follow-up: Hotline for UCSD patients swamped

[security curmudgeon <jericho () attrition org>]

---------- Forwarded message ----------
From: InfoSec News <alerts () infosecnews org>

http://www3.signonsandiego.com/stories/2009/jul/17/1m17hacker221630-hotline-ucsd-patients-swamped/?technology&zIndex=133482

By David Hasemyer
Union-Tribune Staff Writer
July 17, 2009

LA JOLLA - The hotline established by UCSD's Moores Cancer Center after a 
hacker breached the center's computers and gained access to 
patients'personal information has been swamped with hundreds of calls from 
worried patients.

Their primary concern has been whether their Social Security numbers were 
among the information stolen by whomever obtained the electronic files of 
30,000 patients, according to DeAnn Marshall, UCSD Health Sciences chief 
of marketing and communications officer.

She said hospital officials have determined that just 36 of the files 
contained Social Security numbers.

A letter was sent to all of the patients earlier this month telling them 
that the center's computer network was "illegally accessed" twice by 
overseas hackers and that some personal information may have been stolen.

The Internet assault on the hospital's computer records has sparked an 
investigation to determine the identity of the hackers and prompted 
hospital officials to begin a review of security measures to find any 
weakness and, if necessary, take additional precautions, Marshall said.

[...]

_______________________________________________
Dataloss Mailing List (dataloss () datalossdb org)

Get business, compliance, IT and security staff on the same page with
CREDANT Technologies: The Shortcut Guide to Understanding Data Protection
from Four Critical Perspectives. The eBook begins with considerations
important to executives and business leaders.
http://www.credant.com/campaigns/ebook-chpt-one-web.php