Feeds

For sale: memory stick plus cancer patient records

£30 ONO

  • alert
  • submit to reddit

Internet Security Threat Report 2014

Health bosses in Lancashire are facing awkward questions after confidential medical records of 13 cancer patients found their way onto a portable memory stick, which was repackaged and sold as new to a Crewe estate agent.

Investigations into the leak of the medical records of 13 patients are continuing, the Bolton Evening Newsreported yesterday. Meanwhile hospital chiefs are trying to restore confidence by vowing to take steps to make sure that such a serious security breach can never happen again.

Graham Fullarton, the Royal Bolton Hospital's data protection manager, told the paper that there would be a "full review" of hospital procedures, which will likely result in a ban on portable storage devices.

"Using memory sticks is unusual and unorthodox. We don't want people to cart information like this around," he said.

"We are treating this with the utmost gravity. It is a serious incident. There has to be additional security put in place to make sure this situation is not repeated.

Police involvement in the incident is dependent on the results of the hospital's own internal investigation.

An early picture of what happened and when has emerged, but there are still plenty of blanks in the story to fill in.

It seems medical records of patients (dating back to 1999) were copied from a hospital PC onto a portable memory stick. We don't know who did this.

How this stick was subsequently obtained by a unnamed Crewe reseller, who sold it (as a new, blank stick) to estate agent Dawn Rozzell for £30, also remains unclear.

In any case when Ms Rozzell connected the stick to her PC she had quite a surprise - it contained "the dates of birth, home addresses, telephone numbers, family medical histories and GP details" of 13 cancer patients, the Bolton Evening Newsreports.

Hospital bosses have promised to contact affected patients, once their identities are confirmed. ®

Related Stories

NHS patient privacy? What patient privacy!
Paul McCartney account details leaked on second user PC
Datawiping works (true)
Sony demos Memory Stick peripherals

Top 5 reasons to deploy VMware with Tegile

More from The Register

next story
Webcam hacker pervs in MASS HOME INVASION
You thought you were all alone? Nope – change your password, says ICO
You really need to do some tech support for Aunty Agnes
Free anti-virus software, expires, stops updating and p0wns the world
Meet OneRNG: a fully-open entropy generator for a paranoid age
Kiwis to seek random investors for crowd-funded randomiser
USB coding anarchy: Consider all sticks licked
Thumb drive design ruled by almighty buck
Attack reveals 81 percent of Tor users but admins call for calm
Cisco Netflow a handy tool for cheapskate attackers
Privacy bods offer GOV SPY VICTIMS a FREE SPYWARE SNIFFER
Looks for gov malware that evades most antivirus
Patch NOW! Microsoft slings emergency bug fix at Windows admins
Vulnerability promotes lusers to domain overlords ... oops
prev story

Whitepapers

Choosing cloud Backup services
Demystify how you can address your data protection needs in your small- to medium-sized business and select the best online backup service to meet your needs.
A strategic approach to identity relationship management
ForgeRock commissioned Forrester to evaluate companies’ IAM practices and requirements when it comes to customer-facing scenarios versus employee-facing ones.
High Performance for All
While HPC is not new, it has traditionally been seen as a specialist area – is it now geared up to meet more mainstream requirements?
Getting ahead of the compliance curve
Learn about new services that make it easy to discover and manage certificates across the enterprise and how to get ahead of the compliance curve.
Saudi Petroleum chooses Tegile storage solution
A storage solution that addresses company growth and performance for business-critical applications of caseware archive and search along with other key operational systems.