Stolen laptop and data breach

September 12th, 2015 by admin Leave a reply »

Affected information includes patient names, dates of birth, dates of treatment, descriptions of patientsconditions, treatments, and outcomes, lab test results, radiological and ultrasound images, medical record numbers, and diagnosis and treatment information. However, Social Security numbers and financial data were not stored on the laptop.

Dr. Christopher Roth, Assistant Professor of Urology, said that the laptop was in his car, parked outside of his house. Information on the laptop was not saved to LSU Health Sciences Center New Orleans server. Data was saved to the laptops hard drive, so the school cannot access specific data stored on the device.

The process to reconstruct and ready notifications took nearly eight weeks to complete,LSU Health explained. It is unknown whether any specific patients data were on the stolen laptop, however those patients the university suspects may have been affected will receive individual notification by mail, along with information about protecting against identity theft.

Dr. Roth patients from July 2009 to July 16, 2015 who did not receive a notification letter are encouraged to reach out to the university.

According to the statement:

The policy was not adhered to in this instance, and appropriate disciplinary action will be taken at the conclusion of the investigation. In addition, the university is reviewing its information security policies and procedures to determine if improvements can be made to further reduce the risk of such a breach in the future. Any changes will be included in the information security training that all employees and students are required to complete.

Alertsec strengthens security

Alertsec has created a web based encryption service that radically simplifies deployment and management of PC encryption by using industry leading Check Point Full Disk Encryption (former Pointsec) software.

Organizations, especially corporate giants, have to have an information security policy in place that proves they have taken the necessary steps and measures to safeguard the information they gathered. If these policies are not adhered to, the regulators may prosecute.

Alertsec Xpress is used by organizations that have recognized the need to protect their information. Customers range from single-user sole traders and consultants to multinational companies with a large number of offices around the globe. Over 4 million users worldwide use Alertsec Xpress’s Check Point Full Disk Encryption.

Leave a Reply