RE: Healthcare incidents?

["OBrien, Brennan" <BOBrien () columbia com>]

Actually, I don't think this is off topic at all.  Many of us on the
non-consulting side of security (working for particular firms) find
ourselves in the position of having to justify this sort of thing on a
regular basis.  While the site below focuses on medical issues, is
anyone aware of other sites which provide similar information for other
industries?

I would be happy to put together a reference site with this material, if
some kind folks here have a few other sites they would like to throw my
way to get started.  

Thanks, 
Brennan

-----Original Message-----
From: Duvall, Ed [mailto:ed.duvall () eds com] 
Sent: Tuesday, May 06, 2003 1:56 PM
To: 'Paul.Farley () EventLevel com'; incidents () securityfocus com
Subject: RE: Healthcare incidents?

try here..

http://www.practisure.com/breaches.html


===============================================
Edgar Duvall MCSE
Senior Systems/Communications Engineer
Security and Privacy Services
EDS Corporation
225 Grandview Ave. MS-120
Camp Hill, PA. 17011
Phone: 717.763.6396   Fax:     717.763.6141   Cell:     717.319.7061
This email is confidential, may be legally privileged, and is for the
intended recipient only.
Access, disclosure, copying, distribution, or reliance on any of it by
anyone not the intended recipient is prohibited and may be a criminal
offence.  Please delete if you received this in error and email
confirmation
to the sender.
===============================================



-----Original Message-----
From: Paul Farley [mailto:Paul.Farley () EventLevel com]
Sent: Tuesday, May 06, 2003 8:29 AM
To: incidents () securityfocus com
Subject: OT:Healthcare incidents?


My apologies if this is slightly off topic.  If so, please respond to me
privately and spare the list any noise.

I am trying to gather examples of incidents that have occurred within
health
care organizations to build a case for management regarding why they
need to
take security a little more seriously.  I'm aware of HIPPA, but
specifically
looking for anything that tells a compelling story about how a lack of
attention in this area cost the organization money, reputation...etc.

Thanks,
Paul


------------------------------------------------------------------------
----
Attend Black Hat Briefings & Training Europe, May 12-15 in Amsterdam,
the 
world's premier event for IT and network security experts.  The two-day 
Training features 6 hand-on courses on May 12-13 taught by
professionals.  
The two-day Briefings on May 14-15 features 24 top speakers with no
vendor 
sales pitches.  Deadline for the best rates is April 25.  Register today
to 
ensure your place. http://www.securityfocus.com/BlackHat-incidents 
------------------------------------------------------------------------
----

------------------------------------------------------------------------
----
Attend Black Hat Briefings & Training Europe, May 12-15 in Amsterdam,
the 
world's premier event for IT and network security experts.  The two-day 
Training features 6 hand-on courses on May 12-13 taught by
professionals.  
The two-day Briefings on May 14-15 features 24 top speakers with no
vendor 
sales pitches.  Deadline for the best rates is April 25.  Register today
to 
ensure your place. http://www.securityfocus.com/BlackHat-incidents 
------------------------------------------------------------------------
----


----------------------------------------------------------------------------
Attend Black Hat Briefings & Training Europe, May 12-15 in Amsterdam, the
world's premier event for IT and network security experts.  The two-day
Training features 6 hand-on courses on May 12-13 taught by professionals.
The two-day Briefings on May 14-15 features 24 top speakers with no vendor
sales pitches.  Deadline for the best rates is April 25.  Register today to
ensure your place. http://www.securityfocus.com/BlackHat-incidents
----------------------------------------------------------------------------