https://www.healthcareitnews.com/news/atrium-health-breach-data-265m-patients-potentially-exposed
By Mike Miliard
Healthcare IT News
November 28, 2018
Billing information of some 2.65 million people – including Social
Security numbers, birth dates and addresses – may have been compromised at
Atrium Health in a "cyber incident" involving the databases of one of its
vendors.
WHAT HAPPENED
Charlotte, North Carolina-based Atrium – formerly known as Carolinas
HealthCare System – was contacted by its billing company, AccuDoc
Solutions, on Oct. 1, and told that an unauthorized third-party had gained
access to AccuDoc's databases between Sept. 22 and Sept. 29.
In addition to Atrium itself, other locations managed by it may have been
affected, officials said, including Blue Ridge HealthCare System, Columbus
Regional Health Network, New Hanover Regional Medical Center Physician
Group, Scotland Physicians Network and St. Luke’s Physician Network.
Atrium then launche a forensic review that found that an unauthorized
third party had compromised AccuDoc's systems during that time, and may
have accessed – but not downloaded – information from patients and/or
those responsible for their bills.
[...]
--
Subscribe to InfoSec News
https://www.infosecnews.org/subscribe-to-infosec-news/
https://twitter.com/infosecnews_
