Asynchronous Transfer Mode

Possible data breach in UMASS

January 27th, 2015

The University of Massachusetts (UMASS) Memorial Medical Group (UMMMG) found out that an employee allegedly accessed patient billing information outside their normal job functions. UMMMG started investigating in depth for  breach issue and and notified local law enforcement.

UMMMG mentioned that this employee no longer works for the company. According to the reports,local law enforcement also discovered an unauthorized individual in possession of copies of patient billing information. Affected information includes patient’s names, addresses, dates of birth, medical record numbers, and Social Security numbers. Other information which may get affected includes phone numbers, email addresses and credit or debit card information used for payments to UMMMG.

According to the UMMMG statement:

We deeply regret this incident and any inconvenience it may cause our patients. To help prevent this type of situation from happening again, UMMMG is further strengthening its privacy and information security program, including identifying additional measures and enhancements to existing safeguards to protect patient information. UMMMG is also re-enforcing staff education regarding our policies and procedures to safeguard patient information.

UMMMG is committed to the security of patient information and we are taking this matter very seriously. We began sending letters to potentially affected patients on January 30, 2015, and have established a dedicated call center to assist patients with any questions.

Alertsec strengthens security

Alertsec has created a web based encryption service that radically simplifies deployment and management of PC encryption by using industry leading Check Point Full Disk Encryption (former Pointsec) software.

Organizations, especially corporate giants, have to have an information security policy in place that proves they have taken necessary steps and measures to safeguard the information they gathered. If these policies are not adhered to, the regulators may prosecute.

Alertsec Xpress is used by organizations that have recognized the need to protect their information. Customers range from single-user sole traders and consultants to multinational companies with a large number of offices around the globe. Over 4 million users worldwide use Alertsec Xpress’s Check Point Full Disk Encryption.