Shostack + Friends Blog Archive


Kaiser Permanente, 150 patients, $200,000 fine

Computerworld reports that “Kaiser Permanente division fined $200k for patient data breach:”

The California Department of Managed Health Care (DMHC) has fined Kaiser Foundation Health Plan, a division of Kaiser Permanente, $200,000 for exposing the confidential health information of about 150 people.

The DMHC said the information had been available on a publicly accessible Web site for as long as four years.

(There’s also an interesting story with Kaiser suing a whistleblower for bringing this to public attention, which Computerworld covers.)