Calif. system's patient data was available on Google

Beth Walsh | | Health Exec | Cybersecurity

A California hospital system left the data of 32,755 of its patients exposed online.

The three-hospital Cottage Health System in Santa Barbara notified its patients that their personal health information (PHI) may have been available on Google. A third-party vendor removed electronic security protections for one of its services, unbeknownst to the health system, according to a letter mailed to patients.  

PHI was left unsecured and exposed for nearly two months and included patient names, dates of birth, medical diagnoses, lab results and procedures, medical record numbers, account numbers and addresses. 

The letter also said the system has taken steps to prevent this from occurring again, "including reviewing service relationships with third party vendors, expanding and increasing the frequency of internal and external security checks, and enhancing our 'change notification system.'" 

 

Beth Walsh,

Editor

Editor Beth earned a bachelor’s degree in journalism and master’s in health communication. She has worked in hospital, academic and publishing settings over the past 20 years. Beth joined TriMed in 2005, as editor of CMIO and Clinical Innovation + Technology. When not covering all things related to health IT, she spends time with her husband and three children.

Related Content

FBI seeking extradition of Israeli prisoner accused of $500M in ransomware attacks
Data breach at chain of clinics impacts 450K patients
Nebraska becomes first state to sue Change Healthcare over data breach
Christmas ransomware exposed over 300K patient records to dark web
Cryo-frozen tissue manufacturer suffers cyberattack
First surgical device of its kind granted key FDA exemption

Around the web

Cardiovascular Business
FDA says years-long tirzepatide shortage is resolved, will give limited leeway to compounders

The tirzepatide shortage that first began in 2022 has been resolved. Drug companies distributing compounded versions of the popular drug now have two to three more months to distribute their remaining supply.

AI in Healthcare
From Capitol Hill to a hospital near you? 5 federal recommendations for healthcare AI policy

The 24 members of the House Task Force on AI—12 reps from each party—have posted a 253-page report detailing their bipartisan vision for encouraging innovation while minimizing risks. 

Cardiovascular Business
Merck spends up to $2B to license new weight loss drug with potential heart benefits

Merck sent Hansoh Pharma, a Chinese biopharmaceutical company, an upfront payment of $112 million to license a new investigational GLP-1 receptor agonist. There could be many more payments to come if certain milestones are met.