For the second time in as many years, Littleton Regional Hospital has reported a problem with employee snooping. On June 29, the hospital’s Chief Administrator Officer notified the New Hampshire Attorney General’s Office that on May 21, a hospital employee reported that another employee was improperly accessing patient records. The hospital’s audit of their computer…
Tuesday’s batch of newly uncovered breaches
In response to my Freedom of Information request, I received a batch of 15 breach reports received in February by the Maryland Attorney General’s Office. Of the 15, five of them were news to me: M&T Bank reported that an individual walked into their Pikesville branch and while talking with a branch manager, removed another…
Health care sector breaches in the news: just the tip of the iceberg?
Last week, a few mainstream news articles noted that the Identity Theft Resource Center’s database revealed that 113 of the 385 breaches they had recorded for this year involved the health care sector. As Brian Horowitz of eWeek noted, only breaches that include SSN, financial information, or driver’s license numbers are included in ITRC’s database….
Malware gang steal over £700K from one British bank
John Leyden reports: A banking Trojan attack has led to the fraudulent withdrawal of more than $1m from online banking accounts maintained with a UK bank since the start of July, according to security researchers. Web-based malware based on the infamous Zeus cybercrime toolkit is being used to steal money via the unnamed bank’s online…
Laptops stolen from Jewish Hospital contained patient data on 2,089
Charles Gazaway reports that two laptops containing unencrypted personal information were stolen from Jewish Hospital. This appears to be the third breach in recent months involving Jewish Hospital. Previous breaches were reported here. A statement posted on the hospital’s web site says: A potential data breach was discovered at the Jewish Hospital Catheterization Lab following…
UNCG Discovers Health Information Security Breaches; 2,500 Being Notified
From the University of North Carolina – Greensboro (UNGG) statement: Computer security breaches at two UNCG clinics allowed unauthorized access to information about more than 2,500 individuals. The university has mailed letters to the last known addresses of those whose personal information was exposed and posted notices on the clinics’ websites. The two computers infected…