Home page logo

isn logo Information Security News mailing list archives

State confirms health data security breach
From: InfoSec News <alerts () infosecnews org>
Date: Mon, 25 Nov 2013 07:15:28 +0000 (UTC)


November 23,2013

MONTPELIER -- Officials overseeing the Vermont Health Connect website confirmed Friday there was a security breach on the system last month in which one user got improper access to another user’s Social Security number and other data.

A report from state to federal officials overseeing the health insurance exchanges set up under the Affordable Care Act said a consumer reported the incident with the Vermont Health Connect website Oct. 17.

The consumer, whom officials would not identify, reported that he received in the mail -- from an unnamed sender - a copy of his own application for insurance under the state exchange.

“On the back of the envelope was hand-written ‘VERMONT HEALTH CONNECT IS NOT A SECURE WEBSITE!’ This was also (written) on the back of the last page of the printed out application,” said the incident report.


Dean Bushmiller teaches a great 5-Day CISM in Albany NY Dec. 2 – 6.
Call 327-937-9786 for details.

  By Date           By Thread  

Current thread:
  • State confirms health data security breach InfoSec News (Nov 25)
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]