RSS Archive Contact Us Advertise

IT Management Begins With Security
SecurityProNews > Insider Reports > Insider > Walter Reed Medical Suffers Data Breach
Search:
[ insider_reports_insider ]

Walter Reed Medical Suffers Data Breach



David Utter
Staff Writer
2008-06-04

SecurityProNews: Insider Reports Insider Reports RSS Feed


File sharing blamed for compromise that may have exposed patient data from the military health system with an outsider.

Walter Reed Medical Suffers Data Breach
Walter Reed Medical Suffers Data Breach

Famed Walter Reed Army Medical Center apparently picked up a virulent little bug on its network. The Center advised visitors to its website that approximately 1,000 beneficiaries of the Military Health System suffered the disclosure of personally identifiable information.

As part of the original statement about the breach, comments from Hospital Commander Patricia Horoho preceded the advisory. Those comments were subsequently removed, but still appeared in a cached version of the page.

That note served as an update to internal Walter Reed personnel about the situation and the ensuing media coverage of the breach:

Walter Reed officials were notified of a possible disclosure of personally identifiable information through a Peer to Peer (P2P) network of approximately 1000 Military Health System beneficiaries. The information did NOT contain any protected health information such as medical records, diagnosis or prognosis for patients. The individuals impacted have been identified and we are taking a proactive approach to contact them to assist in providing fraud protection services.

I need everyone to ensure that they are not loading or down loading programs that are not authorized by the command as it increases our vulnerability and possibly can cause a breach in protected information being shared.
The first question someone like the House Oversight Committee may wish to ask Col. Horoho is why a computer on Walter Reed's network engaged in P2P activity. There may be an acceptable explanation for this; P2P is not inherently a bad tool, but it can enable risky behavior on the part of an unwary user.

Asking for compliance with download policies needs to be complemented with tools and staffers to enforce those policies. Even the most professional environments are populated with normal people, some of whom carry an attitude of invulnerability when it comes to downloading anything and everything online.


About the Author:
David Utter is a business and technology writer for SecurityProNews and WebProNews.

More insider_reports_insider Articles

SecurityProNews: Insider Reports Insider Reports RSS Feed

Get Your Site Submitted for Free in the World's Largest B2B Directory!

Email Address:
* URL:
*
*Indicates Mandatory Field

Terms & Conditions

iEntry Featured Services: Jayde Member Services | Forums | Freeware | Advertise with Us

Contact Us | Advertise | Newsletter Archive | Sitemap | Submit an Article | News Feeds
SecurityProNews is an iEntry, Inc.® publication - 1998-2008 All Rights Reserved | Privacy Policy and Legal		 Join the WebProWorld Forums: Click Here
Virus Warnings

Subscribe to
SecurityProNews FREE!


[ more newsletters ]

Featured On:
article resources
Search Articles:
[advanced search]

WebProWorld.com
Get in-touch with industry experts and leaders
Post your site for review by expert and peers
Ask Security, IT, Development and Design questions

Free Membership: Join Now!

Visit WebProWorld.com

Titan Quest Forum
The #1 Titan Quest forum
Halo 3 Forum
The best Halo, Halo 2, Halo 3 forum
Nintendo Wii
Nintendo Wii news and views
Mac Software
The best in OS X freeware
Graphics Forum
Your source for graphic tutorials
SecurityProNews.com | Breaking eBusiness News Get Your IT Questions Answered - Click Here SecurityProNews News Feeds