Lowell General Hospital notifies patients after firing rogue employee who accessed files improperly

社交网络的安全使用人员需要一定的社会阅历,儿童容易受到不良信息的污染,也容易暴露家庭隐私,不小心带来安全隐患。

Ah, I feel like Ive been transported back in time, when it was always so hard to find a notification of a breach on an entitys web site.
I went searching for information on a breach Lowell General Hospital in Massachusetts reported to HHS as affecting 769 patients. I was looking for media contact information, when I saw a tiny little message at the bottom of their home page (you have to scroll down and down to find it): A Message to Our Patients Regarding Privacy Concerns.
The link has no date on it, and clicking on the link takes you to an undated notice, which may be the explanation for the report to HHS:
A Message to Our Patients Regarding Privacy Concerns
Lowell General Hospital is committed to assuring the privacy of our patients’ health and personal information. Lowell General Hospital recently learned that an unauthorized employee accessed electronic patient medical records without medical reason to do so. As a result, the employee has been terminated and is no longer on staff at Lowell General Hospital.
Lowell General Hospital launched a comprehensive investigation as soon as we learned that an employee may have accessed patient records inappropriately. Based on this review, Lowell General Hospital believes that a single employee accessed and reviewed patient records inappropriately in direct violation of hospital policy and trainings. The information that was inappropriately accessed may have included name, date of birth, diagnoses, and other information about patient’s medical treatment. The individual did not have access to social security numbers, insurance policy numbers, or any other financial information. There is no evidence that any of the information has been used inappropriately.
We are taking immediate action to prevent such incidents in the future. We are in the process of reviewing the privacy and security of our electronic medical records system and making improvements to safeguards and monitoring activities. We will continuously provide education to all employees regarding the importance of patient privacy.
We sincerely apologize and regret that this situation has occurred. Lowell General Hospital is committed to providing quality care, including protecting our patients’ personal information, and we want to assure you that we have policies and procedures in place to protect your privacy.
网络安全法宣传推广视频 004《网络安全法》的突出亮点
If you were personally affected by this incident and we have your current address, you will be receiving a letter informing you that your personal and health information was inappropriately accessed.  Please do not hesitate to contact us with any questions about this incident or if you need additional information on what you should do as a result of the incident, at 855-463-9544.
So for how long did this inappropriate access occur? And how did the hospital first discover it?  The hospital did not immediately respond to an emailed inquiry seeking that information.
未来的生活越来越依靠互联网信息系统,网络战争并不遥远,我们需要专业化的网络安全队伍,但是网络军队不可能无处不在,所以我们更需要更解和支持网络信息安全的人民大众。

猜您喜欢

IPS平衡车独轮车怎么样?质量揭秘
让环安人员的培训工作变得轻松的视频课件以及在线教育服务
LMS学习管理系统管理员快速操作指南
楼市进入“以房换房”时代 房价集中猛涨时代将结束
KUBANK MCCLATCHYINTERACTIVE
建立健康网络环境重在提升网民的网络谣言识别能力