Cabinet for Health and Family Services


Location

Frankfort, KY
United States
38° 12' 3.2616" N, 84° 52' 23.8224" W
Date Breach Made Public: 
September 19, 2012
geo: 
Frankfort, KY
United States
Extra Info: 

The Cabinet for Health and Family Services displayed an official notice on their website here: http://chfs.ky.gov/news/HIPAA+Notice.htm

Records Breached: 

2,500 (No SSNs or financial information reported)

An employee was the victim of a phishing attack via email sent by a hacker.  The employee's account was then compromised.  Unauthorized activity was identified on the account within half an hour and the account was immediately disabled.  

Source: 
PHIPrivacy.net

Center 4 Health Enlightenment Enrichment Empowerment Renewal Services (CHEERS)


Location

Phoenix, AZ
United States
33° 26' 54.1572" N, 112° 4' 26.5332" W
Date Breach Made Public: 
September 27, 2012
geo: 
Phoenix, AZ
United States
Records Breached: 

180

A dishonest employee accessed and misused CHEERS client names, Social Security numbers, and birth dates.  She, her sister, and her husband filed 180 tax returns under stolen identities and claimed over $1 million in tax refunds. The three face between three years and five years in prison.

Source: 
Databreaches.net

Centers for Medicare & Medicaid Services (CMS)


Location

Baltimore, MD
United States
39° 17' 25.386" N, 76° 36' 43.8804" W
Date Breach Made Public: 
October 11, 2012
geo: 
Baltimore, MD
United States
Records Breached: 

363 (No SSNs or financial information reported)

The CMS experienced 13 breaches between September 23, 2009 and December 31, 2011.  The CMS failed to notify beneficiaries of seven of the breaches in a timely manner.  The HHS's Office of the Inspector General (OIG) also alleges that the notifications mailed to beneficiaries did not disclose what type of information had been exposed, the date the breach occurred, or how CMS was working to prevent future breaches.

Source: 
PHIPrivacy.net

Office of Dr. Philip P. Corneliuson


Location

Fresno, CA
United States
36° 44' 48.6312" N, 119° 46' 21.3132" W
Date Breach Made Public: 
October 22, 2012
geo: 
Fresno, CA
United States
Extra Info: 

Those with questions may call (559) 261-0185.

Records Breached: 

Unknown

An office burglary resulted in the theft of a computer.  The incident was discovered on September 15, 2012.  Patient names and Social Security numbers were on the computer.

UPDATE (10/24/2012): The computer contained medical records and insurance information.

Source: 
California Attorney General

University of Georgia (UGA)


Location

Athens, GA
United States
33° 57' 0" N, 83° 22' 59.9988" W
Date Breach Made Public: 
October 16, 2012
geo: 
Athens, GA
United States
Records Breached: 

8,500

The passwords of two University of Georgia (UGA) IT employees were reset and misused by an intruder.  Names, Social Security numbers, and other sensitive data of current and former school employees may have been exposed. The breach may have begun as early as September 28, 2012.

Source: 
Media

Nationwide Mutual Insurance Company and Allied Insurance


Location

Columbus, OH
United States
39° 57' 40.2336" N, 82° 59' 55.6584" W
Date Breach Made Public: 
November 16, 2012
geo: 
Columbus, OH
United States
Extra Info: 

Affected Georgia consumers may call 1-800-760-1125. Other consumers with questions may call 1-800-656-2298.

Records Breached: 

1,000,000

A portion of the computer network used by Nationwide and Allied Insurance agents was breached by cyber criminals on October 3.  The attack was discovered on the same day and contained.  On October 16, it was determined that names, Social Security numbers, driver's license numbers, dates of birth, marital status, gender, occupation, and employer information had been stolen.  Affected parties were identified on November 2 and notifications were sent on November 16.

Source: 
California Attorney General

Florida Hospital Tampa (formerly University Community Hospital Medical Center), Crothall Healthcare, Naval Medical Center (Bob Wilson Naval Hospital)


Location

Tampa, FL
United States
27° 57' 2.07" N, 82° 27' 25.8408" W
Date Breach Made Public: 
November 30, 2012
geo: 
Tampa, FL
United States
Records Breached: 

45

Three people were arrested for their roles in filing 225 fraudulent tax returns.  They face charges of conspiracy, theft of government property, and aggravated identity theft.  About $555,000 in refund money was obtained.  One of the defendants worked at Florida Hospital Tampa through a maintenance and housekeeping company.  Information came from a variety of medical centers in California and Florida.

Source: 
PHIPrivacy.net

Carolinas HealthCare System


Location

Charlotte, NC
United States
35° 13' 37.5132" N, 80° 50' 35.2572" W
Date Breach Made Public: 
December 7, 2012
geo: 
Charlotte, NC
United States
Records Breached: 

6,300 (5 SSNs reported)

An unauthorized electronic intrusion may have affected up to 6,300 patients from Carolinas Medical Center-Randolph. The intruder accessed a provider's email account and could have obtained patient names, dates and times of service, dates of birth, diagnosis and prognosis information, medications, results, and referrals.  The Social Security numbers of five patients who had their Social Security numbers sent through or received by the email account may have also been obtained.

 

Source: 
PHIPrivacy.net

Omnicell, University of Michigan Health System


Location

Ann Arbor, MI
United States
42° 16' 50.9736" N, 83° 44' 34.9368" W
Date Breach Made Public: 
December 22, 2012
geo: 
Ann Arbor, MI
United States
Records Breached: 

3,997 (No SSNs or financial information reported)

An electronic device was stolen from an Omnicell employee's car on November 14.  The device was not encrypted and contained the medication, demographic, and health information of 4,000 patients from three hospitals in the University of Michigan Health System.  

Source: 
PHIPrivacy.net

First Step Counseling, Inc.


Location

Metuchen, NJ
United States
40° 32' 35.376" N, 74° 21' 47.538" W
Date Breach Made Public: 
December 4, 2012
geo: 
Metuchen, NJ
United States
Records Breached: 

638 (No SSNs or financial information reported)

An unauthorized disclosure of paper records may have exposed patient information.  The breach may have taken place between May 1, 2011 and August 5, 2011.  It was discovered or reported on November 16 of 2012.

Source: 
HHS via PHIPrivacy.net
Showing 581-590 of 680 results
Syndicate content


X

Sign In!

Loading