HIPAA Violation at Froedtert Health Reveals 43,000 Patient Documents

Milwaukee centered healthcare provider, Froedtert Health, has declared it has experienced a data violation that may possibly have impacted as many as 43,000 patients as a consequence of a computer virus that had contaminated an employee’s Computer.

Froedtert Health runs a 3-hospital system consisting of the St. Joseph’s Hospital in West Bend, Froedtert Hospital in Milwaukee, and Community Memorial Hospital in Menomonee Falls. Patients coming from all 3 hospitals have been impacted and violation notice letters had been delivered earlier in the week.

The virus was identified on December 14, 2013, and it’s understood that it might possibly have permitted hackers to get into the Safeguarded Health Details – and private identifiers – saved in the worker’s computer account.

In a declaration informing the violation, Froedtert Health described that it enrolled the assistance of a computer forensics organization to carry out an inquiry to ascertain the level of the infection and whether or not it constituted a HIPAA violation.

The forensics organization was not able to ascertain whether hackers had really been capable to see any of the information in the account, however, was “unable to definitively eliminate the probability the virus managed to get details.”

A spokesman for Froedtert Health informed 12 News that the inquiry was started immediately after the finding of the virus, however, it required several weeks to carry out, which clarifies the delay in delivering violation notice letters.

The info that was probably accessed incorporated patient names, dates of birth, addresses, phone numbers, medical insurance details as well as some clinical info. The Social Security numbers of some patients were also saved in the computer account.

Because of the danger of identity scam, all impacted people are suggested to keep track of their credit carefully for a time period of 2 years and also to inform any suspected activity quickly. Healthcare identity fraud will not generally happen straightaway; there is usually a hold off prior to robbers use thieved health info.

Recently the robbery or loss in cellular devices like transportable hard disk drives and laptops has led to the medical information of countless U.S. citizens becoming affected; nevertheless, personal computer infections could be more severe. A Personal computer device is frequently thieved for the worth of the hardware as opposed to the information it has, but infections are usually utilized by online hackers to get information and acquire Social Security numbers to carry out medical scam.

Health care companies now deal with a raised danger of specific assaults because of the worth of the information they keep on individuals, but most are faltering to accept suitable measures to avoid online hackers from using infections to get into their personal computer systems. Numerous health care suppliers usually do not regularly check out for infections in the conviction that their software program will avoid infections from becoming set up.

The Ponemon Institution lately carried out market research which shows that up to 60% of healthcare suppliers don’t carry out normal virus scans on their computer systems when they are linked, and 89% didn’t scan for viruses or malware infections prior to hooking up.

It might not be easy to stop hackers from accessing healthcare computer systems, however, it is necessary that processes are set up to recognize breaches once they happen to restrict the harm triggered. Frequently inspecting for computer virus infections is essential to effectively tackle danger and HIPAA-covered might be penalized for failing to put into practice this fundamental protection process.

Link copied to clipboard
Photo of author

Posted by

Mark Wilson

Mark Wilson is a news reporter specializing in information technology cyber security. Mark has contributed to leading publications and spoken at international forums with a focus on cybersecurity threats and the importance of data privacy. Mark is a computer science graduate.