Quick Facts

• Date: 6/1/2010
• Institution: University of Louisville
• Type of Incident: Unauthorized Disclosure
• Number Affected: 708
• Source: ESI
• Abstract Source: Business First of Louisville, WFPL

Abstract
The University of Louisville recently announced the accidental exposure of patient information to the Internet. The web site, belonging to the university's Kidney Disease program, contained the names, Social Security number and medical information on 708 patients. The information was available through the web site from October 1, 2008 to May 17, 2010. According to officials a programming error caused the information to become exposed to the Internet without any need for a password or login. The site has been removed and the University is offering one year of credit monitoring for the individuals affected. Individuals with questions can contact the U of L Kidney Disease Program at 502-852-0785.

Quick Facts

• Date: 3/31/2010
• Institution: Three Rivers Community College
• Type of Incident: Penetration
• Number Affected: Unknown
• Source: ESI
• Abstract Source: Norwich Bulletin

Abstract
Three Rivers Community College recently uncovered a potential breach of computer systems containing personal information. The breach was uncovered during a recent system review. TRCC officials have contacted the individuals that may have been affected including individuals in: Real estate programs between 1997-2009; Life Long Learners programs between 2004-2009; Patient care technicians programs between 2003-2006; Certified nursing assistant programs between 2004-2006; Electric Boat academic programs between 2004-2005; Bridges to Health Care Careers programs between 2007-2008; Photons for Educators programs between 2006-2008; Faculty or staff of the Three Rivers Continuing Education Office between 2004-2009. TRCC has contracted with CSIdentity to offer credit monitoring to those affected.