Monthly Archives: February 2017

Emory Healthcare Database Breach: What Happened? – BankInfoSecurity.com

February 28th, 2017|Categories: Healthcare Patient Privacy in the News|

Misconfigured MongoDB and Similar Databases Still Falling Victim to Attacks Marianne Kolbasuk McGee (HealthInfoSec) • February 28, 2017     An attack on a database used by Emory Healthcare for patient appointments is the largest health data breach reported to federal regulators so far in 2017. The incident, which exposed data on almost 80,000 individuals, [...]

Vanderbilt hospital employees breached patient records – The Tennessean

February 24th, 2017|Categories: Healthcare Patient Privacy in the News|

Vanderbilt University Medical Center will be sending letters to more than 3,000 patients whose personal information was inappropriately accessed by a pair of patient transporters. An audit of electronic patient files conducted by the VUMC Privacy Office found that two people who worked as patient transporters looked at 3,247 medical records between May 2015 and December [...]

15 latest healthcare data breaches, security incidents – Beckers Hospital Review

February 24th, 2017|Categories: Healthcare Patient Privacy in the News|

The following data breaches and security incidents were reported within the past eight weeks on Becker's Hospital Review. They are listed here in reverse chronological order from when they were reported. 1. A breach of a reinsurance broker contracted by the Louisiana Health Cooperative, a health insurance company, may have affected up to 8,000 former policyholders. [...]

7445 patients notified of University Healthcare information breach – Martinsburg Journal

February 24th, 2017|Categories: Healthcare Patient Privacy in the News|

MARTINSBURG — More than 7,000 patients of WVU Medicine University Healthcare were notified of a breach of unsecured personal patient protected health information after discovering that an employee had accessed patient information without authorization. University Healthcare officials became aware Jan. 17, of an FBI and local law enforcement investigation into the unauthorized access, use and [...]

Healthcare data breaches “mostly caused by insiders” – Naked Security

February 23rd, 2017|Categories: Healthcare Patient Privacy in the News|

by Bill Brenner Targeting healthcare organizations remains about as easy as shooting fish in a barrel. The industry has one of the lowest rates of data encryption and the security culture is severely lacking. Employee education remains poor, leading to a lot of costly mistakes in how patient data is handled. Naked Security has written about the [...]

Health data breaches and hacker attacks spiked dramatically in 2016 – TechTarget (blog)

February 17th, 2017|Categories: Healthcare Patient Privacy in the News|

Health data breaches triggered by hacking attacks spiked by 320% in 2016 and ransomware became widespread, according to a report by a health IT cybersecurity firm. Released the week before HIMSS 2017, the report from CynergisTek, Inc. division Redspin, said that 81% of the health data breaches were caused by hacker attacks specifically, rather than [...]

Healthcare provider agrees to pay $1.1M over data breach – NorthJersey.com

February 17th, 2017|Categories: Healthcare Patient Privacy in the News|

Horizon Healthcare Services has agreed to pay $1.1 million and improve data security practices, authorities said. The state’s largest healthcare provider made the agreement to settle allegations that it failed to properly protect the privacy of nearly 690,000 New Jersey policyholders whose personal information was contained on two laptops stolen from the insurer’s Newark headquarters, [...]

$5.5M HIPAA Deal Matches Biggest Privacy Payout – Law360

February 16th, 2017|Categories: Healthcare Patient Privacy in the News|

By Dani Kass Law360, New York (February 16, 2017, 6:36 PM EST) -- Florida’s Memorial Healthcare Systems has agreed to pay $5.5 million to the federal government to settle allegations that it didn’t properly protect patient data in a record-tying Health Insurance Portability and Accountability Act deal, the feds announced Thursday. The U.S. Department of [...]

Memorial Healthcare Systems to pay $5.5M over potential HIPAA violations – Healthcare Dive

February 16th, 2017|Categories: Healthcare Patient Privacy in the News|

Dive Brief: Memorial Healthcare Systems has paid HHS $5.5 million to settle potential HIPAA violations, HHS disclosed on Thursday. The six-hospital nonprofit system disclosed to HHS' OCR that 115,143 individuals' protected health information (PHI) had been impermissibly accessed by employees and impermissibly disclosed to affiliated physician office staff. The settlement comes weeks after Children's Medical Center [...]

Pending lawsuit makes patient privacy complaint against Fulton County Health Dept. – WBRC FOX6 News – WBRC.com

February 15th, 2017|Categories: Healthcare Patient Privacy in the News|

(Source: WGCL) EAST POINT, GA (CBS46) - CBS46 is the only news station to investigate the South Fulton Mental Health Center for leaving hundreds of patient records in a dumpster where anyone could find them. That put these patients at risk for identify theft or other frauds. (MORE: Fulton County clinic dumps sensitive medical records in [...]