Healthcare Information Security

Latest Health Data Breaches News

Computer Virus Potentially Exposes PHI of 2.5K at OR Clinic

March 23, 2017 - A technician at Lane Community College health clinic recently discovered a computer virus, which may have exposed the PHI of some patients, according to an online statement. The Oregon college health clinic stated the virus may have been sending the names, addresses, phone numbers, diagnoses, and Social Security numbers to an unknown third party for over a year. LCC has since notified potentially...


Articles

Metropolitan Urology Ransomware Attack Affects 18K Patients

by

Wisconsin-based Metropolitan Urology Group (MUG) recently notified patients that it had experienced a ransomware attack on November 28, 206. MUG explained in a statement on its website that it became aware of the incident on January 10, 2017....

VA University Health System Security Breach Impacts 2.7K

by

Virginia Commonwealth University (VCU) Health System recently discovered a data breach potentially impacted over 2,700 patients, according to an announcement in the Richmond Times-Dispatch. On January 10, 2017, VCU Health System became aware...

Allina Health Privacy Incident Possibly Exposes Patient Info

by

Minnesota-based Allina Health recently announced that paper documents were emptied into the trash before the documents could be securely shredded. The documents were from a recycling bin in the physician’s private office, and were to be...

Brand New Day Data Breach from Vendor System Access

by

A California-based Medicare health plan is notifying approximately 14,000 patients that some of their information may have been compromised in a potential vendor data breach. Brand New Day became aware on December 28, 2016 that a contracting...

79K Patients Affected by Emory Healthcare Data Breach

by

Nearly 80,000 patients were potentially impacted by a recent data breach at Georgia-based Emory Healthcare’s Orthopaedics & Spine Center and Brain Health Center (EHC) at Emory Clinic. On January 3, 2017, EHC became aware of an incident...

Rehabilitation Facility Reports Patient Data Files Unattended

by

Catalina Post-Acute and Rehabilitation recently became aware of an incident where paper files containing resident and employee information were left in an unattended area. The patient data files, along with certain employee information, were...

Multnomah County Health Department Suffers PHI Breach

by

On August 24, 2012, a Multnomah County Health Department employee automatically forwarded all emails from an employee county email account to a personal Google email account not maintained by the Oregon county. Some of these emails included PHI,...

Michigan Cybersecurity Breach Could Impact 22K Patients

by

Flint, Michigan-based Singn and Arora Oncology Hematology is notifying 22,000 patients that some of their information may have been accessed in a cybersecurity breach, according to an ABC12 report. An unauthorized user reportedly accessed...

Potentially Unencrypted Laptop Stolen from LA Hospital

by

On December 21, 2016, Children’s Hospital Los Angeles (CHLA) and Children’s Hospital Los Angeles Medical Group (CHLAMG) became aware of a potentially unencrypted laptop stolen on October 18, containing the personal health information...

CoPilot Security Breach Potentially Impacts 220K Patients

by

On Jan 18, 2017, CoPilot Provider Support Services, Inc. announced it detected unauthorized access of one of its databases and notified potentially impacted patients of the security breach. CoPilot has no evidence any information has been distributed...

Delaware Health Data Breach Potentially Impacts 19K

by

At Highmark Blue Cross Blue Shield in Delaware, two subcontractors suffered a breach leaving 16 self-insured customers and 19,000 Highmark members vulnerable to a potential attack. The incident came to light January 13, 2017 after the Delaware...

VA Senator Violates HIPAA in Sharing Patient Information

by

A Virginia State Senator is under fire after an alleged HIPAA breach led to an investigation into unlawful use of patient information. An article by the Richmond-Times Dispatch reported Senator Siobhan S. Dunnavant, an Henrico County physician,...

Southcentral Foundation Cyberattack Affects 14K in AK

by

Alaska-based Southcentral Foundation recently announced on its website that it experienced a data breach regarding PHI on October 18, 2016. Employee email accounts were potentially accessed during a cyberattack. The incident involved the potentially...

New Hampshire Hospital Data Breach Affects 15K Patients

by

A patient at New Hampshire Hospital reportedly hacked into the New Hampshire Department Of Health And Human Services (DHHS), posting information online and creating a potential data breach for 15,000 individuals. DHHS said in an online statement...

Records Containing PHI Stolen from TX Orthaepedic Facility

by

On December 15th, Oak Cliff Orthopaedic Associates announced a theft involving records containing personal PHI from the years 2006 to 2007. According to a report from Oak Cliff, the Lewisville Police Department has since located and returned...

Quest Diagnostics Data Breach Affects 34K Patients

by

Quest Diagnostics recently announced that it became aware of a PHI data breach on November 28, 2016, that may have involved the information of 34,000 patients. On November 26, 2016, an unauthorized third party accessed the MyQuest by Care360®...

Unencrypted Flash Drive Lost, Privacy Incident for 2K

by

OptumHealth New Mexico reported on November 17, 2016 that it experienced a privacy incident affecting approximately 2,000 individuals when an unencrypted flash drive was lost. OptumHealth said that it was notified on September 26, 2016 that a...

PHI Data Breach Stems from Computer Hacking at GA Entity

by

Georgia-based Vascular Surgical Associates recently announced on its website that it had experienced a PHI data breach after one of its computer servers was accessed by an outside party. The incident happened around the time of a software update,...

OCR Warns of Phishing Scam to HIPAA Covered Entities

by

UPDATE: OCR released an additional update on November 30 with new details regarding the phishing scam.  Employees of HIPAA covered entities and their business associates should be aware of an alleged phishing scam that is using Department...

X

SIGN UP and gain free access to articles, white papers, webcasts and exclusive interviews on

HIPAA Compliance
BYOD
Cybersecurity
Data Breaches
Ransomware

Our privacy policy

no, thanks