Redwood Memorial Hospital

Redwood Memorial Hospital notified 1,039 patients after missing a thumb drive that contained their identifiable information.

The drive included information including first and last name; facility name and address where services were rendered; ID and medical record numbers; date of birth; gender; operator/technician name; physician name; report ID#; test indications; age; height; weight; test recording and analysis dates and times; and clinical summary of test findings.

The information had been intended to be maintained securely, however, after the incident, the hospital notified each patient via a personal letter mailed to their home address.

Source: https://www.databreaches.net/ca-redwood-memorial-hospital-notifies-over-1000-patients-that-missing-thumb-drive-held-their-phi/

"id": "RED020241022",
"linkid": "redwood-memorial-hospital",
"type": "Data Leak",
"date": "11/2013",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"