[ Wednesday, December 16, 2009 ]
UCSF Data Breach:
Apparently, there was a successful "phishing" incursion
into the records of about 600 University of California - San Francisco patients. The data was accessed because a USCF Medical School physician inadvertently disclosed his user name and password in response to a phony email asking for the information (the typical "phishing" attack). This goes to show that sometimes, "social engineering" makes your humans your weakest link.
Jeff [11:20 AM]
Blogger: HIPAA Blog - Edit your Template