The American Veteran's On-Line News Magazine
                                                   Click here to make VA Watchdog dot Org your homepage

                      VA NEWS FLASH from Larry Scott at VA Watchdog dot Org -- 11-02-2008		  



 


 
 

 


 



VA Watchdog Stuff...
cups, hats, shirts...
click on item to order
and support the site.






Be sure to get all four
VA Watchdog dot Org
RSS feeds --
Daily VA
News Flashes
 House CVA
Veterans' News
 Senate CVA
Veterans' News
 VA Press
Releases
 

 


Download your
free copy of the
2008 VA benefits
handbook here...
 

 

Printer-Friendly Version




DATA BREACH: VA POSTS VETERANS' PERSONAL

INFORMATION ONLINE -- Nationwide number not

known, but about 1,600 vets in Portland, Oregon

had personal info posted on public web site.

 

 

Story below:

JOIN THE DEBATE
Comment on this story and interact
with other readers... below...

 

-------------------------

Here we go again!

I received an email from Mary Birmingham, an Oregon resident, about the VA's latest data breach.  At about the same time, a story appeared in the Oregonian newspaper.

Mary sent me the letter the Portland VA is sending out.


To view complete three-page document... click here...

We still have no official word from the VA on the number of veterans affected by this nationwide.  Not unusual.

For information on VA data breaches... go to this page...
http://www.vawatchdog.org/va%20data%20theft%20news.htm

Oregonian article here... http://www.oregonlive.c
om/news/index.ssf/2008/11/portland_va_ho
spital_mistakenl.html

Article below:

---------------

Portland VA hospital mistakenly posts vets' personal data online

by Michael Milstein, The Oregonian



Personal information, including some Social Security numbers, of about 1,600 patients at the Veterans Affairs Medical Center in Portland was inadvertently posted on a public Web site, Portland VA officials said Saturday.

The breach also involved patient information from other VA hospitals around the country, but Portland VA spokesman Mike McAleer did not know how many patients were affected nationally.

The affected Portland patients had stayed in local lodging at the VA's expense while undergoing treatment at the Portland VA Medical Center, McAleer said. Most were from Oregon.

The VA is offering affected patients free credit monitoring and fraud alert services, a step that Congress required in 2006 after previous data security lapses at the VA.

The disclosure did not include Social Security numbers of all 1,600 patients, McAleer said. In some cases, only patient names or partial names were posted online. He did not have a breakdown of how many Social Security numbers were released.

No medical information was disclosed, he said.

The release occurred when the VA inadvertently included personal patient information in agency financial records transferred to the federal Web site USAspending.gov, McAleer said. The site allows the public to search for details of government contracts and spending.

He said the records transferred involved the VA's spending on behalf of patients at local hotels.

VA officials removed the information from the Internet as soon as they realized it was there, but McAleer did not know how long the information was publicly available.

The Portland VA began notifying affected patients about the lapse by letter a little more than a week ago. "We sincerely apologize for any inconvenience or worry this may have caused you," said one letter from David Stockwell, acting director in Portland.

VA patient Mary Birmingham of Wilderville, near Grants Pass, received a letter last week saying that her Social Security number had been disclosed. She said she had resisted VA suggestions that she access her records on the Internet because she feared such a lapse.

"I have never felt like it was secure enough to be doing that," she told The Oregonian. "I feel even less secure about it now."

The letters from the VA explain to patients how to sign up for a credit monitoring service free for one year to detect any evidence of identity theft.

In 2006, Congress required the VA to provide such services when patient data are compromised. The VA also must provide identity theft insurance and fraud alerts, which are notices on people's credit reports requiring institutions to check with them before issuing credit cards or other credit.

Congress passed the law after a laptop computer containing the names and Social Security numbers of 26.5million veterans and 2.2 million members of the National Guard and Reserve was stolen from the home of a VA employee in 2006.

The same law required the VA to use encryption to better protect personal patient data and to centralize its information security systems. After the 2006 incident, all VA employees also received training in the proper handling of sensitive information.




Michael Milstein: 503-294-7689; michaelmilstein@news.oregonian.com 

-------------------------

-------------------------
NOTE FOR COMMENTING:
Comments are moderated.  VA Watchdog dot Org has no obligation to post any comment and will not post rude, profane, libelous, or off-subject comments ... comments advertising products, services or web sites ... or comments containing misinformation that might pose a disservice to the veterans' community.

 

-------------------------

posted by Larry Scott
Founder and Editor
VA Watchdog dot Org

Don't forget to read all of today's VA News Flashes (click here)

Click here to make VA Watchdog dot Org your homepage

email Larry

Send this page to a friend:    

(go back to VA Watchdog dot Org Home Page)



       
Military Medical Malpractice 
Legal Network               

 

 



VA Watchdog Stuff...
cups, hats, shirts...
click on item to order
and support the site.

 

 
   
Google
 
Web www.vawatchdog.org


FAIR USE NOTICE: This site contains copyrighted material the use of which has not always been specifically authorized by the copyright owner. We are making such materials available in an effort to advance understanding of veterans' issues. We believe this constitutes a 'fair use' of any such copyrighted material as provided for in section 107 of the US Copyright Law. In accordance with Title 17 U.S.C. Section 107, the material on this site is distributed without profit to those who have expressed an interest in receiving the included information for educational purposes. For more information go to: http://www.law.cornell.edu/uscode/17/107.shtml   If you wish to use copyrighted material from this site for purposes of your own that go beyond 'fair use', you must obtain permission from the copyright owner.