Last year, a stolen iPhone cost Catholic Healthcare Services of the Archdiocese of Philadelphia $650,649. Yes, a single iPhone. And no, it wasn't jewel encrusted or wrapped in a pure platinum case. It was a run of the mill iPhone that happened to contain the protected health information (PHI) of 412 nursing home residents. Unfortunately, the iPhone in question was neither encrypted, nor password protected. The combination of PHI and lack of secure configuration meant a huge (and costly) HIPAA violation.