of the breach, Target told customers not to cancel their credit cards…
Dozens of New Jersey City University employees victims of tax refund fraud
Mike D’Onofrio reports: Dozens of employees at New Jersey City University had their identities stolen and federal tax returns filed in their names after a security breach allowed access to their personal information., school and employee union officials confirmed. Union leaders at the Jersey City university say as many as 39 union members have been…
UK: Surgery apologizes for exposing patient information on the Internet
Ugh. The Daily Echo reports: A Hampshire doctors’ surgery has apologised after confidential data about more than 100 patients was made public. A major IT glitch resulted in information about patients at the Fordingbridge Surgery, including their names, addresses and NHS numbers, accidentally appearing online. A house-hunter was researching a property in the area when an Internet…