Archive for May, 2014

Molina Healthcare contractor experiences breach due to mail error

May 5th, 2014

 

CNET News - Desktop threat, still a threat (De...

Molina Healthcare, a multi-state healthcare organization reported breach which may have affected 5,261 former members’ Social Security numbers. Incident occurred due to post card mailing error. According to the reports, printing contractor Creel Printing committed mistake and there were no names on the cards and the Social Security numbers weren’t identified on the cards. Information which may have made public includes Addresses and Social Security numbers. Member’s names were not listed on the cards.

The cards were sent out to the members with the purpose of informing about the various benefits attached to the health insurance marketplace. According to reports, affected patients are the ones who reside in Washington State. The reason behind the breach was mix up when the social security numbers were mistaken for tracking numbers.

“Creel did not mean to print [Social Security numbers] on the postcards,” Timothy Zevnik, privacy official with Molina Healthcare, wrote in a notification posted to the Molina Healthcare website. “Creel did not have Molina’s permission to print [Social Security numbers] on the postcards.”

Molina Healthcare investigated the breach, improved processes and procedures, and put additional safeguards in place to ensure a similar incident does not occur. All impacted individuals are being notified, and offered a free year of identity theft monitoring services.

Alertsec has created a web based encryption service that radically simplifies deployment and management of PC encryption by using industry leading Check Point Full Disk Encryption (former Pointsec) software. Alertsec Xpress is used by organizations that have recognized the need to protect their information. Customers range from single-user sole traders and consultants to multinational companies with a large number of offices around the globe. Over 4 million users worldwide use Alertsec Xpress’s Check Point Full Disk Encryption.

Enhanced by Zemanta

UMMMC sends out patient data breach notices

May 2nd, 2014

 

UMass Memorial Medical Center (UMMMC) of Worcester, Mass. revealed this week that it had alerted more than 2,400 affected patients of the breach. It took nearly two months to investigate patient data breach. According to the reports, initially four patients’ data was initially found to be accessed and potentially misused by a former employee.

The information may have been used to open commercial accounts, such as credit card and cell phone accounts. After coming to know about the incident, UMass immediately began an internal investigation. According to the statement, employee had access to patient information such as name, date of birth, Social Security number, and address at some point. UMass reported that two months time of investigation was taken to know the duration of the access ex-employee had.

In the website statement, UMass mentioned –

UMMMC has had a privacy and information security program in place for several years, and we want to assure our patients that we are committed to the security of patient information and taking this matter very seriously. To help prevent this type of situation from happening again, UMMMC is further strengthening its program, including identifying additional measures and enhancements to existing safeguards to protect patient information. UMMMC is also re-enforcing staff education regarding our policies and procedures to safeguard patient information.

UMMMC deeply regrets this incident and any inconvenience it may cause our patients. UMMMC has had a privacy and information security program in place for several years, and we want to assure our patients that we are committed to the security of patient information and taking this matter very seriously.

Alertsec strengthens security

Alertsec has created a web based encryption service that radically simplifies deployment and management of PC encryption by using industry leading Check Point Full Disk Encryption (former Pointsec) software.

Organizations, especially corporate giants, have to have an information security policy in place that proves they have taken necessary steps and measures to safeguard the information they gathered. If these policies are not adhered to, the regulators may prosecute.

Alertsec Xpress is used by organizations that have recognized the need to protect their information. Customers range from single-user sole traders and consultants to multinational companies with a large number of offices around the globe. Over 4 million users worldwide use Alertsec Xpress’s Check Point Full Disk Encryption.

Enhanced by Zemanta