Deceiver, Robber, and Hackers Acquire PHI of Patients

June 10, 2018


A review of healthcare data safety occurrences informed in the past few days that have led to the PHI of patients being acquired by illegal people.

Blue Cross Blue Shield of Illinois Finds PHI was Provided to a Pretender

Blue Cross Blue Shield of Illinois has found the PHI of some plan members has been revealed to a physician who was personating another doctor. The physician was hired by its business associate Dane Street and carried out peer to peer appraisals for the company – Additional appraisals when requests for facilities have been refused by an insurance business.

Dane Street was alerted by police on April 9, 2018 that the physician had been falsely personating another doctor to perform peer to peer appraisals. Those appraisals required the physician to view information like names, medical service information, phone numbers, dates of birth, addresses, and Social Security numbers.

As Social Security numbers were revealed, affected patients have been provided free credit checking facilities for one year. Dane Street no longer hires the physician the matter is in the hands of police.

Dane Street has applied additional credentialing measures to avoid occurrences of this sort from happening in the time to come.

About 3,000 Patients of Quality Care Pharmacy Alerted of PHI Disclosure

Roughly 3,000 patients of Quality Care Pharmacy in San Marcos, CA have been informed that some of their PHI have been acquired by robbers.

Professional robbers targeted the drugstore, situated in a San Marcos strip mall, and thieved hundreds of thousands of dollars of medicines and a computer having unencrypted PHI. As per a 10News report, the robbers also drilled the safe and took its contents and managed to avoid all security measures put in place by the drugstore.

Safety defenses had been upgraded after two earlier thefts at the drugstore, even though they proved inadequate to avoid the robbery.

Patients affected by the breach have now been informed by post, even though it allegedly took nine weeks for some patients to get their notification letters.