GA: Private medical data exposed

[lyger <lyger () attrition org>]

http://www.ajc.com/news/content/news/stories/2008/07/29/bluecross.html?cxntnid=amn072908e

Georgia's largest health insurer sent an estimated 202,000 benefits 
letters containing personal and health information to the wrong addresses 
last week, in a privacy breach that also raised concerns about potential 
identity theft.

Blue Cross and Blue Shield of Georgia said Monday that the erroneous 
mailings were primarily Explanation of Benefits (EOB) letters, which 
include the patient's name and ID number, the name of the medical provider 
delivering the service, and the amounts charged and owed.

"A small percentage" of letters also contained the patient's Social 
Security numbers, said Cindy Sanders, a Blue Cross spokeswoman. The EOB 
forms were mailed to the addresses of other Blue Cross policyholders.

[...]
_______________________________________________
Dataloss Mailing List (dataloss () attrition org)
http://attrition.org/dataloss

Tenable Network Security offers data leakage and compliance monitoring
solutions for large and small networks. Scan your network and monitor your
traffic to find the data needing protection before it leaks out!
http://www.tenablesecurity.com/products/compliance.shtml