Burglary

Robbery and Data breach

May 2nd, 2016

A California-based chiropractic office, Vibrant Body Wellness suffered data breach after its facility was burgled. The incident affected around 600 patients.  According to the reports, laptop and hard drive was stolen. It contained health related data.

Vibrant Body Wellness published the statement as –

“We were robbed! Literally.Yes, it’s sad but true — our office at Vibrant Body Wellness was broken into during the weekend of March 5th to March 8th.  Things were stolen and no one was physically injured.  We are grateful for that, and have been sorting through the violation and the lessons over the past month.  The support and well wishes from our practice members and from our community members has been heartening, so thank you for reaching out and for your patience as we replace equipment and update security procedures.”

Affected information included names, addresses, dates of birth, contact information, diagnoses, and billing information. The laptop was password-protected. Also, the patient information on the hard drive was encrypted.

Local law enforcement officials were notified about the incident. As per the statement, notification letters are sent to affected individuals. They are also encouraged to place a fraud alert on their credit accounts. The practice believes that the information is not being misused or inappropriately accessed.

“We understand that this may pose an inconvenience to you. We sincerely apologize and regret that this situation has occurred,” wrote the owner of the practice, Teresa Lau, DC, in a letter to affected patients. “Vibrant Body Wellness is committed to providing quality care, including protecting your personal information, and we want to assure you that we have policies and procedures to protect your privacy.”

Facility also provided information for placing initial fraud alert, “We are keenly aware of how important your personal information is to you.  You may place an initial fraud alert on your own credit account with Equifax, who will notify the other two credit bureaus.  The fraud alert does not impact your credit score and provides an extra layer of protection–creditors must contact you directly before issuing credit in your name.  The initial fraud alert lasts for 90 days, is free, and can be renewed for free after 90

————————————————————————————————————————————————————-

Alertsec is the full disk encryption service that delivers a mobile data protection system for all information stored on laptops used throughout your organization

PHI breach due to break in

March 9th, 2015

Mosaic Medical may have suffered data breach when PHI got exposed due to break-in. The incident took place at a temporary office location for the facility’s Bend, Oregon location. Mosaic is not sure whether the medical record got accessed or not because at prima facie nothing appears to be stolen.

“The personal information that was possibly accessed was on paper documents within the office and included health information, medical insurance information, phone number, and e-mail addresses,” Mosaic said in a statement, according to local news station KTVZ. “A report was filed with the Bend Police Department and they have investigated the break-in.”

Mosiac Medical discovered that a break-in happened at night. According to the reports, the facility has taken steps like moving its HIT office to secure more information. Also, affected patients have been notified via letters.

“We understand the importance of safeguarding our patients’ personal information and take that responsibility very seriously,” Mosaic Medical Chief Operating Officer Allison McCormick said in the statement. “We will do all we can to work with our patients whose personal information may have been compromised.  We regret that this incident occurred, and we are committed to preventing future occurrences.”

Mosaic Medical is a local nonprofit community health center system with primary care clinics in Prineville, Bend, Madras and Redmond.

Alertsec strengthens security

Alertsec has created a web based encryption service that radically simplifies deployment and management of PC encryption by using industry leading Check Point Full Disk Encryption (former Pointsec) software.

Organizations, especially corporate giants, have to have an information security policy in place that proves they have taken necessary steps and measures to safeguard the information they gathered. If these policies are not adhered to, the regulators may prosecute.

Alertsec Xpress is used by organizations that have recognized the need to protect their information. Customers range from single-user sole traders and consultants to multinational companies with a large number of offices around the globe. Over 4 million users worldwide use Alertsec Xpress’s Check Point Full Disk Encryption.