Click here to receive your FREE subscription to Campus Technology

Home > U Miami: Stolen Back-up Data 'Unlikely' To Be Misused

News

U Miami: Stolen Back-up Data 'Unlikely' To Be Misused

4/17/2008

By David Nagel

The University of Miami reported Thursday that computer back-up tapes containing personal information from some 2.1 million patients were stolen from a third-party storage facility in March. The university said it's confident that the information on those tapes is inaccessible to the thieves but is notifying patients anyway.

The data on the tapes had been encrypted, and the university contracted with an outside firm to test the strength of that encryption, finding that "misuse of the information on the tapes is unlikely," according to U Miami. Nevertheless, the university is in the process of notifying all 47,000 people whose financial information could have been exposed by the theft. U Miami said anyone who has been a patient of a U Miami physician or has visited a U Miami facility since 1999 could have their data on those tapes. The 47,000 figure includes only those whose financial information may have been in the back-up data. The total number of individuals whose information was on those tapes was 2.1 million, a U Miami representative told Campus Technology.

"Shortly after learning of the incident," U Miami reported, "the university determined it would be unlikely that a thief would be able to access the backup tapes because of the complex and proprietary format in which they were written. Even so, the university engaged leading computer security experts at Terremark Worldwide to independently ascertain the feasibility of accessing and extracting data from a similar set of backup tapes."

According to Terremark, the security firm spent a week trying to break the encryption on the tapes and could not come up with any usable data. According to Christopher Day, senior vice president of the Secure Information Services group at Terremark, breaking the encryption would "require certain key data which is not stored on the tapes...."

Included on the tapes were patient records that contained names, addresses, Social Security numbers, health information, and/or credit card and other financial information.

"Even though I am confident that our patients' data is safe, we felt that in the best interest of the physician-patient relationship we should be transparent in this matter," said Pascal J. Goldschmidt, senior vice president for medical affairs and dean of the University of Miami Miller School of Medicine, in a statement released today.

Further information about the incident can be found here.


About the author: Dave Nagel is the executive editor for 1105 Media's educational technology online publications and electronic newsletters. He can be reached at dnagel@1105media.com.

Have any additional questions? Want to share your story? Want to pass along a news tip? Contact Dave Nagel, executive editor, at dnagel@1105media.com.

Cite this Site

David Nagel, "U Miami: Stolen Back-up Data 'Unlikely' To Be Misused," Campus Technology, 4/17/2008, http://www.campustechnology.com/article.aspx?aid=61064

copy text (above) for proper citation



Recommended Reading
  • Georgia Tech Helps Develop Web-based Tool To Improve Blood Supply

    The Georgia Tech College of Computing, working in partnership with the Centers for Disease Control and Prevention, has developed a Web-based tool for tracking blood safety. The program is expected to help developing countries improve the adequacy and safety of their national blood supplies through better monitoring and evaluation.

  • Mississippi State Implements Reflex Virtual Management Center

    Mississippi State University has implemented Reflex VMC (Virtual Management Center) from Reflex Systems. The application allows IT administrators to monitor a virtual infrastructure and enforce business and IT policies.

  • Stanford Law School Launches IP Litigation Clearinghouse

    The Law, Science & Technology Program at Stanford Law School has launched the Intellectual Property Litigation Clearinghouse (IPLC), an online database that offers comprehensive information about intellectual property (IP) disputes within the United States.

  • Texas A&M Health Science Center Adopts Banner Administrative Management

    The Texas A&M Health Science Center has selected the Banner Unified Digital Campus (UDC) from Sungard Higher Education to help unify its geographically-dispersed community and to enhance and expand services and communications to its growing student enrollment.

  • NCCC: Data Cleansing Key To Managing Growth

    Community colleges are in a good spot in some ways during the economic downturn, as tight family budgets drive up the appeal of the community college option. But along with the rest of higher education, most community colleges also face shrinking IT budgets and tighter resources. That makes it that much harder to handle the growing enrollment numbers that some community colleges are seeing.

  • Finjan: Layoffs Could Drive IT People To Become Cyber-Criminals

    Security vendor Finjan predicts that the current economic downturn could herald a sharp rise in cybercrime during 2009--driven by the rise in the number of IT people being laid off. According to a report from the company's Malicious Code Research Center (MCRC), more unemployed IT personnel will be tempted to seek "new and easy income by purchasing and using crimeware toolkits that are sold by professional hackers."

Related Articles

send e-mail link to articleEmail this article

print this articlePrintable Format