HIPAA compliance breaches
Third party error compromised unencrypted PHI
A mistake by a third-party vendor left unencrypted patient data exposed, leading to a data breach for New York’s Bronx Lebanon Hospital Center.
The highly sensitive medical records of over 7,000 patients were not encrypted or protected with a password. They were reportedly left accessible as a result of a mis-configured backup server hosted by a third-party records management vendor.
Read more ...
Stolen laptop leads to breach
Lifespan, Rhode Island's largest health network, informed 20,000 patients that an employee laptop containing patient data went missing. The computer, which was unencrypted and not password protected, was stolen from an employee’s car in February. The employee’s work emails stored on the MacBook contained patient information.

Read more ...
|