Electronic Health Records

Policy & Regulation News

Texas MD Anderson Cancer Center announces data breach

By Patrick Ouellette

- The same week that Alaska DHSS agreed to pay $1.7 million to the government for an ePHI security breach, another big data breach was reported by the University of Texas MD Anderson Cancer Center.

An MD Anderson unencrypted computer containing patient and research information was stolen from a physician’s home on April 30. The Center investigated the matter and confirmed that the stolen computer contained patient information, such as names, medical record numbers, treatment and research information and some Social Security numbers.

The investigation hasn’t determined who the responsible criminal is and MD Anderson is trying to reproduce the computer’s information. However, more importantly, it started notifying affected patients who may have been affected. To ensure that credit card information remains safe, MD Anderson is offering credit monitoring services for those whose Social Security numbers were included in the data. Furthermore, it has call center support available to those affected.

MD Anderson said that it doesn’t believe the theft was due to the information on the computer, but that seems to be of little consequence at the moment. The unencrypted computer was completely vulnerable to theft and after what happened to DHSS, what type of action the government takes (if any) should be interesting. In its press release, Anderson said that it “takes this incident very seriously and is committed to protecting patient privacy.” If this is the case, it will follow up on its promise to ramp up its employee privacy training and encryption efforts.

  • How are federal policies changing reimbursement strategies?
  • Longstanding IT Challenges Still Limit Potential of FHIR
  • Mobile EHR design hinges on developer-physician coordination
  • VA Shares Vision for EHR Interoperability, Modernization
  • MGMA: ICD-10 delay would increase time for testing, standards
  • DoD Officially Pushes EHR Modernization Start Date to 2017
  • Congress looks to set firm VA-DoD EHR integration timeline
  • ONC 2015 Edition Health IT Rule Aims at Interoperability
  • Bread of Healing Clinic to Profit from McKesson EHR, Charity
  • Healthcare Industry Reacts to Stage 3 MU Proposed Rule
  • CHIME Pleased with Stage 3 Meaningful Use Proposed Rule
  • CMS Requests Comments on EHR, Health IT Certification Rule
  • What health IT is necessary to support accountable care?
  • EHR replacement: Considerations for a successful transition
  • Brooklyn HIE supports mental health patients, coordinates care
  • History, Challenges, and Considerations of ICD-10 Transition
  • Virtual assistant aids patient engagement, accountable care
  • Technical requirements for practices in meaningful use
  • 3 Best Practices For Effective EHR Replacement, Adoption
  • EHRs drop on ECRI 2014 hazards list, but alarm misuse reigns
  • WEDI Calls for Health IT System Cybersecurity Improvements
  • Carequality Interoperability Live in 3k Clinics, 200 Hospitals
  • Explaining cloud security
  • Director of the Office of Consumer eHealth to depart ONC
  • Team Says Interoperability Is Key for DOD EHR Modernization
  • EHR, healthcare takeaways from Hurricane Sandy
  • HIE Partnership to Improve Health Data Exchange of Imaging
  • Patient Portal Adoption Diverges Among Older Generation
  • Telemedicine, mHealth could save employers $6 billion a year
  • Mercy breaks ground on first dedicated telehealth center
  • Meaningful use of EHR systems begins with meaningful training
  • Why do Medicaid providers struggle with meaningful use?
  • Will EHR Incentives Help Spread Health Information Exchange?
  • FDA Medical Device Interoperability Draft Needs Clarification
  • DoD Awards $139M Contract for Patient Engagement, Access
  • CHIME Awards Innovation Prize for Interoperability, FHIR Work
  • Health Information Exchange Part of Care Quality Initiative
  • Ohio Healthcare IT Day 2014 to focus on telehealth
  • Sebelius takes responsibility for HIX “debacle” in hearing
