Unsecured Database Exposed 16,000+ Children’s Records

A database containing the personally identifiable information (PII) of more than 16,000 children has been exposed over the Internet and could be accessed without a password or any other form of authentication. The database was found by security researcher Jeremiah Fowler and the Website Planet team and was traced to Tridas Group LLC. Tridas Group… Read More »

Interview: Kimberly Heimback, Compliance Officer, WNY BloodCare

HIPAA Journal is conducting interviews with healthcare professionals and service providers to find out more about their compliance journeys, how the HIPAA Rules have affected their working lives, and the successes and challenges they have faced with HIPAA compliance. Kimberly Heimback, Compliance Officer, WNY BloodCare has shared her thoughts. Kimberly Heimback, Compliance Officer, WNY BloodCare.… Read More »

Editorial: Will Amazon Clinic Put Patient Privacy at Risk?

Amazon has launched a new service that connects patients with doctors – Amazon Clinic. This should come as no surprise given Amazon’s recent acquisitions and the company’s stated ambitions healthcare market. The new service promises to deliver convenience combined with affordability, but Amazon’s latest healthcare venture sets warning bells ringing about patient privacy. Amazon’s Journey… Read More »

Privacy Risks Identified in Websites Used to Deliver Opioid Addiction Treatment and Recovery Services

An alarming number of websites used to deliver opioid addiction treatment and recovery services contain data sharing and privacy risks, according to a new report from the Opioid Policy Institute (OPI) and Legal Action Center (LAC). Addiction treatment and recovery services are increasingly delivered online and via mobile apps, with the websites handling multiple functions.… Read More »

Gateway Rehabilitation Center Reports Cyberattack Affecting 130,000 Patients

Pennsylvania-based Gateway Rehabilitation Center (Gateway Rehab) has recently announced that it experienced “an incident disrupting access to certain systems.” The incident in question was detected by Gateway Rehab on June 13, 2022. Immediate action was taken to prevent further unauthorized access to its systems and a digital forensics firm was engaged to investigate the breach.… Read More »

Community Health Network Website Tracking Code Impermissibly Disclosed the PHI of up to 1.5 Million Patients

Indiana-based Community Health Network is the latest healthcare provider to confirm that the protected health information of patients has been impermissibly disclosed to Meta/Facebook and Google due to the use of their tracking code on its websites. According to the breach report submitted to the HHS’ Office for Civil Rights, the protected health information of… Read More »