Tuesday, March 31, 2015

Hospital Lab Employee Stole Patient IDs for Bank Fraud

A medical assistant in the pathology department at a Veterans Administration hospital stole patients' personal identifying information (PII) to obtain fraudulent credit cards and access victims' bank accounts.

The woman's manager said that type job would give access to information such as dates of birth and Social Security numbers. She has been charged with 17 counts of identity theft.

"[She] would have had access to patient information including birth dates and Social Security numbers."
- Government hospital's lab manager
As is too often the case with identity theft, law enforcement, not the organization holding the PII, discovered the thefts. Rather than wait to learn about data privacy breaches, organizations proactively detect them with low-cost on-demand SaaS analytics services.
Learn how to proactively detect identity theft and unauthorized breaches of data privacy, even by authorized users - with no hardware and no on-site software.
Sources:
(a) Ex-VA worker charged with stealing identities from hospital, mail from neighbors - www.Madison.com, 03/14/2015

Monday, March 30, 2015

Health Insurance Employee Stole IDs for Fraud Ring

An employee of a health insurance plan has been charged with stealing over 5,500 policy holders' identities and then sharing them with a credit card fraud ring. The ring fraudulently obtained more than $742,000 in merchandise.

The identity theft fraud ring of 11 people was operating in Michigan and is being prosecuted by Assistant U.S. Attorney Abed Hammoud with the U.S. Attorney's Office for the Eastern District of Michigan in Detroit.

" the scheme stole information belonging to more than 5,500 policy holders from the company's information system."
- NBC News
It is unclear how the identity thefts were discovered or over what period of time they occurred. Organizations seeking to detect identity theft proactively can utilize low-cost on-demand SaaS analytics services.
Learn how to proactively detect identity theft and unauthorized breaches of data privacy, even by authorized users - with no hardware and no on-site software.
Sources:
(a) 5,500 policy holders have information stolen from Blue Cross Blue Shield of Michigan - www.minbcnews.com, 03/11/2015

Friday, March 27, 2015

Govt Employee Stole IDs for Bank Fraud

A Texas man has been sentenced to sixteen years in federal prison for leading an identity theft ring.

He obtained stolen identities in several ways, including recruiting a Federal National Mortgage Association (Fannie Mae) employee to steal over 1000 identities from her Fannie Mae workstation. He then used the IDs to withdraw money from bank accounts.

"[He] recruited a Federal National Mortgage Association (Fannie Mae) employee to steal more than 1000 identities from her Fannie Mae workstation."
- DataBreaches.net
It seems the ID thefts were discovered by law enforcement, not the organizations holding the person identifying information (PII). Organizations seeking to proactively detect identity theft and privacy data breaches, rather than learn about them from third parties, can utilize low-cost on-demand SaaS analytics services.
Learn how to proactively detect identity theft and unauthorized breaches of data privacy, even by authorized users - with no hardware and no on-site software.
Sources:
(a) TX: ID Theft Conspiracy Leader Sentenced To 16 Years In Federal Prison And Ordered To Pay $88,131 In Restitution - www.DataBreaches.net,03/19/2015

Thursday, March 26, 2015

IRS Paid $5.8B in Refunds as Result of ID Thefts

In 2013 alone, the IRS reports paying out about $5.8 billion in fraudulent tax refunds due to identity thefts.

When personal identifying information (PII) is stolen it can be used to open bank accounts, report wages, as well as obtain credit cards, or claim things like the earned income tax credit or other tax benefits.

"[Stolen] Social Security numbers are used to open bank accounts, report wages, as well as obtain credit cards or even collect fraudulent tax refunds." - The Standard Daily
In many cases victims IDs are stolen by employees or other insiders at an organization and the thefts are not discovered until law enforcement is involved. However, rather than learn of the thefts from third parties, organizations can proactively detecting such identity theft with low-cost on-demand SaaS analytics services.
Learn how to proactively detect identity theft and unauthorized breaches of data privacy, even by authorized users - with no hardware and no on-site software.
Sources:
(a) Social security: IRS paid out $5.8 billion in fraudulent tax refunds due to identity thefts - www.TheStandardDaily.com, 03/15/2015

Wednesday, March 25, 2015

Hospital Employees Stole 9,000 Patient IDs

Two employees of a Florida hospital have been terminated for stealing the identities of 9,000 patients. The thefts took place from January 2012 through May 2014.

