KPMG employee loses unencrypted flash drive with patient info on 3, 630

[security curmudgeon <jericho () attrition org>]

http://www.phiprivacy.net/?p=3691

KPMG employee loses unencrypted flash drive with patient info on 3,630

An accounting firm used by the Saint Barnabas Health Care System  and its 
affiliated hospitals in New Jersey has reportedly lost an unencrypted 
flash drive that may have contained some patients. names as well as 
information about their health care.

In a notice on their web site, the hospital states that the flash drive 
lost by the  KPMG LLP employee on or about May 10 did not contain patient 
addresses, social security numbers, personal identification numbers, date 
of birth, financial information or other identifiable information.  The 
hospital said that it received a written report on the loss on June 29, 
but does not indicate when they first learned of the loss.

The Saint Barnabas Health Care System announced that it is sending letters 
to  patients whose information may have been included on the flash drive 
and for whom they have addresses.

[..]


_______________________________________________
Dataloss Mailing List (dataloss () datalossdb org)
Archived at http://seclists.org/dataloss/

Get business, compliance, IT and security staff on the same page with
CREDANT Technologies: The Shortcut Guide to Understanding Data Protection
from Four Critical Perspectives. The eBook begins with considerations
important to executives and business leaders.
http://www.credant.com/campaigns/ebook-chpt-one-web.php