Loading
The Department of Health and Human Services (HHS) released a resolution agreement yesterday for Idaho State University’s (ISU) HIPAA violations that date back to Aug. 9, 2011. Because ISU’s Pocatello Family Medicine Clinic exposed 17,500 patients’ data by disabling a firewall more »
There is more patient data exposure news from Buffalo, NY, as following the recent health data breach at DENT Neurologic Institute, the Erie County Comptroller’s office (headed by Stefan I. Mychajliw) reported that paper health records with protected health information more »
News 4 Tucson (KVOA.com) reports that at least eight patients in Tucson, Ariz. have had their medical data compromised after paper health records containing dates of birth, Social Security numbers and health insurance information were found in Tempe, Ariz. A more »
A healthcare chief information officer (CIO) saying that he expects to experience a health data breach is not only unusual, but may produce shock and awe in some parts of the healthcare industry. However, having this type of outlook, regardless more »
After learning of a former employee stealing patient identities, Community Health Med-check in Speedway, Ind. has notified about 180 patients that their data may have been compromised. WISH TV in Indiana reports that the employee (who no longer works at more »
To help prepared HIPAA covered entities for the new omnibus rule coming into effect on Sept. 23, the Department of Health and Human Services (HHS) Office for Civil Rights (OCR) has planned four free HIPAA omnibus webinars between June 14 more »
Following problems with patient privacy back in January at Louisiana State University LSU Health Sciences Center (LSUHSC) that involved exposed protected health information (PHI), LSUHSC-Shreveport Vice Chancellor Hugh Mighty said that patient privacy policies will be reviewed and revised by more »
While human error is unavoidable from time to time, what healthcare organizations do to minimize the impact of those mistakes with health data goes under the microscope when breaches occur. DENT Neurologic Institute of Amherst, NY recently experienced a data more »
Pursuant to a law in North Carolina, the Identity Theft Protection Act of 2005, businesses or government agencies are required to report details about security breaches to the state’s Attorney General’s Office. Editors from HealthITSecurity.com have acquired a copy of the North more »
The hacking of a Charlotte medical practice’s database may not have resulted in unauthorized access of patient health information but has led to financial and other personally identifiable information (PII) falling into criminal hands, according to the Charlotte Observer. Andrew more »
There was yet another unencrypted laptop theft in April, as Indiana University Health Arnett, Inc. told 10,300 affected patients of the health data breach via letter on May 10. The laptop was in an employee’s car and may have contained patient more »
The sending of three emails including personally identifiable information of patients between October 2012 and February 2013 has led the Regional Medical Center in Memphis (the MED) to report a health data breach, according to a public notice issued by more »
Lutheran Social Services of South Central Pennsylvania recently made 7,300 current and former senior residents aware of a data breach that was discovered in March. According to YorkDispatch.com, the root of the issue was a malware program that the organization’s more »
A theft of tens of thousands of dollars in the form computer equipment from a city office in Chicago may have exposed personally identifiable information (PII) or protected health information (PHI) to authorized access or abuse. According to a Chicago more »
More than 17,000 patients at the Raleigh Orthopaedic Clinic are potential victims of a health data breach as a result of a third-party vendor’s crooked activities, according to an announcement from the healthcare organization. The clinic has not mentioned the more »
PHIPrivacy.net reports that the University of Rochester Medical Center (URMC) informed 537 former orthopaedic patients that their protected health information (PHI) had been compromised in a recent data breach. It was a familiar storyline, as a resident physician lost an unencrypted USB more »
The other shoe has dropped following April’s William Jennings Bryan Dorn VA medical center data breach. The VA medical center had notified 7405 veteran patients in early April that an unprotected laptop with their personal information on the device had been stolen more »
Back in mid-April at a Little Rock, Ark. Kmart pharmacy, about 788 customers’ prescription information was compromised when thieves took backup that included patient prescriptions, names, addresses and prescriptions. While the Kmart data breach was by no means unique, how more »
Lakeshore Mental Health Institute of Tennessee has been associated with a strange patient data breach of records that date back to 1995, but the incident doesn’t involve any current patients. That’s because, as WBIR.com reports, the organization ended patient admissions more »
Hope Hospice, located in New Braunfels, Texas, has sent out more than 800 patient notifications after an employee sent out sensitive patient data through unsecured email twice since December 2012. The employee sent the recent referral and admission activity reports more »
Javelin Strategy & Research performed an independent study on the impact of healthcare data breaches on patients based on last spring’s Utah Medicaid and Child Health Insurance Program (CHIP) cyber data breach. About 500,000 participants were involved in the March more »
Upstate University Hospital, affiliated with the State University of New York (SUNY) system, told 283 patients recently of a late March data breach involving the theft of a portable electronic device. According to centralny.ynn.com, patient names, date of birth, hospital more »
Child and Family Services (CFS) of New Hampshire alerted 23 patients recently of a physical data breach after a thief stole their files from the main Manchester, NH location between March 15 and March 18, according to PHIPrivacy.net. The non-profit more »
Because a Westcoast Children’s Clinic in Oakland employee dialed a wrong number that led to a stray fax, mental health patient data was sent to the wrong recipient on April 16. The psychological assessment, according to PHIPrivacy.net, included the patient’s more »
After being charged with stealing 130 blood plasma donors’ identities between January 2012 and June 19, 2012, The Telegraph reports that a Macon, Ga. woman has pleaded guilty to federal charges as part of $191,000 income tax fraud scheme. Bridgette more »
