Healthcare Information Security

HIPAA Technical Safeguards

Kentucky passes state data breach notification law

by Patrick Ouellette

Following Kentucky Auditor of Public Accounts (APA) Adam H. Edelen explaining in detail back in January why Kentucky needed a breach notification law, the state recently became the 47th to ratify data breach notification legislation. On April...

UPMC alerts employees of data breach, fraud activity

by Patrick Ouellette

The University of Pittsburgh Medical Center (UPMC) reported that as many as 27,000 employees’ may have been affected by a data breach it learned of in February. It appeared as though the compromised information was accessed with access...

LewisGale Regional Health System experiences data breach

by Patrick Ouellette

LewisGale Regional Health System of Salem, Va. recently reported a multi-state data breach that affected 400 patients, 40 of which were under LewisGale’s care. The breach, wdbj7.com reported, occurred in LewisGale’s billing department...

Mobile health IT security: Bolstering technology with policy

by Patrick Ouellette

One way or another, mobile devices are finding their way into healthcare organizations’ four walls and onto their networks. Each organization’s mobile needs vary based on size and available resources and many have come a long way...

University Urology of Tenn. releases data breach statement

by Patrick Ouellette

University Urology, P.C. of Knoxville, Tenn. released a statement on April 11 that detailed how 1,144 patients’ data had been exposed in 2013 and early 2014. Though the information was limited to patient names and addresses, University...

Texas nonprofit advocacy group tells 2,934 of PHI breach

by Patrick Ouellette

An Austin, Texas nonprofit advocacy group for children with developmental disabilities, EveryChild, Inc., recently announced that it has informed 2,934 families of a potential data breach, according to mysanantonio.com. The group learned of the...

La Palma Intercommunity Hospital announces 2012 data breach

by Patrick Ouellette

Following a year and a half delay, La Palma Intercommunity Hospital recently announced that it has alerted an unknown number of patients of a September 2012 internal data breach that may have compromised their data. However, according to the...

Mich. Health Dept. reveals 2,595-patient data breach

by Patrick Ouellette

The Michigan Department of Community Health (MDCH) announced on April 3 that it had experienced a patient data breach on January 30 or 31 when an encrypted laptop and unencrypted flash drive were stolen from a State Long Term Care Ombudsman’s...

Los Angeles County DHS adds 170,200 patients to breach list

by Patrick Ouellette

About a month after Los Angeles County Department of Health Services (DHS) reported a 168,000-patient data breach at its billing company, Sutherland Healthcare Solutions, it has added 170,200 patients to the breach list. According to the Los...

Kaiser Permanente reports 2011 research server malware attack

by Patrick Ouellette

The Kaiser Permanente Northern California Division of Research will begin notifying an unknown number of patients today of a potential data breach that (1) happened in October 2011 and (2) it learned of on Feb. 12, 2014. According to a sample...

Phishing attack exposes Franciscan Health System patient data

by Patrick Ouellette

Despite the growing number of threats that healthcare security professionals must stay current with, many are making concerted efforts to devote time and resources to preventing human error breaches, including phishing attacks. It appears as...

Palomar Health notifies 5,000 patients of health data breach

by Patrick Ouellette

Following a burglary of a laptop and two flash drives back in late February, Palomar Health of California announced that about 5,000 patients’ data was exposed in the breach. According to U-T San Diego, the devices had been stolen from...

Report: Walgreens ‘Well Experience’ exposed patient data

by Patrick Ouellette

Even when an organization such as Walgreens that handles protected health information (PHI) tries to improve the consumer experience, it must tread lightly in doing so. Within the past year or so, Walgreens has released its “Well Experience”...

HHS: Monroeville, Pa. did not breach HIPAA regulations

by Patrick Ouellette

As much as healthcare organizations, as well as the public HIPAA covered entities that handle patient data in some form, keep track of data breaches and government penalties for compliance failures, an organization being absolved of HIPAA breach...

GAO rounds up VA cybersecurity shortcomings, needs

by Patrick Ouellette

The U.S. Government Accountability Office (GAO) released a report today, “VA Needs to Address Long-Standing Challenges“, that summarizes the numerous reasons the U.S. Department of Veteran Affairs (VA) must attend to long-term information...

Stanford Hospital, BAs agree to $4 million breach settlement

by Patrick Ouellette

As a result of a data breach that occurred back in 2010, Stanford Hospital & Clinics and a former contractor will reportedly have to dole out more than $4 million to settle a class action lawsuit. According to the San Jose Mercury News, 20,000...

St. Peter’s University Hospital uses patient identity matching

by Nicole Freeman

Saint Peter’s University Hospital in New Brunswick, New Jersey has signed a three-year contract with Malta Systems to fully-implement the technology company’s Privasent system. The hospital began a pilot program with the patient identity...

Google requires encrypted HTTPS connections for email

by Nicole Freeman

Google has announced that, beginning today, all messages sent and received within Gmail accounts will use an encrypted Hypertext Transfer Protocol Secure (HTTPS) connection, regardless of device or connection source, according to a message on...

Yellowstone Boys and Girls Ranch exposes mental health data

by Nicole Freeman

Yellowstone Boys and Girls Ranch (YBGR) in Montana, a mental health treatment organization for children and teens, reported that its Community Based Services On-Call Binder was lost or destroyed sometime in 2013, according to a report from the...

Maryland DDA computer breach affects 9,700 clients

by Nicole Freeman

The Maryland Developmental Disabilities Administration (DDA) reported that its case management provider Service Coordination Inc.’s (SCI) computer systems were hacked between October 20 and 30. The breach compromised about 9,700 patients’...

X

SIGN UP and gain free access to articles, white papers, webcasts and exclusive interviews on

HIPAA Compliance
BYOD
Cybersecurity
Data Breaches
Ransomware

Our privacy policy

no, thanks