WV-Based Coplin Health Systems Data Breach - 43,000 Could Be Affect

Possible HIPAA data breach from a stolen laptop that contains personal health information

Stolen Laptop in data breach.png

The laptop belonging to West Virginia-based Coplin Health Systems was reported to be an employee's and was stolen from their personal vehicle. The incident was on or about November 2, 2017. Though the laptop was password protected, the hard drive was uncrypted. 

The IT department immediately disabled the affected employee's access to computer networks. Information possibly on the laptop included patient names, addresses, Social Security numbers, dates of birth, financial information and health information.

The OCR data breach reporting tool stated that 43,000 individuals may have been impacted. 

Coplin Health System released a breach notification on December 29

e-End operates a secure facility in Frederick, MD,  specializes in destroying a wide variety of classified data and various controlled devices. This includes destruction of data containing hard drives, destruction of ITAR controlled devices, IT equipment and tactical military devices. They routinely destroy body armor that has reached the end of its certified period of use.

Proposed Senate bill would fine, jail execs who conceal data breaches

Proposed Senate bill would fine, jail execs who conceal data breaches

Sen. Bill Nelson, D-Florida, introduced a bill Thursday that would require all U.S. organizations to notify consumers of data breaches within 30 days and impose criminal penalties on executives who deliberately attempt to conceal the event.

Cyber-Security In The Work Place

Cyber-Security In The Work Place

Proper employee training can help reduce the risk of a data breach and the resulting legal liability and reputational harm. This article provides five tips for employers to train employees on data management best practices.

Expensive Repercussions for HIPAA Non-Compliance

The U.S. Department of Health and Human Services, Office for Civil Rights (HHS-OCR) has recently released information about another HIPAA settlement, emphasizing yet again the government's focus on the Health Insurance Portability and Accountability Act of 1996 (HIPAA) Security Rule.