Mayo Clinic worker fired for snooping on patient records

[security curmudgeon <jericho () attrition org>]

http://www.postbulletin.com/newsmanager/templates/localnews_story.asp?z=2&a=469014

Mayo Clinic worker fired for snooping on patient records
9/9/2010 9:34:50 PM
By Jeff Hansel
The Post-Bulletin, Rochester MN

A Mayo Clinic employee has been fired after accessing patient medical and 
financial records simply to snoop.

The employee worked in the Mayo financial business unit in Arizona and 
once worked in Rochester.

An estimated 1,700 patient records were accessed, said Mayo spokesman 
Chris Gade, noting the employee had access to all Mayo Clinic patient 
records at all Mayo sites.

The breech was discovered in mid-July.

"This activity took place between 2006 and 2010. An internal investigation 
was immediately launched. Following a thorough review of the facts, the 
person was fired," says a Mayo statement.

This is the second high-profile termination at Mayo in the past month. In 
late August, the clinic announced that a radiologic technologist at Mayo 
in Jacksonville, Fla., had admitted injecting himself with pain medicine 
intended for patients, refilling the syringes with saline solution and 
shooting the resulting mix into patients' IV lines. In the process, the 
worker allegedly infected at least three patients with hepatitis C.

[..]
_______________________________________________
Dataloss Mailing List (dataloss () datalossdb org)
Archived at http://seclists.org/dataloss/

Get business, compliance, IT and security staff on the same page with
CREDANT Technologies: The Shortcut Guide to Understanding Data Protection
from Four Critical Perspectives. The eBook begins with considerations
important to executives and business leaders.
http://www.credant.com/campaigns/ebook-chpt-one-web.php