Third big HIPAA breach for URMC

The University of Rochester Medical Center has experienced its third big HIPAA breach after a physician lost an unencrypted USB drive containing the protected health information of 537 patients. The drive is believed to have been destroyed in the laundry and no patient addresses, Social Security numbers, or insurance information was compromised. The medical center is re-educating staff about its policies and reinforcing the requirement to use encrypted drives when transporting patient information. This is the third breach involving over 500 patients reported to the Department of Health and Human Services for URMC.