The employees stole information such as patient's name, address, Social Security number, phone number, health insurance information and physician names and diagnosis.

"[The ID thefts took place] from January 2012 to May 2014."
- Orlando Sentinel
It is unclear why the IDs thefts went on for over two years. The ID thefts were discovered by law enforcement. Healthcare organizations seeking to proactively detect identity theft and data privacy breaches can utilize low-cost on-demand SaaS analytics services.
Learn how to proactively detect identity theft and unauthorized breaches of data privacy, even by authorized users - with no hardware and no on-site software.
Sources:
(a) Florida Hospital: 2 employees copied records of 9,000 patients - www.OrlandoSentinel.com, 03/20/2015

Tuesday, March 24, 2015

120M Affected by Health Data Breaches Since 2009

Since 2009, there have been more than 1,100 health data breaches that have affected more than 120 million people, according to a review of the HHS data by the Washington Post.

Rachel Seeger, an HHS Office for Civil Rights spokesperson, said, "Health care organizations need to make data security central to how they manage their information systems and to be vigilant in assessing and addressing the risks to data on a regular basis."

"Industry experts expect the number of health data breaches to increase in 2015."
- iHealthBeat.org
The risk of health data breaches by insiders can be addressed with proactive detection using low-cost on-demand SaaS analytics services.
Learn how to proactively detect identity theft and unauthorized breaches of data privacy, even by authorized users - with no hardware and no on-site software.
Sources:
(a) 120M Affected by Health Data Breaches Since 2009, More Expected - www.iHealthBeat.org, 03/23/2015

Monday, March 23, 2015

Hospital Worker Stole Patient IDs for Tax Fraud

A hospital worker in Alabama has pleaded guilty to stealing patient identities with the intent of using them to file for fraudulent tax refunds.

The case ignited a multi agency federal investigation. The hospital from which the IDs were stolen stated the U.S. Postal Service and Internal Revenue Service conducted a probe.

"This is likely only the tip of the iceberg. There’s no telling how many people are affected by this."
- Attorney, Adam Jones
As is too often the case, the hospital was unaware of the identity thefts until they were notified by law enforcement. Healthcare organizations seeking to proactively detect identity thefts and privacy data breaches can utilize low-cost on-demand SaaS analytics services.
Learn how to proactively detect identity theft and unauthorized breaches of data privacy, even by authorized users - with no hardware and no on-site software.
Sources:
(a) Flowers Hospital Identity Thief Enters Guilty Plea - www.WTVY.com, 03/11/2015

Friday, March 20, 2015

Nurse Accused of Stealing Colleagues' IDs

A Texas nurse has been accused of stealing the identities from dozens of fellow hospital workers and possibly of patients.

She has been arrested for credit card abuse for allegedly stealing personal information (PII) and using it to open credit cards in other people's names. As a nurse who worked in hospitals as well as in home healthcare she had access not only to employee information but patient information as well.

"She's a nurse and she has access to not only employee information but patient information, as well."
- Lakeview police
Unfortunately, as is too often the case, a victim discovered the identity thefts. Organizations seeking to proactively detect identity thefts and privacy data breaches can utilize low-cost on-demand SaaS analytics services.
Download a white paper on patient privacy breach detection. Learn how to proactively identify unauthorized breaches of patient data privacy, even by authorized users - with no hardware and no on-site software.
Learn how Veriphyr Identity and Access Intelligence delivers business insights - with no hardware and no on-site software.
Sources:
(a) A nurse from the Houston area is in jail after being accused of stealing the identities of dozens of people - www.Click2Houston.com, 03/09/2015

Monday, March 16, 2015

Help Kids, Visit Dairy Queen for Free Cone Day

Veriphyr and Dairy Queen, sponsors of Children's Miracle Network Hospitals, invite you to participate in Free Cone Day on March 16, 2015.

Dairy Queen, in honor of their 75th anniversary, is giving away free ice cream cones. In lieu of payment the company is asking for donations to support local Children's Miracle Network Hospitals.

"The Free Cone Day will also be a fundraiser for Children’s Miracle Network Hospitals."
- Dairy Queen
Children’s Miracle Network Hospitals

Children’s Miracle Network Hospitals is a charity that raises funds for more than 170 children's hospitals. Donations to Children’s Miracle Network Hospitals are used to provide charitable care, purchase life-saving equipment, and fund research and education programs that save and improve the lives of 17 million children each year.

