BreachExchange mailing list archives

Previous By Date Next
Previous By Thread Next

USF patient information breach probed

From: Jake Kouns <jkouns () opensecurityfoundation org>
Date: Tue, 10 Sep 2013 13:28:10 -0400
http://www.bizjournals.com/tampabay/news/2013/09/09/usf-patient-information-breach-probed.html

he University of South Florida is investigating a protected health
information data breach by an employee.

The person responsible for the data breach is no longer a university
employee, said Anne Baier, spokeswoman for USF Health.

How the personal information involving patients treated by USF
physicians atTampa General Hospital was obtained is under
investigation. Baier said 140 patients were affected by the breach.

The breach was uncovered in late May when police pulled over the USF
employee, identified only as a custodial worker, and searched the
employee’s car, finding patient information such as names, dates of
birth and Social Security numbers.

Patients possibly affected by the security breach were notified via a
letter from USF in July.

“This involves someone who worked at USF, not at Tampa General,” said
hospital spokesman John Dunn.

It is TGH’s policy in cases of patient data breaches to provide a year
of free credit monitoring for the people affected, he said.

In the letter to patients involved in the data breach, Patricia J.
Bickel, USF’s compliance and privacy officer at USF Health,
recommended people place fraud alerts on credit files and take other
precautions to prevent identity theft, false tax returns and other
potential problems.

USF officials have not received any indication that the patients’
information has been used by an unauthorized person, Baier said.

The records came from the billing department of the USF Physicians
Group inside the USF Health Faculty Office Building.
_______________________________________________
Dataloss Mailing List (dataloss () datalossdb org)
Archived at http://seclists.org/dataloss/
Unsubscribe at http://lists.osvdb.org/mailman/listinfo/dataloss
For inquiries regarding use or licensing of data, e-mail
        sales () riskbasedsecurity com 

Supporters:

Risk Based Security (http://www.riskbasedsecurity.com/)
Risk Based Security offers security intelligence, risk management services and customized security solutions. The 
YourCISO portal gives decision makers access to tools for evaluating their security posture and prioritizing risk 
mitigation strategies. Cyber Risk Analytics offers actionable threat information and breach analysis.
Previous By Date Next
Previous By Thread Next

Current thread: