Security Breach Exposes Patient Data In Canada - InformationWeek
IoT
IoT
Software // Information Management
News
11/26/2007
06:03 PM
Connect Directly
Google+
LinkedIn
Twitter
RSS
E-Mail
50%
50%
RELATED EVENTS
Faster, More Effective Response With Threat Intelligence & Orchestration Playboo
Aug 31, 2017
Finding ways to increase speed, accuracy, and efficiency when responding to threats should be the ...Read More>>

Security Breach Exposes Patient Data In Canada

A consultant's lost laptop includes names, Medical Care Plan numbers, age, sex, physician and test results for infectious diseases, including HIV and hepatitis.

A security breach affecting an unknown number of Canadian citizens came to light last week in the Canadian province of Newfoundland and Labrador when a consultant for the Provincial Public Health Laboratory took a laptop containing patient health information home.

The consultant was contacted by a person who identified himself as a representative of a computer security company and who claimed that he was able to access to data on the laptop through the consultant's home Internet connection.

"On Tuesday evening of this week, there was a security breach that exposed the confidential information of some patients whose test results are held by our Provincial Public Health Laboratory," said Jerome Kennedy, Minster of Justice and Attorney General, in a statement on Friday. "This is a very serious matter that required immediate action."

The statement issued by the Provincial Government characterized the government's actions as "quick and decisive." It noted that until a forensic investigation is completed, the number of affected patients cannot be determined. It did not identify the computer security company representative or his company.

The exposed information includes names, Medical Care Plan numbers, age, sex, physician and test results for infectious diseases, including HIV and hepatitis.

The Royal Newfoundland Constabulary (RNC) issued a statement on Monday saying there was no evidence of criminal activity associated with the data breach and that the RNC's involvement was no longer necessary, according to a report from the Canadian Broadcasting Corporation.

Spokespersons for the Newfoundland and Labrador Department of Justice and the Department of Health and Community Services did not respond to requests for further information.

The security lapse echoes a (presumably) larger data breach reported on October 30 in the United Kingdom. Two computer disks containing the names, addresses, National Insurance numbers, and (in some cases) bank information for all families with a child under 16 -- about 25 million people -- were reported lost and are still being sought.

The data losses come at a time when an EU commissioned study that was released on Friday notes that citizen trust is necessary for e-government initiatives to succeed.

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
How Enterprises Are Attacking the IT Security Enterprise
How Enterprises Are Attacking the IT Security Enterprise
To learn more about what organizations are doing to tackle attacks and threats we surveyed a group of 300 IT and infosec professionals to find out what their biggest IT security challenges are and what they're doing to defend against today's threats. Download the report to see what they're saying.
Register for InformationWeek Newsletters
White Papers
Current Issue
IT Strategies to Conquer the Cloud
Chances are your organization is adopting cloud computing in one way or another -- or in multiple ways. Understanding the skills you need and how cloud affects IT operations and networking will help you adapt.
Video
Slideshows
Twitter Feed
Sponsored Live Streaming Video
Everything You've Been Told About Mobility Is Wrong
Attend this video symposium with Sean Wisdom, Global Director of Mobility Solutions, and learn about how you can harness powerful new products to mobilize your business potential.
Flash Poll