Why Veriphyr Supports Children’s Miracle Network Hospitals Like our customers, Veriphyr is committed to doing the right thing for our customers and communities. Veriphyr gives back to the communities by contributing a part of each sale to the Children’s Miracle Network Hospitals in the customer's community as well as donating our proactive privacy breach detection SaaS analytics service to CMNH hospitals.

Learn how to proactively detect identity theft and unauthorized breaches of data privacy, even by authorized users - with no hardware and no on-site software.
Sources:
(a) Free Cone Day - www.DairyQueen.com, 03/16/2015

Friday, March 13, 2015

Govt Employee Snooped in Database to Harass Neighbor

A California man is claiming a neighbor, who is a county social worker, gathered private information about him from the county databases.

The man said the neighbor knew details of his medical disability that he thought were being kept private by the county. He asked the county as well as the Office of Civil Rights to investigate and they found inappropriate access of his records by the neighbor.

"Without privacy there is no confidence in the system."
- Nancy Palandati, chairwoman of the American Civil Liberties Union’s Sonoma County chapter
Unfortunately the privacy breach was not detected until the victim asked for an investigation. Organizations seeking to detect breaches proactively, rather than learn about them from third parties, can utilize low-cost on-demand SaaS analytics.
Learn how to proactively detect identity theft and unauthorized breaches of data privacy, even by authorized users - with no hardware and no on-site software.
Sources:
(a) - www.PressDemocrat.com, 03/06/2015

Thursday, March 12, 2015

Govt Worker Stole IDs for Tax Fraud

An former employee of the Social Security Administration (SSA), and eight others, were sentenced to federal prison for their involvement in a $5 million identity theft tax fraud ring.

The SSA worker was recruited to steal identities from the database which were then used to file fraudulent tax returns. The scheme involved stolen identities from more than 1,000 people, according to Acting U.S. Attorney John Horn said in an emailed statement.

"tax refund claims using stolen identities threaten the integrity of our federal income tax system and pose a real danger to the credit history and financial security of the individuals whose identities are stolen." - Acting US Attorney John Horn
It seems the identity thefts were discovered by law enforcement, rather than the organization holding the personal identifying information (PII). Organizations seeking to proactively detect identity thefts and privacy data breaches can utilize low-cost on-demand SaaS analytics services.
Learn how to proactively detect identity theft and unauthorized breaches of data privacy, even by authorized users - with no hardware and no on-site software.
Sources:
(a) 9 headed to prison for $5 million income tax scheme - www.AJC.com, 03/11/2015

Wednesday, March 11, 2015

Online Retailer Employee Stole Customer Gift Card Credits

An employee of a major online retailer has been charged with stealing customer gift card credits.

The woman worked at one of the online retailers fulfillment centers. She said in 2013 she began diverting credits from hundreds of customer gift cards to fund her own account.

"[She] would transfer credits from customer gift cards onto her own [online retailer] accounts."
- Manager, online retailer
Unfortunately the online retailer only became aware of the crime after multiple customers complained they received gift cards with no credits applied to them. Organizations seeking to detect such insider theft can utilize low-cost on-demand SaaS analytics services.
Learn how to proactively detect identity theft and unauthorized breaches of data privacy, even by authorized users - with no hardware and no on-site software.
Sources:
(a) Amazon employee charged with stealing credit card info - www.CitizensVoice.com, 03/07/2015

Tuesday, March 10, 2015

Employee Accused of Stealing Military Aerospace Data

A former engineer of an aerospace company has been accused of stealing sensitive proprietary military aircraft data so that he could take the information to China, in violation of US export controls.

He had worked on various fighter jet engines until May 2014, according to court documents. At a recent hearing the judge denied pre-trial bail saying the engineer was a flight risk.

"[The engineer is] accused of stealing sensitive proprietary military aircraft information and unlawfully attempting to take that information to China."
- Court documents
It seems these insider data thefts were discovered by US Customs, not his aerospace employer. Organizations seeking to proactively detect intellectual property theft can utilize low-cost on-demand SaaS analytics services.
Learn how to proactively detect identity theft and unauthorized breaches of data privacy, even by authorized users - with no hardware and no on-site software.
Sources:
(a) Ex-Pratt & Whitney Engineer Denied Bail In Data Theft Suit - www.Law360.com, 03/09/2015

Monday, March 9, 2015

California Hospital Fined for Privacy Breaches by Employees

The California Department of Public Health (CDPH) has fined a hospital in Colusa county $6,000 for a breach of patient privacy by hospital employees.

