2/15 - Bronx Hospitals’ Medical Records of 1.7 Million People Are Stolen

Some 1.7 million patients, staff members, contractors and vendors had their medical and other personal records from city hospitals in the Bronx stolen, the city’s Health and Hospitals Corporation said Friday. The affected hospitals were Jacobi Medical Center, North Central Bronx Hospital and two affiliated clinics. The “overwhelming majority” of those who had their data stolen were patients, the agency said.

http://cityroom.blogs.nytimes.com/2011/02/11/patients-computerized-records-st...

1/25 - Students' Personal Data Posted Online

Team 5 Investigates has learned that the personal information of as many as 1,300 current and former students at the Wentworth Institute of Technology was inadvertently put online.

http://www.thebostonchannel.com/news/26599566/detail.html

1/20 - Vermont AG settles data breach case for $55,000

The Vermont Attorney General's office says a Connecticut-based health insurance company is ready to pay $55,000 to settle a complaint that it didn't inform customers that personal information had been lost along with an unencrypted computer hard drive.

http://www.businessweek.com/ap/financialnews/D9KRGURG0.htm

1/13 - Uconn reports data breach of online retail site

An online retail site at University of Connecticut is warning thousands of customers that their billing information may have been hacked.  The information was exposed when a hacker managed to breach the HuskeyDirect.com database, which has billing information for about 18,000 customers who use the site to buy Husky-branded sports items from the UConn Co-op. The Co-op acts as the university's bookstore but is run as a separate, member-owned non-profit group.

http://www.networkworld.com/news/2011/011311-uconn-data-breach.html

1/3 - KCI notifies some patients that employee misused their payment cards

On December 21, KCI (Kinetic Concepts, Inc.) Health Care Compliance notified the New Hampshire Attorney General’s Office of a security breach involving fraud.  An employee in their Texas call center  with authorized access to a database containing customers’ payment card data had reportedly misused the information of “several” customers to make purchases in the San Antonio area.

http://www.phiprivacy.net/?p=5395

12/24 - 79% of web user put personal information in passwords

Nearly four in five (79 percent) web users admit to using personal information and phrases in passwords, says Check Point.Research by the security firm, which created the ZoneAlarm software, revealed more than a quarter (26 percent) reuse the same passwords email, online banking or social networking accounts while 8 percent claim they copy passwords from online lists of 'good' passwords.

http://www.networkworld.com/news/2010/122010-79-of-web-user-put.html

12/22 - 100,000 Credit Cards Compromised By Data Breach

A data breach affecting Twin America, the parent company of CitySights NY, potentially compromised an estimated 100,000 customers' personal details, including credit card numbers. According to a security breach notification letter sent to the New Hampshire attorney general, as required by that state's laws, attackers successfully exploited a Twin America Web server by using a SQL injection attack.

http://www.informationweek.com/news/security/attacks/showArticle.jhtml?articl...

9/10 - Hospital Fined $250,000 For Not Reporting Data Breach

Health Leaders Media - Lucile Salter Packard Children's Hospital at Stanford University has been fined $250,000 by California health officials for failing to report a breach of 532 patient medical records in connection with the theft of a hospital computer by an employee.

http://www.healthleadersmedia.com/content/TEC-256217/Hospital-Fined-250000-For-Not-Reporting-Data-Breach

9/9 - Missing files little threat, hospital says

Boston Globe - Missing computer files that possibly contained personal information on about 800,000 people connected to South Shore Hospital are “unrecoverable,’’ the hospital said yesterday after an investigation that also concluded there is little chance that individuals would be harmed by the data breach.

http://www.boston.com/business/healthcare/articles/2010/09/09/south_shore_hospital_says_missing_files_pose_little_threat/

9/7 - New lawsuit to challenge laptop searches at U.S. border

The Washington Post - Criminal defense lawyers, press photographers and a university student are challenging the Obama administration's search policy permitting officers at U.S. borders to detain travelers' laptop computers and examine their contents even without suspecting the traveler of wrongdoing.

http://www.washingtonpost.com/wp-dyn/content/article/2010/09/07/AR2010090700845.html