Milton J. Valencia reports that documents containing the personal medical information of at least 66 patients at Massachusetts General Hospital was lost this month when an employee apparently left them on an MBTA train. The lost billing records contained names, dates of birth, and medical information such as diagnoses and the name of the provider…
TX: Loan documents found in trash
Deborah Wingley of ABC News reports that boxes filled with loan documents containing personal information, including names and Social Security numbers, were found in the trash. The loan applications were taken by Royce Homes. The state is investigating.
LifeWatch notifies patients of exposed data
LifeWatch Corp., a company specializing in ambulatory health monitoring, has notified (pdf) the New Hampshire Attorney General’s Office that due to a configuration error, some patient files were available on public areas of their web site for about three weeks last month. Personal information in the exposed files included the patients’ names, dates of birth,…
UK: ICO takes action against Camden PCT for data blunder
From the Information Commissioner’s Office: The Information Commissioner’s Office (ICO) has taken enforcement action against Camden Primary Care Trust (PCT) following a breach of the Data Protection Act. Computers containing 2,500 individuals’ names, addresses and medical diagnoses were left beside a skip inside the grounds of St. Pancras Hospital in August 2008. The computers, which…
LA: BR man arrested for allegedly stealing identity of local officers and deputies
Jim Shannon of WAFB reports on an ID theft case with a bit of a twist: Alton Davis was arrested for the identity theft of 31 current and retired Baton Rouge police officers, going back to 2005. But the scope of the problem is still unknown and may affect other municipal workers. Nothing in the…
Large cache of cc numbers likely not from defunct processor
As a follow-up to the story covered here, John Leyden of The Register is reporting: […] However, a security expert told us the information was actually from either a dump or attack site used for credit card fraud. This cybercrime site, registered by someone in Vietnam, is no longer operational. The data – viewable through…