June 11, 2013 Rajiv Leventhal
news
The California-based Sutter Health East Bay region has notified 4,500 patients that their personal information was taken from the hospital during an unrelated criminal investigation.
June 7, 2013 Gabriel Perna
news
The University of Massachusetts (UMass) Amherst has announced a data breach at its Center for Language, Speech, and Hearing. The university says protected health information was possibly revealed after a workstation was inadvertently infected with a malware program.
May 20, 2013 Rajiv Leventhal
news
Siemens Healthcare, a Malvern, Penn.-based company that prints and mails doctors’ bills on behalf of LSU Health Shreveport, and LSU Health Shreveport are notifying patients of a computer issue which resulted in an unintentional disclosure of personal health information.
May 14, 2013 Gabriel Perna
news
The healthcare world continues to be plagued by data breaches. Two providers, Indiana University Health Arnett, Inc. in Lafayette, Ind. and the Regional Medical Center in Memphis, Tenn., both announced incidents, separately, this past week.
May 10, 2013 Rajiv Leventhal
news
North Carolina-based Raleigh Orthopaedic Clinic has notified approximately 17,300 patients that x-ray films belonging to them and taken prior to 2008 may have been provided to a third-party vendor, which sold the films to an Ohio-based recycling company that harvested the silver from the X-rays.
May 8, 2013 John DeGaspari
news
The Frisco, Texas-based Health Information Trust Alliance (HITRUST) has announced that several healthcare organizations will require their business associates to participate in the HITRUST Common Security Framework (CSF) Assurance Program and submit CSF assessment reports as part of their information protection programs.
May 6, 2013 Rajiv Leventhal
news
The University of Rochester Medical Center has sent letters to a group of 537 former orthopaedic patients, alerting them that a resident physician misplaced a USB computer flash drive that carried protected health information.
April 30, 2013 Rajiv Leventhal
news
Officials at the New Braunfels, Tx.-based Hope Hospice have notified 818 patients that through a routine internal compliance audit on February 25, 2013, it discovered a potential security breach after finding an employee had e-mailed a report of recent referral and admission activity to themselves via an unsecured channel on December 27, 2012 and February 22, 2013.
April 30, 2013 Jeff Smith, Director of Public Policy at CHIME
article
The Centers for Medicare & Medicaid Services (CMS) and the Office for the National Coordinator of Health IT (ONC) will host a listening session on May 3 to discuss the increase in code levels billed for some Medicare services, and appropriate coding in an increasingly electronic environment.
April 22, 2013 Gabriel Perna
news
Two providers, Florida Hospital, part of the Altamonte Springs, Fla.-based Adventist Health System, and Glen Falls Hospital, a 410-bed not-for-profit community hospital, are facing separate lawsuits for breaching their patients’ data.
April 10, 2013 John DeGaspari
news
In response to heightened awareness and concerns about cyber threats, attacks and incidents, the Health Information Trust Alliance (HITRUST) announced today new guidance for healthcare organizations wanting to assess the state of their cybersecurity preparedness. The guidance identifies an appropriate subset of controls within the HITRUST Common Security Framework (CSF) that are most directly related to detecting and thwarting cyber-related breaches and allows organizations to assess against the cyber-specific controls and receive a snapshot of their cyber capabilities and readiness.
March 18, 2013 Rajiv Leventhal
news
Lawrence Melrose Medical Electronic Record Inc. (LMMER), a Melose, Mass.-based electronic medical record (EMR) firm, has sent a letter to the New Hampshire Attorney General’s office notifying authorities of a data breach involving its EMR software.