Home page logo

isn logo Information Security News mailing list archives

4-year long HIPAA breach uncovered
From: InfoSec News <alerts () infosecnews org>
Date: Fri, 3 Jan 2014 09:07:06 +0000 (UTC)


By Erin McCann
Associate Editor
Healthcare IT News
January 2, 2014

In the world of HIPAA privacy and security breaches, 2013 was a big year, and the last days of December proved no exception.

The five-hospital Riverside Health System in southeast Virginia announced earlier this week that close to 1,000 of its patients are being notified of a privacy breach that continued for four years.

From September 2009 through October 2013, a former Riverside employee inappropriately accessed the Social Security numbers and electronic medical records of 919 patients. Reportedly, the employee was a licensed practical nurse, according to a Daily Press account. The breach wasn't discovered until Nov. 1 following a random company audit.

"Riverside would like to apologize for this incident," said Riverside Spokesperson Peter Glagola, in a Dec. 29 notice. "We are truly sorry this happened. We have a robust compliance program and ongoing monitoring in place, and that's how we were able to identify this breach. We are looking at ways to improve our monitoring program with more automatic flags to protect our patients."

The practical nurse who inappropriately accessed the records has had their employment terminated, according to Riverside officials.


Subscribe to InfoSec News

  By Date           By Thread  

Current thread:
  • 4-year long HIPAA breach uncovered InfoSec News (Jan 03)
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]