LewisGale Regional Health System reports data breach

April 15th, 2014 by admin Leave a reply »


LewisGale Regional Health System of Salem, Va.  notifies a multi state data breach to 400 affected patients. Around 40 of patients were under LewisGale’s care. Information related to patient names, addresses, insurance information and social security numbers were all potentially exposed.

Incident of breach occurred at LewisGale’s billing department due to former employee accessing patients data. Report stated that former employee is being investigated related to identity theft. It was found that they allegedly obtained credit, opened accounts, and even leased apartment with other people’s information.

Jim Clendenen received the letter related to data breach. “We’re retired now and everything we got is taking care of. I’d hate to have somebody stumble in there and take care of everything that we’ve worked all these years for,” Clendenen said.

He continued “Wondering how and why they would let an employee have access to something that he had no reason to have.” and “I just hope maybe something can be done to prevent you or someone else going through what I’m going through right now.”

LewisGale website excerpts are as bellow –

LewisGale Regional Health System was recently informed that a former employee, whose job function required access to Patient Health Information protected by HIPAA, is under investigation for misuse of that information related to approximately 40 of our patients. All of these patients have been notified in writing and provided complimentary credit monitoring through a national credit reporting agency. We have also established a toll-free call center for patients with questions, as well as an email address to which they may submit written communications.


We are fully committed to the security of Patient Health Information and the privacy of our patients. The employee in question has been terminated and we support this person’s prosecution to the fullest extent of the law.

Alertsec strengthens security

Alertsec has created a web based encryption service that radically simplifies deployment and management of PC encryption by using industry leading Check Point Full Disk Encryption (former Pointsec) software.

Organizations, especially corporate giants, have to have an information security policy in place that proves they have taken necessary steps and measures to safeguard the information they gathered. If these policies are not adhered to, the regulators may prosecute.

Alertsec Xpress is used by organizations that have recognized the need to protect their information. Customers range from single-user sole traders and consultants to multinational companies with a large number of offices around the globe. Over 4 million users worldwide use Alertsec Xpress’s Check Point Full Disk Encryption.

Enhanced by Zemanta

Leave a Reply