Notification: Ambulance Data Theft

[Erica Absetz <eabsetz () opensecurityfoundation org>]

http://www.heraldonline.com/2012/11/29/4449922/notification-ambulance-data-theft.html

FORT LAUDERDALE, FLA., NOV. 29, 2012 — /PRNewswire/ -- Advanced Data
Processing, Inc., (the "Company"), a provider of technology-based
services to the emergency medical services industry, learned on
October 1, 2012 that individual account information from the ambulance
billing system was illegally accessed, some of which was disclosed to
a theft ring suspected of filing fraudulent federal tax returns with
the IRS. With the Company's help, the authorities identified the
employee who admitted to the crime.  The employee was immediately
terminated.  The theft included ambulance data from Frederick County
and First Response Medical Transportation Corp.

The Company is working closely with Federal and local law enforcement
agencies who are conducting a criminal investigation.   The Company
has also conducted its own investigation of the incident.  This
investigation revealed unauthorized access and, in certain instances,
disclosure of personal information, which may include name, social
security number, and date of birth.  No medical information was
accessed or disclosed.  The Company sent letters by first class mail
to affected individuals and has posted a notice on its website with
links to information regarding the incident and resources to aid
affected individuals.

The Company has a rigorous compliance program that includes new
employee and annual training, background checks on new hires, and
privacy and security measures designed to meet the standard of the
HIPAA and HITECH Acts.  As a result of this incident, the Company is
reinforcing to employees the importance of the security and
confidentiality of sensitive personal data.

Individuals who believe they may be affected by this incident are
advised to review credit card account statements and monitor their
credit report for unauthorized activity.  Information and resources
are available at www.myidcare.com/intersecurity.

The Company has retained ID Experts to provide information to aid
affected patients who can call 1-877-264-9622 Monday through Friday
from 9 am - 9 pm Eastern Time or visitwww.myidcare.com/intersecurity.

This press release is in accordance with the Health Information
Technology for Economic and Clinical Health (HITECH) Act.


Read more here:
http://www.heraldonline.com/2012/11/29/4449922/notification-ambulance-data-theft.html#storylink=cpy
_______________________________________________
Dataloss-discuss Mailing List (dataloss-discuss () datalossdb org)
Archived at http://seclists.org/dataloss/
Unsubscribe at http://datalossdb.org/mailing_list

Supporters:

Risk Based Security (http://www.riskbasedsecurity.com/)
Risk Based Security equips organizations with security intelligence, risk
management services and on-demand security solutions to establish
customized risk-based programs to address information security and
compliance challenges. 

Tenable Network Security (http://www.tenable.com/)
Tenable Network Security provides a suite of solutions which unify real-time
vulnerability, event and compliance monitoring into a single, role-based, interface
for administrators, auditors and risk managers to evaluate, communicate and
report needed information for effective decision making and systems management.