Software // Information Management
06:03 PM
Connect Directly
Core System Testing: How to Achieve Success
Oct 06, 2016
Property and Casualty Insurers have been investing in modernizing their core systems to provide fl ...Read More>>

Security Breach Exposes Patient Data In Canada

A consultant's lost laptop includes names, Medical Care Plan numbers, age, sex, physician and test results for infectious diseases, including HIV and hepatitis.

A security breach affecting an unknown number of Canadian citizens came to light last week in the Canadian province of Newfoundland and Labrador when a consultant for the Provincial Public Health Laboratory took a laptop containing patient health information home.

The consultant was contacted by a person who identified himself as a representative of a computer security company and who claimed that he was able to access to data on the laptop through the consultant's home Internet connection.

"On Tuesday evening of this week, there was a security breach that exposed the confidential information of some patients whose test results are held by our Provincial Public Health Laboratory," said Jerome Kennedy, Minster of Justice and Attorney General, in a statement on Friday. "This is a very serious matter that required immediate action."

The statement issued by the Provincial Government characterized the government's actions as "quick and decisive." It noted that until a forensic investigation is completed, the number of affected patients cannot be determined. It did not identify the computer security company representative or his company.

The exposed information includes names, Medical Care Plan numbers, age, sex, physician and test results for infectious diseases, including HIV and hepatitis.

The Royal Newfoundland Constabulary (RNC) issued a statement on Monday saying there was no evidence of criminal activity associated with the data breach and that the RNC's involvement was no longer necessary, according to a report from the Canadian Broadcasting Corporation.

Spokespersons for the Newfoundland and Labrador Department of Justice and the Department of Health and Community Services did not respond to requests for further information.

The security lapse echoes a (presumably) larger data breach reported on October 30 in the United Kingdom. Two computer disks containing the names, addresses, National Insurance numbers, and (in some cases) bank information for all families with a child under 16 -- about 25 million people -- were reported lost and are still being sought.

The data losses come at a time when an EU commissioned study that was released on Friday notes that citizen trust is necessary for e-government initiatives to succeed.

Comment  | 
Print  | 
More Insights
Newest First  |  Oldest First  |  Threaded View
The Agile Archive
The Agile Archive
When it comes to managing data, donít look at backup and archiving systems as burdens and cost centers. A well-designed archive can enhance data protection and restores, ease search and e-discovery efforts, and save money by intelligently moving data from expensive primary storage systems.
Register for InformationWeek Newsletters
White Papers
Current Issue
Top IT Trends to Watch in Financial Services
IT pros at banks, investment houses, insurance companies, and other financial services organizations are focused on a range of issues, from peer-to-peer lending to cybersecurity to performance, agility, and compliance. It all matters.
Twitter Feed
InformationWeek Radio
Sponsored Live Streaming Video
Everything You've Been Told About Mobility Is Wrong
Attend this video symposium with Sean Wisdom, Global Director of Mobility Solutions, and learn about how you can harness powerful new products to mobilize your business potential.