FBI looking at UMC records leak

[security curmudgeon <jericho () attrition org>]

---------- Forwarded message ----------
From: InfoSec News <alerts () infosecnews org>

http://www.lasvegassun.com/news/2009/nov/21/fbi-looking-umc-records-leak/

By Marshall Allen
The Las Vegas Sun
Nov. 21, 2009

The FBI said Friday it may investigate a breach of patient privacy laws at 
University Medical Center, where hospital officials are reeling with the 
realization that at least one of their employees has leaked confidential 
names, birth dates and Social Security numbers.

UMC officials spent Friday determining how they would respond to the Sun's 
report that protected patient information allegedly has been sold so 
ambulance-chasing attorneys can harvest clients.

FBI Special Agent Joseph Dickey said the agency met with officials of the 
county owned hospital and has begun "evaluating" the unauthorized release 
of confidential patient records.

Dickey said he could not confirm whether the FBI had officially opened an 
investigation. The matter appears to violate the federal Health Insurance 
Portability and Accountability Act, better known as HIPAA, a federal law 
that guards patient privacy.

[...]
_______________________________________________
Dataloss-discuss Mailing List (dataloss-discuss () datalossdb org)
Archived at http://seclists.org/dataloss/

Get business, compliance, IT and security staff on the same page with
CREDANT Technologies: The Shortcut Guide to Understanding Data Protection
from Four Critical Perspectives. The eBook begins with considerations
important to executives and business leaders.
http://www.credant.com/campaigns/ebook-chpt-one-web.php