Central Kentucky's largest group practice hit with patient data breach

Share this article:
A laptop storing patient data was stolen from the neurology department of Lexington Clinic on the night of Dec. 7, 2011.

How many customers? Lexington Clinic is sending letters to 1,018 patients.

What type of personal information? The computer stored patient names, contact information and diagnoses for some Lexington Clinic patients receiving services within the neurology department.

What happened? A laptop containing personally identifiable information of patients of Lexington Clinic was stolen overnight on Dec. 7, 2011. 

Details: Lexington Clinic, which operates offices in more than 25 locations throughout Central and Eastern Kentucky, said the stolen laptop did not contain the personal financial information of patients, such as Social Security, credit card or bank account numbers. Upon learning of the theft, the facility notified law enforcement authorities, and all door locks to the neurology department were changed. Additionally, the clinic publicly disclosed the breach to local media, and posted information about the breach on its website.

Quote: “There is no evidence thus far that any patient information has been misused..."

Source: Lexington Clinic release, Jan. 30, 2012, Lexington Clinic Notifying Patients of Information Security Breach

Share this article:
You must be a registered member of SC Magazine to post a comment.
close

Next Article in The Data Breach Blog

Sign up to our newsletters

RECENT COMMENTS

FOLLOW US

More in The Data Breach Blog

Transcript website flaw exposed personal data on 98k users

NeedMyTranscripts.com expose users' names, addresses and dates of birth, among other information, due to a site flaw that one user discovered.

Sourcebooks payment card breach impacts more than 5,000 customers

More than 5,000 customers had personal information stolen, but roughly 9,000 notification letters were sent out as a precautionary measure.

Cyberswim notifies customers that payment card data may be at risk

Malicious software installed on Sept. 24 may have compromised personal information for visitors that made purchases between May 12 and Aug. 28.