RSS Alerts

Share

More services

Related Links

Related Stories

  • Ponemon: Cost of breaches rising
    The Ponemon Institute has published its annual survey analyzing the cost of data breaches, and has found them rising. Its report, 2008 Annual Study: The Cost of a Data Breach, analyzed input from 43 US firms and found that the cost of the average breach was up 2.5% from last year. It had risen even more sharply since 2006, climbing 11%.
  • Data Breach Costs Rising
    The average cost of data breaches are rising, according to a report from the Ponemon Institute, which says that lost business is the biggest expense for companies that have their data pilfered.
  • US lawmakers upset at breach news delay
    US lawmakers are asking why a stolen laptop, which had medical test results for 2,500 patients in a National Institute of Health study, was not encrypted.
  • Two US companies own up to breaches
    On a regular basis, companies are having to own up to data breaches. HealthNow New York and MTV Networks are just the latest two making security gaffes.
  • Health Net comes under scrutiny for data loss
    Medical insurance firm Health Net is under investigation by at least two Attorney Generals, following a data loss that has exposed up to 1.5 million customer records

Top 5 Stories

News

Connecticut goes after Health Net for breach

14 January 2010

The state of Connecticut is suing health insurer Health Net, following a data breach that saw 446 000 Connecticut residents’ records compromised, it said yesterday.

Connecticut Attorney General Richard Blumenthal filed the lawsuit, arguing that Health Net failed to secure private medical records and financial information. It also failed to promptly notify consumers endangered by the security breach, the lawsuit alleges.

Blumenthal is also seeking an injunction blocking Health Net from violating the Health Insurance Portability and Accountability Act (HIPAA). It is the first action by a state attorney involving HIPAA since state attorneys were given the right to enforce the legislation.

Health Net – now owned by UnitedHealth Group and Oxford Health Plans – suffered the loss of a portable disk drive last May containing health information, social security numbers, and bank account numbers of the victims. Insurance claim forms, membership forms, appeals and grievances, correspondence and medical records were among the information compromised. The data was unencrypted.

"Protected private medical records and financial information on almost a half million Health Net enrollees in Connecticut were exposed for at least six months – most likely by thieves – before Health Net notified appropriate authorities and consumers,” Blumenthal said, adding that Health Net downplayed the danger.

This article is featured in:
Compliance and Policy  • Data Loss  • Encryption

 

Comments

Susan Callahan says:

15 January 2010
Bravo to Attorney General Blumenthal. I am happy to see someone as important as Attorney General Blumenthal take a strong stance toward those entities that are not doing everything that they can to ensure the security and privacy of people's most confidential data -- health records, social security and bank account numbers. With the pervasiveness of portable storage devices and the selling of personal information surging, all confidential data should be encrypted. There are many encryption solutions on the market that are affordable and easy to implement that could have prevented data leaks like these. Therefore there is no excuse for companies that do not take the proactive steps needed to protect your confidential information. From my perspective, AG Blumenthal is doing an excellent job by taking a stand for everyone's right to privacy.

Note: The majority of comments posted are created by members of the public. The views expressed are theirs and unless specifically stated are not those Elsevier Ltd. We are not responsible for any content posted by members of the public or content of any third party sites that are accessible through this site. Any links to third party websites from this website do not amount to any endorsement of that site by the Elsevier Ltd and any use of that site by you is at your own risk. For further information, please refer to our Terms & Conditions.

Comment on this article

You must be registered and logged in to leave a comment about this article.

Terms & Conditions |Privacy |Website Design|Reed Exhibitions. All rights reserved. Copyright © 2012