Rip of the Week: 15,000 Kaiser Patients Breached by Unencrypted External Drive
This week’s Rip is another episode of the “unencrypted external hard drive” show. Thanks to lyger over at DataLossDB for the heads up. The Fresno Bee reports that an external hard drive was stolen, containing names, medical record numbers, and for some patients, ages, dates of birth, gender, phone numbers and other information related to their care and treatment.
And, to the chagrin of at least 15,000 people, it was not encrypted. This also teaches us a familiar lesson about policies and procedures:
- They are good. The employee knew what was expected of him or her, which was not to store information on the drive.
- They are completely insufficient on their own. The employee violated, was fired (surely the stated policies and procedures made that tidy)…yet the 15,000 people are still breached.
It’s better to encrypt.
data breach, encryption, external hard drive, Kaiser Permanente, medical records, Sacramento
More from this category
- Rip of the Week: It’s a Data Breach Medley
- Rip of the Week: It Gets Worse: 860,000 More Victims of Stolen Laptop Data Breach
- 207,000 US Army Reservists Breached by Stolen Laptop
- Rip of the Week: Psychiatric Hospital Breaches Data of 24,600
More from this author
- Rip of the Week: It’s a Data Breach Medley
- Tip of the Week: Five Steps to Managing Mobile Devices
- MyLaptopGPS at CompTIA Breakaway 2010, Great Show!
- Why So Many Data Breaches Don’t See Light Of Day
Subscribe to this author