Va. Health System Discovers Four-Year HIPAA Breach | Healthcare Informatics Magazine | Health IT | Information Technology Skip to content Skip to navigation

Va. Health System Discovers Four-Year HIPAA Breach

January 3, 2014
by Rajiv Leventhal
| Reprints

The five-hospital Riverside Health System in Newport News, Va. has announced it has discovered a security breach involving an employee who had inappropriately accessed 919 medical records spanning September 2009 through October 2013.

The breach was discovered during a random company audit on Nov. 1. After an investigation, Riverside's Compliance Department determined that the employee inappropriately accessed patient information over a four-year span, which included social security numbers, a summary of the patient history, and other information that appears in Riverside's electronic medical record (EMR).

The employee, who according to the Daily Press was a licensed practical nurse with Riverside Medical Group, has since been terminated, Riverside officials said in a statement.

Riverside is contacting the patients affected by this event, all of whom will be offered complementary three-bureau credit monitoring. The company has attempted to send notification letters to all patients and next of kin to those known to be deceased, but has been unable to locate current contact information for all affected patients.

Get the latest information on Health IT and attend other valuable sessions at this two-day Summit providing healthcare leaders with educational content, insightful debate and dialogue on the future of healthcare and technology.

Learn More



Personalized Medicine Awareness Low Among U.S. Adults, Survey Finds

Genetics and personalized medicine are not top of mind for the general public in the U.S., according to a recent survey from GenomeWeb and the Personalized Medicine Coalition.

Industry Organizations Praise Senate Passage of VA Mission Act

The U.S. Senate on Wednesday passed, by a vote of 92-5, a major Veterans Affairs (VA) reform bill that includes health IT-related provisions to improve health data exchange between VA healthcare providers and community care providers.

NIH Issues Funding Announcement for All of Us Genomic Research Program

The National Institutes of Health’s (NIH) “All of Us” Research Program has issued a funding announcement for genome centers to generate genotype and whole genome sequence data from participants’ biosamples.

MGMA: Physician Compensation Data Illustrates Nationwide PCP Shortage

Primary care physicians’ compensation rose by more than 10 percent over the past five years, representing an increase which is nearly double that of specialty physicians’ compensation over the same period, according to the Medical Group Management Association (MGMA).

Circulation, Buoy Health Collaborate on Integrated Platform for Patient Transportation

Boston-based startup Circulation Health, a ride-ordering exchange that coordinates medical transportation logistics using Lyft and other transportation partners, is partnering with Buoy Health, also based in Boston, to integrate their platforms to provide patients with an end-to-end healthcare experience.

HITRUST Provides NIST Cybersecurity Framework Certification

The Health Information Trust Alliance (HITRUST), security and privacy standards development and accreditation organization, announced this week a certification program for the National Institute of Standards and Technology's (NIST) Cybersecurity Framework (Framework).