In February 2018, the university notified 1,882 patients that their personal health information may have been exposed after malware was discovered on a physician's laptop and other devices. The attacker may have been able to view patient information on these devices from May 2015 to December 2016 before detection in December 2017.
The third party may have been able to view patients’ names, diagnoses, treatment information, addresses and dates of birth. Patients’ Social Security numbers and financial information were not exposed.
Want to discuss this case? You can purchase a 30 minute conference call with our analysts to discuss this case and the implications it has for your organisation. Just select the time and date that works for you:
We've done the analysis so you can make the decisions