Lost USB causes 500 breach notifications in Delaware

Last week, St. Francis Hospital in Wilmington, Del., sent letters to nearly 500 maternity patients who had participated in its prenatal and maternity care program Tiny Steps in 2001 or 2002, notifying them that their personal healthcare information may have been compromised because of an inadvertently misplaced computer thumb drive.

According to the hospital's notification, the thumb drive has been recovered and the personal information in question includes the mothers' names, but does not include social security numbers, addresses or telephone numbers, health insurance or billing information or babies' names.

“We want to reassure the patients involved that we have no reason to think the information on the thumb drive was copied or that it might be used in any way to cause them concern,” said Julie A. Hester, president and CEO of St. Francis Healthcare Services.

The hospital is encouraging the patients it is contacting to be vigilant for any signs of identity theft, and to alert the hospital promptly if the patients suspect their personal health information is being misused.

St. Francis also is reviewing its policies and procedures regarding the use of thumb drives and the protection of patient privacy.

Around the web

The tirzepatide shortage that first began in 2022 has been resolved. Drug companies distributing compounded versions of the popular drug now have two to three more months to distribute their remaining supply.

The 24 members of the House Task Force on AI—12 reps from each party—have posted a 253-page report detailing their bipartisan vision for encouraging innovation while minimizing risks. 

Merck sent Hansoh Pharma, a Chinese biopharmaceutical company, an upfront payment of $112 million to license a new investigational GLP-1 receptor agonist. There could be many more payments to come if certain milestones are met.