  • Mississippi telehealth pilot to tackle diabetes with tablets
  • Texas MD Anderson Cancer Center announces data breach
  • athenahealth Reaches Health IT Partnership Deal with BIDMC
  • South Carolina Docs to Tackle Health IT Interoperability
  • EHRs are “a source of stress” for physicians, AMA says
  • How EHR Use Benefits, Challenges Primary Care Coordination
  • Will Patient Health Outcomes Improve With Interoperability?
  • Linda Schwartz Confirmed by the Senate as Crucial VA Advisor
  • Epic, Cerner Beat Out MEDITECH in Small Hospital EHR Adoption
  • The Week Ahead in Health IT Interoperability: Nov. 23-29
  • ONC Releases Facts Sheets Connecting HIPAA, Interoperability
  • Epic Trails Cerner, McKesson in Recent EHR Market Share Report
  • Do Health IT Developers Encounter Barriers in Pilot Projects?
  • Why daily reporting means success in Stage 2 Meaningful Use
  • ONC reminds providers of July 1 hardship exception deadline
  • Personal Connected Health Alliance to bring mHealth worldwide
  • Five reasons you might actually like ICD-10
  • Where Do Payers Fit into Population Health Management?
  • Understanding Meaningful Use to Facilitate Success in MIPS?
  • EHR Vendor Cerner and 3M Partner for Population Health
  • Physician survey: More use EHR, few are satisfied
  • Potential threats to EHR on the web and in the cloud
  • Stolen backup media causes health data breach at Cancer Care Group
  • HIPAA violations need proactive solutions
  • Making Patient-Generated Health Data Work for Providers
  • Will Expectations Meet Reality for Interoperability in 2016?
  • VA, NATE Join Forces for Health Information Exchange Efforts
  • Health IT Certification Criteria Stresses Interoperability
  • AMA reminds group providers of Sep. 30 PQRS deadline
  • New Policy Should Accomodate Physician EHR Documentation Demands
  • CORHIO adds more providers to its HIE
  • Epic EHR adoption debated in North Carolina’s Durham County
  • ONC head: Demise of fee-for-service, rise of ACOs inevitable
  • NCQA drafts updated guidelines for PCMHs, requests comment
  • Understanding How EHR Use, Adoption Impacts Physicians
  • BCBS of North Dakota Loses $72.9M as Claims Amounts Rise
  • Greenway Health Achieves 2015 ONC Health IT Certification
  • Does HIE cause more confusion than it prevents?
  • AHA backs bill to streamline merger, acquisition reviews
  • ICSA Labs set to certify EHR for Stage 2 Meaningful Use
  • Why are mobile apps lacking for hospitals, inpatient care?
  • HIT training: Is an online graduate program right for you?
  • MRC: Where is the FDA’s final guidance on mHealth?
  • Alabama forges ahead with EHR efforts
  • Muddled Kansas HIE situation serves as warning
  • Pennsylvania doles out $8.9M to connect 11 regional HIEs
  • As CMS Becomes Lenient, Providers Tackle Patient Engagement
  • Can Dell’s Latitude 10 grab a piece of the mHealth market, too?
  • Mercy Extends Epic EHR Services to Californian Health System
  • How are Stage 2 Meaningful Use, ICD-10 taxing providers?
  • Nurse Statements in EHR Technology Improve ADR Detection
  • New Bipartisan Committee Addresses EHR Adoption Issues
  • National HIE, eHealth Exchange boosted by new collaboration
  • EHR implementation: Defining and achieving your ideal workflow
  • Telehealth law to create federal definition, provide guidance
  • UPDATE: Final Rule for Meaningful Use Modifications Under Review
  • CommonWell Alliance Expands with Aprima, CareCloud
  • Which providers have most benefited from EHR incentives for Medicare?
  • HIMSS: Only half of hospitals have data archiving strategies
  • Takeaways from Commonwealth Fund ACO report
  • EHR usability, satisfaction are falling among physicians
  • Browse the latest EHR, MeaningfulUse and ICD-10 White Papers and Guides 

    Related links:

    ePHI will benefit from more policy not just more technology

    UT law professor examines Utah health data breach

    Data security is everything in EHR selection and Implementation

    More on the South Shore Hospital health data breach

    Stiffer encryption means better protection for PHI or EHR

    Continue to site...