Breach of HHS Data from 2015 Becomes Public | Healthcare Informatics Magazine | Health IT | Information Technology Skip to content Skip to navigation

Breach of HHS Data from 2015 Becomes Public

December 28, 2016
by Rajiv Leventhal
| Reprints

A former patient at Concord-based New Hampshire Hospital, a state psychiatric facility, accessed personal files of up to 15,000 Department of Health and Human Services (HHS) clients while working at a public computer in the organization’s library in 2015.

According to a New Hampshire Union Leader report, the breached data included names, addresses, social security numbers and Medicaid identification numbers of clients who received state services before November 2015. Some of the information was posted on social media just days before the Nov. 8 election, the report stated, though state officials quickly discovered the breach and took down the online data.

But, the state announcement on Dec. 27 came 53 days after the personal information posting on social media. HHS Commissioner Jeffrey Meyers said a criminal investigation is underway following the October 2015 incident in which the former patient accessed the personal information files while working at a public computer in the library of the facility.

According to the report, “State officials are convinced that while the personal information wasn’t posted until Nov. 4, this unidentified individual accessed it in October 2015. They believe this hacking was a single incident and did not continue over the intervening 13 months.”

Gov. Maggie Hassan’s spokesman said her administration acted quickly once it belatedly learned of this threat. “This data breach from October 2015 was just recently discovered by the state and is being treated with the utmost seriousness by all relevant state agencies,” said William Hinkle, Hassan’s communications director, per the Union Leader report.

Get the latest information on Cybersecurity and attend other valuable sessions at this two-day Summit providing healthcare leaders with educational content, insightful debate and dialogue on the future of healthcare and technology.

Learn More

Topics

News

Survey: Health IT is Underfunded at European Healthcare Organizations

Health IT is not sufficiently funded and supported at most European healthcare provider organizations, according to an eHealth survey from HIMSS Analytics.

Only 27 Percent of Healthcare Security Execs Confident about Safeguarding Patient Data

Just 27 percent of healthcare security executives have confidence they can safeguard patients’ medical records, even though nearly 80 percent are required to comply with government regulations, according to a recent survey from cybersecurity solutions provider Radware.

FDA Approves First Telehealth-Enabled Cochlear Impact

The U.S. Food and Drug Administration (FDA) approved the first telehealth option to program cochlear implants remotely.

$1 Billion Class Action Lawsuit Filed Against eClinicalWorks

A $1 billion class action lawsuit filed Thursday in the U.S. District Court in the Southern District of New York alleges that electronic health records vendor eClinicalWorks failed “millions of patients by failing to maintain the integrity of patients’ records.”

HHS Secretary Names Three Members to HIT Advisory Committee

The U.S. Department of Health and Human Services (HHS) Acting Secretary Eric D. Hargan named three members to the Health Information Technology Advisory Committee (HITAC), established by the 21st Century Cures Act.

Survey Gauges Health System Preparedness for Quality Payment Program

A new survey indicates that most healthcare organizations are relying on EHRs and population health management solutions for quality performance management. However, survey respondents also report low satisfaction with these solutions, which puts organizations at risk of falling short of their goals for maximizing payment incentives.