Information security analytics

An employee of University Hospitals improperly accessed medical and personal information of 692 patients over a three-year period, the hospital system said Friday, cleveland.com reports. The employee, who has been dismissed, breached the hospital system's electronic medical records, allowing the person to gain names, home addresses, phone numbers, email addresses, medical and health-insurance account numbers and other patient information. The electronic medical records also provide information on patients' office visits.

Enna Garland, 40, a former payroll specialist at the CareOne senior care facility on Bridge Plaza North has been arrested on fraud and identity theft charges after allegedly using the company's employee database to obtain fraudulent debit cards. The New York resident allegedly began sending fraudulent requests to processing centers requesting ADPT Aline debit cards in the names of former employees in April and continued into September, according to police.

Matthew Devlin, 25, from Halifax, Yorkshire, used details of when customers were due a mobile phone upgrade to target them with services offered by his own telecoms companies, databreaches.net reports.

The University of New Mexico Hospital failed to protect the confidential medical and mental health records of the Roswell school shooter, 13-year-old Mason Campbell, when he was a patient there earlier this year, according to a federal civil lawsuit filed on his behalf Thursday, Albuoquerque journal reports.

A former state employee has been sentenced to 210 days in jail for using his work computers in pursuit of ways to commit identity theft, sacbee.com reports.

A breach of privacy by a patient in Hutt Hospital's emergency department has been referred to police, stuff.co.nz reports. Hutt Valley District Health Board chief executive Graham Dyer has confirmed that on September 8 a patient was able to view information about other patients on an unattended computer.

A top official in the St. Louis Recorder of Deeds Office has been fired for a vital records security breach of about 19,000 unauthorized copies of death certificates, kmov.com reports.

A health care company is offering free credit monitoring to staff and more than 2,000 patients after an ex-worker was charged with stealing credit card information from cancer patients, Virginian-Pilot reports.

The military says as many as 2,300 patients are affected by a breach of personal information at the Lyster Army Health Clinic at Fort Rucker. Paper records with the names and Social Security numbers of patients were tossed into a recycling bin at the southeast Alabama base on July 2. The Army says no medical information was released. But it's now sending letters to about 2,300 patients whose identifying information may have been compromised.

The University of Newcastle has apologised to several thousand students after personal information was posted online. The University says the student administration information inadvertently became available in an 'online test environment'. It says it has carried out extensive checks and found that the information was not downloaded by any individual.