By Jeff Goldman | Posted September 23, 2014
The data was mistakenly made accessible via Google searches between December 2013 and April 2014.
The personal information of more than 10,000 patients was recently exposed online due to an error by medical billing services provider PST Services, a subsidiary of McKesson.
PHIprivacy.net reports that the breach exposed the personal data of 10,104 patients of Georgia's 24 On Physicians, as well as 520 patients of the Williamson Medical Center in Tennessee and 680 patients of Illinois' Midwest Orthopaedic Center.
In a notice on its Web site, Midwest Orthopaedic states, "On June 6, 2014, McKesson reported that one of its former affiliates had unintentionally made records containing MOC patient information potentially accessible on the Internet. McKesson indicated that the information was accessible using very specific Google search terms between December 1, 2013, and April 17, 2014."
eSecurity Planet/ full article here: http://www.esecurityplanet.com/network-security/employee-error-exposes-over-10000-patients-personal-data.html
Be the first to reply!
Reply
Login to the community
No account yet? Create an account
Enter your username or e-mail address. We'll send you an e-mail with instructions to reset your password.