TRENDING:

Stolen Laptop: Breach Affects 34,000

Howard University Hospital Notifies Patients Howard Anderson (ismg_editor) • April 3, 2012    
Stolen Laptop: Breach Affects 34,000

Howard University Hospital in Washington, D.C., is notifying more than 34,000 patients about a data breach involving the theft of a former contractor's unencrypted personal laptop computer from a vehicle.

See Also: Live Webinar | How To Meet Your Zero Trust Goals Through Advanced Endpoint Strategies

The former contractor, who the hospital is not naming, downloaded the patient files to the laptop in violation of the hospital's policies and HIPAA guidelines, the hospital acknowledges in a statement on its website. The contractor, who ceased working for the hospital last December, reported the theft to police on Jan. 25.

The laptop included Social Security numbers of some of the patients; those patients are being offered one year's worth of free credit monitoring and identity theft alert coverage. Other data on the laptop includes names, addresses, identification numbers, medical records numbers, birth dates, admission dates, diagnosis-related information and discharge dates.

So far, there's no evidence that any of the patient files have been accessed, the hospital reports. In the wake of the incident, the hospital has strengthened its contractor policies to make clear that data and laptop encryption are required. Plus, the hospital has announced it is encrypting all laptops issued to staff members.

The hospital has posted a frequently asked questions guide on its website.

Previous
Is Global Payments the Only Breach?
Next
Breaches: Effective Security Measures

About the Author

Howard Anderson

Howard Anderson

Former News Editor, ISMG

Anderson was news editor of Information Security Media Group and founding editor of HealthcareInfoSecurity and DataBreachToday. He has more than 40 years of journalism experience, with a focus on healthcare information technology issues. Before launching HealthcareInfoSecurity, he served as founding editor of Health Data Management magazine, where he worked for 17 years, and he served in leadership roles at several other healthcare magazines and newspapers.



Around the Network

Beating Clever Phishing Through Strong Authentication
Beating Clever Phishing Through Strong Authentication
Addressing the Shortage of Medical Device Cyber Talent
Addressing the Shortage of Medical Device Cyber Talent
Ransomware: Did Law Enforcement Lose Ground Early On?
Ransomware: Did Law Enforcement Lose Ground Early On?
US Army Banks on Cyber Defense Based on Zero Trust - Part 2
US Army Banks on Cyber Defense Based on Zero Trust - Part 2
Cyberwarfare's Role in the Next National Defense Strategy
Cyberwarfare's Role in the Next National Defense Strategy
Why Ransomware Victims Avoid Calling It 'Ransomware'
Why Ransomware Victims Avoid Calling It 'Ransomware'
Digital Army 2030: Modernizing Technology at Scale - Part 1
Digital Army 2030: Modernizing Technology at Scale - Part 1
Ransomware Group Zeppelin's Costly Encryption Mistake
Ransomware Group Zeppelin's Costly Encryption Mistake
Cybersecurity Analysis of the FTX Crypto Heist: Part One
Cybersecurity Analysis of the FTX Crypto Heist: Part One
Cybersecurity Analysis of the FTX Crypto Heist: Part Two
Cybersecurity Analysis of the FTX Crypto Heist: Part Two

Continue »

Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing healthcareinfosecurity.com, you agree to our use of cookies.