Friday, December 19, 2014

Regulators Increase Data Security Oversight

Financial industry cybersecurity practices are facing increased regulatory and enforcement agency scrutiny reflecting growing public concern over the security and infrastructure of financial institutions.

Regulatory agencies such as the NY Department of Financial Services as well as the Commodity Futures Trading Commission have recently stated that closer examination of the cybersecurity practices of organizations they oversee will be a priority.

"...the Department will take a close look at banks’ data breach detection abilities."
- Memorandum, NY State Department of Financial Services
In addition to reviewing cybersecurity governance practices the NY State Department of Financial Services will examine banks' data breach detection abilities. Organization seeking to proactively detect identity theft and privacy data breaches can utilize low-cost on-demand SaaS analytics services.
Learn how to proactively detect identity theft and unauthorized breaches of data privacy, even by authorized users - with no hardware and no on-site software.
Sources:
(a) Financial Industry Regulators Increase Data Security Oversight - www.InsidePrivacy.com, 12/11/2014

Thursday, December 18, 2014

Woman Sentenced for Patient ID Thefts, Fraud

A Virgina woman has been sentenced to five years in prison for stealing patients' identities and using the information to access existing credit cards or create new ones.

The personal information of about 200 patients was stolen from October 2012 through September 2013, according to court documents.

"[She] conspired, from October 2012 through September 2013, to steal the identities of at least 200 medical patients." - US District Court documents
It is unclear why the ID thefts went on for almost a year or who discovered them. Organizations seeking proactive detection of identity theft and privacy data breaches can utilize low-cost on-demand SaaS analytics services.
Learn how to proactively detect identity theft and unauthorized breaches of data privacy, even by authorized users - with no hardware and no on-site software.
Sources:
(a) Suffolk woman sentenced in identity theft of patients - www.PilotOnline.com, 12/09/2014

Tuesday, December 16, 2014

Police Notify Hospital of Patient Data Theft

A Florida hospital was unaware of the theft of patients' data until law enforcement notified them.

The stolen stole personal information (PII) included patients' name, address, some social security numbers, date of birth, and limited insurance or medical information.

"the [data] thefts occurred in 2012 and 2013 but were not reported to the US Attorney's office until August 2014."

- PHIprivacy.net

Unfortunately identity theft and data breaches are often first discovered by law enforcement rather than the organization holding the PII. Organizations seeking proactive detection of privacy breaches can utilize low-cost on-demand SaaS analytics services.
Learn how to proactively detect identity theft and unauthorized breaches of data privacy, even by authorized users - with no hardware and no on-site software.
Sources:
(a) Kirkbride Center patient data found in possession of criminal in Florida - www.PHIprivacy.net, 12/15/2014

Monday, December 15, 2014

Hospital Insider Stole Patient IDs for Tax Fraud

A lab technician at an Alabama hospital has been sentenced to two years in federal prison for his role in an identity theft tax refund fraud scheme.

The US Attorney's office said the technician, along with other people, stole patients' medical records which contained personal identification information (PII). He used the PII to file over 100 fradulent tax returns.

"[He]stole patient medical records, which included personal identification information." - US Attorney's Office
It is unclear how the identity thefts were discovered. Healthcare organizations seeking proactive detection of ID theft and data privacy breaches can utilize low-cost on-demand SaaS analytics services.
Learn how to proactively detect identity theft and unauthorized breaches of data privacy, even by authorized users - with no hardware and no on-site software.
Sources:
(a) Flowers Hospital ID thief gets two years in prison - www.DothanEagle.com, 12/12/2014

Thursday, December 11, 2014

Nurse Arrested for Patient ID Thefts

A registered nurse (RN) at a Florida hospital emergency room has been arrested for stealing patient identities and using the information to purchase items and having them sent to her home. She has also been fired by the hospital.

Law enforcement discovered that this hospital insider was a suspect during their investigation of separate fraudulent credit card cases.

"...victims' information had been stolen while receiving treatment at [the medical center] emergency room."
- Manatee County Sheriff's Office
Rather than learn about ID theft from law enforcement or other third parties, healthcare organizations can proactively detect identity theft and privacy data breaches with low-cost on-demand SaaS analytics services.
Learn how to proactively detect identity theft and unauthorized breaches of data privacy, even by authorized users - with no hardware and no on-site software.
Sources:
(a) ER nurse fired, accused of using patients' credit card info - www.HeraldTribune.com, 12/10/2014

Wednesday, December 10, 2014

$150,000 HHS Fine for Patient Privacy Breaches

A mental health organization in Alaska must pay a $150,000 Department of Health and Human Services (HHS) fine for HIPAA breaches that affected 2,743 patients. In addition to the monetary fine HHS is requiring implementation of a corrective action plan and reporting to OCR on its compliance program.

This latest fine is indicative of continued enforcement by the Office of Civil Rights (OCR). To date they have levied $26 million in monetary settlements against 24 HIPAA-covered entities found to have violated privacy, security and breach notification rules.

"HIPAA security policies and procedures...were not followed by the organization's employees for a seven-year period, from 2005 to 2012." - Healthcare IT News
Learn how to proactively detect identity theft and unauthorized breaches of data privacy, even by authorized users - with no hardware and no on-site software.
Sources:
(a) HHS slaps provider with $150K bill for HIPAA breach - www.HealthcareITnews.com, 12/09/2014

Popular Posts

Copyright © 2010-2011 by Veriphyr Incorporated, All Rights Reserved.

Contact us at Veriphyr.com.