Apr 182018

WSOC reports:

Patients’ Social Security numbers, dates of birth and names were all handed over to fraud suspects by a Carolina Digestive Health Associates employee.

In their search warrant, police said she admitted to sharing around 100 people’s personal information to fraud suspects.

She also agreed to let detectives check her phone, and the warrant said they saw several pictures of personal information including names, dates of birth and Social Security numbers of patients.

Read more on WSOC.

Carolina Digestive Health Associates issued the following statement:

CHARLOTTE, NC—April 17, 2018—Carolina Digestive Health Associates (“CDHA”) has become aware of a data security incident that may have involved the personal information of some of its patients. CDHA will be sending notification letters to the potentially involved patients to notify them of this incident and to provide resources to assist them.

On January 10, 2018, CDHA was contacted by the Charlotte-Mecklenburg Police Department and told the police had discovered that a CDHA employee had stolen personal information belonging to some patients. The involved employee has been terminated and CDHA is continuing to cooperate with the police investigation. In addition, CDHA has conducted its own investigation to identify any other patient records the employee may have accessed and what information was contained in those records.

Law enforcement asked CDHA to delay notification to affected patients while they investigated the situation and the employee involved. Notification letters will be sent to all affected patients via U.S. mail and will include information about the incident and steps potentially affected patients can take to monitor and protect their personal information. CDHA has established a toll-free call center to answer questions about the incident and to address related concerns. The call center we be available beginning Wednesday, April 18 at 2:00 p.m. ET, and thereafter, Monday through Friday from 8:00 A.M. to 5:00 P.M. EST at 888-284-9087. In addition, out of an abundance of caution, CDHA is offering identity protection services through ID Experts to potentially impacted individuals at no cost.

CDHA takes the security of all patient information very seriously and is taking steps to prevent a similar event from occurring in the future, including restricting employee access to patients’ sensitive information, and increasing the monitoring and auditing of access to patient records. CDHA deeply regrets any inconvenience or concern this incident may cause.

Their full statement can be found on their web site.

Apr 182018

Matthew Umstead reports:

A former Berkeley Medical Center employee was ordered Monday by a federal judge to pay more than $22,000 in restitution stemming from allegations that she obtained hospital patients’ information to open credit card and other financial accounts.

Angela Dawn Roberts, aka Angela Dawn Lee, 42, of Stephenson, Va., who pleaded guilty in July to one count of identity theft, was sentenced Monday to five years of probation by Chief U.S. District Judge Gina M. Groh.

Read more on Herald Mail.

Apr 152018

Littice Bacon-Blood reports:

A former medical assistant at a children’s clinic and seven others have been arrested and jailed in connection with a fraudulent prescription drug ring for opiate-based medication, authorities in St. John the Baptist Parish announced Friday (April 13).

Authorities at the St. John Sheriff’s Office accuse the medical assistant, identified by authorities as 34-year-old Shallon Dunmiles of Ama , of using a stolen physician’s prescription pad to distribute more than 140 fake prescriptions.


It was not immediately known whether the children’s names used were patients at the pediatric clinic where Dunmiles worked. Authorities identified the medical facility as Children’s Pediatric Clinic but did not release the address or where it is located.

Read more on The Times-Picayune.

Apr 102018

Greenbelt, Maryland – A federal grand jury has indicted Sampson Sarpong, age 61, of Bowie, Maryland, today on charges related to a scheme to defraud health care benefit programs and aggravated identity theft.  The indictment was returned on April 4, 2018, and unsealed today upon the arrest of Sarpong.

The indictment was announced by Acting United States Attorney for the District of Maryland Stephen M. Schenning; Nancy McNamara, Assistant Director in Charge of the Federal Bureau of Investigation, Washington Field Office; and Special Agent in Charge Bret D. Mastronardi of the Office of Personnel Management (OPM) – Office of the Inspector General (OIG).

According to the 20-count indictment, Sarpong was a licensed physician in Maryland and specialized in the field of allergy and immunology. Sarpong owned and operated the Center for Allergic Diseases, LLC, which had numerous locations, including in White Plains, Maryland, and Glenn Dale, Maryland. Sarpong allegedly billed health care benefit programs for a variety of procedures used to test for and identify a patient’s allergic disorder, including skin prick tests (“SPT”) and patch tests (“PT”).

From September 2011 through March 2017, Sarpong allegedly devised a scheme and artifice to defraud health care benefit programs by knowingly performing SPTs and PTs on patients for whom such tests were not medically required. Sarpong tested excessive numbers of allergens that were not necessary based on the patient’s complaints, symptoms, history, and environment. In addition, Sarpong allegedly submitted false and fraudulent claims to health care benefit programs for services that were not rendered. Further, Sarpong is alleged to have used the identification of eight different patients in relation to the fraud.

Read more on the USAO of Maryland.

Apr 092018

Martin Egnash reports:

The Armed Forces Recreation Center Edelweiss Lodge and Resort is investigating a data breach that left some guests open to identity theft.

At least 18 guests — primarily soldiers and retirees — who stayed at the resort between November 2017 and February 2018 reported that their credit cards were misused after their stays.

The data breach, which was caused by a malicious program at one of the resort’s work stations, seems to be limited to credit card information.

Read more on Stars and Stripes.