Keylogger Hack At Root Of HIPAA Breach
Computers infected for more than a month
A keystroke logger infecting three computers has been blamed for swiping the medical and financial data of UC Irvine Student Health Center patients. The keylogger was discovered by the California Information Security Office March 26, and had been capturing and transmitting the data to unauthorized servers for more than one month before being detected, according to a UC Irvine patient notification letter. Some 1,836 patients were affected by the breach, according to an SC Magazine report.
Patient names, unencrypted medical information, including diagnoses, bank name, check numbers and ICD-9 codes were believed to have been transmitted to the unauthorized servers. The three infected computers were reportedly immediately disconnected from the Internet upon discovery. UC Irvine will be providing affected patients with one year of credit monitoring services...
- Tags:
- California Information Security Office (CIO)
- financial data safety
- Health Insurance Portability and Accountability Act (HIPAA)
- HIPAA breaches
- J. Patrick Haines
- Kaspersky Lab
- keylogger
- keylogger detection
- Marcelle C. Holmes
- medical data safety
- Nikolay Grebennikov
- U.S. Department of Health and Human Services (HHS)
- University of California Irvine (UCI) Student Health Center
- virus protection
- Login to post comments