Two nurses accessed, without authorization, the medical records of a patient who was the daughter of a local physician. The hospital has implemented disciplinary action against the two nurses.

"Two employees accessed, without authorization, the medical records of a patient who was the daughter of a local physician."
- California Department of Public Health report
The breach report notes monitoring is "performed via audits by department managers and HIMS, direct random observation and encouraged reporting of suspected activity." This burden on staff can be eliminated by utilizing low-cost on-demand SaaS analytics to proactively detect privacy data breaches.
Learn how to proactively detect identity theft and unauthorized breaches of data privacy, even by authorized users - with no hardware and no on-site software.
Sources:
(a) Complaint CA00275784 - www.CDPH.ca.gov, 03/09/2015

Thursday, March 5, 2015

Govt Employee Snooped in Driver's License Database

A Canadian government agency that handles driver's licenses and vehicle registration is investigating inappropriate access of their database by an employee.

In January the agency "was alerted that an individual’s personal information may have been inappropriately accessed by an employee." A subsequent investigation found the employee had breached the personal information of 17 people.

"This matter is a very serious concern to us as we hold drivers’ and vehicle owners’ personal information in the strictest of confidence."
- Service NL​ Minister Tony Cornect
It seems the agency's investigation was prompted by information from a third party. Organizations seeking to proactively detect identity theft and privacy data breaches, rather than learn about them from third parties, can utilize low-cost on-demand SaaS analytics services.
Learn how to proactively detect identity theft and unauthorized breaches of data privacy, even by authorized users - with no hardware and no on-site software.
Sources:
(a) SOURCE_TITLE - www.CBC.ca, 02/20/2015

Wednesday, March 4, 2015

Nurse Illegally Accessed Patient Records

A registered nurse with a history of narcotics thefts has been accused of illegally accessing a state database of prescription records for 1 million Minnesotans.

It seems the nurse's access to the database was not shut off when his job was assigned to someone else. As a result he was able to illegally access patient records for eight months until an audit found the error.

"Yes, it’s very clear under federal law and state law that you can only access the data when you have a need to access the data."
- Minnesota Board of Pharmacy executive director Cody Wiberg
Unfortunately it's not uncommon for access rights to be left active after an employee leaves their position. Therefore frequent auditing of who has which access rights must be done on a regular basis. This is easily accomplished with low-cost on-demand SaaS analytics services.
Learn how to proactively detect identity theft and unauthorized breaches of data privacy, even by authorized users - with no hardware and no on-site software.
Sources:
(a) Blue Cross Blue Shield Nurse Accused Of Illegally Accessing Patient Records - www.Minnesota.CBS.com, 03/02/2015

Tuesday, March 3, 2015

Veriphyr Chief Science Officer to Speak at IAPP Global Privacy Summit

The International Association of Privacy Professionals (IAPP) has invited John Vastano, PhD, to speak at their Global Privacy Summit in Washington, DC, March 4-6 2015.

Dr. Vastano will lead an active learning session "Get Sleuthy: How to Detect Data reaches and Insider Identity Theft." The hands-on format will allow attendees to walk away with techniques to proactively detect data privacy breaches and insider theft at their organizations using software they already have.

"The IAPP is world’s largest global information privacy community."
The session will also review the current state of and statistics on healthcare privacy breaches and identity thefts. As well as how recent legal cases affect class action suits, fines and penalties.
Learn how to proactively detect identity theft and unauthorized breaches of data privacy, even by authorized users - with no hardware and no on-site software.
Sources:
(a) www.PrivacyAssociation.org, 03/03/2015

Monday, March 2, 2015

Help Children's Hospitals - Support National Pancake Day

As an official partner of Children’s Miracle Network Hospitals, Veriphyr wants to encourage everyone to support IHOP’s National Pancake Day on Tuesday, March 3, 2015.

IHOP Restaurants and Veriphyr partners with Children’s Miracle Network Hospitals to help improve the lives of millions of sick children. We welcome the opportunity to collaborate with IHOP in support of this great cause and, frankly, we’d hate for you to miss out on free pancakes!

For more information on National Pancake Day and to find a participating IHOP near you.

Sources:
(a) IHOP National Pancake Day - www.IHOPPancakeDay.com, 03/02/2/15

Popular Posts

Copyright © 2010-2017 by Veriphyr Incorporated, All Rights Reserved.

Contact us at Veriphyr.com.