Court dismisses UCLA breach lawsuit

Laura Pedulli | | Health Exec | Cybersecurity

A California appellate court threw out a class-action lawsuit against the University of California over a breach that exposed personal information of more than 16,000 patients at the University of California-Los Angeles Health System, according to an Oct. 16 article published in Metropolitan News-Enterprise.

The court ruled that the healthcare provider is not liable for statutory damages for the breach unless the data are actually used by an unauthorized person, according to the article.

The breach, which took place in November 2001, occurred when an external hard drive was stolen from the home of a former university physician. Although the data were encrypted, an index card containing password information was stolen with the computer.

The California Hospital Association, which filed an amicus brief in support of the University of California, lauded the decision. “The decision is good news for hospitals and other healthcare providers who are victims of theft or hacking of medical information where the plaintiff cannot prove that the thief or hacker actually viewed the medical information,” the association said in a statement.

Laura Pedulli

Related Content

Dental chain involved in ransomware coverup fined $350K
FBI seeking extradition of Israeli prisoner accused of $500M in ransomware attacks
Data breach at chain of clinics impacts 450K patients
Nebraska becomes first state to sue Change Healthcare over data breach
Christmas ransomware exposed over 300K patient records to dark web
Cryo-frozen tissue manufacturer suffers cyberattack

Around the web

Cardiovascular Business
Reimbursement update: What hospitals need to know about new Medicare payments for cardiac CT

CMS finalized a significant policy change when it increased the Medicare payments hospitals receive for performing CCTA exams. What, exactly, does the update mean for cardiologists, billing specialists and other hospital employees?

Cardiovascular Business
Stryker acquires Inari Medical for $4.9B

Stryker, a global medtech company based out of Michigan, has kicked off 2025 with a bit of excitement. The company says Inari’s peripheral vascular portfolio is highly complementary to its own neurovascular portfolio.

Radiology Business
The biggest obstacles facing radiology business managers in 2025

RBMA President Peter Moffatt discusses declining reimbursement rates, recruiting challenges and the role of artificial intelligence in transforming the industry.