Philly health system breach due to employee error
Beth Walsh | April 11, 2016 | Health Exec | Cybersecurity

Einstein Health Network has notified some 3,000 patients about a possible data breach after a website database was accidentally left accessible online, according to a Norristown Patch report. 

The Philadelphia-based organization learned of the breach on Feb. 2. The website database left accessible via the internet contained patient information that had been entered into the health system website's "Request for Information" form, according to the report.

The breach did not affect any information in Einstein Health Network's EHR and was due to an inadvertent error—not hackers.

These patients entered information into the health system's "Request for Information" portal prior to Feb. 2, according to the report. Potentially compromised information includes patient names, telephone numbers, reason for submitting request, health information and physician names.

The health system secured the website database upon learning of the breach and began an internal investigation.

 

Beth Walsh,

Editor

Editor Beth earned a bachelor’s degree in journalism and master’s in health communication. She has worked in hospital, academic and publishing settings over the past 20 years. Beth joined TriMed in 2005, as editor of CMIO and Clinical Innovation + Technology. When not covering all things related to health IT, she spends time with her husband and three children.

Related Content

Kaiser Permanente exposed data on 13.4 million members to tech companies
Hackers were inside Change Healthcare’s systems 9 days before attack
Atrium Health sued for violating patient privacy, sharing data with Facebook and Google
Massive data trove from Change Healthcare hack now for sale on dark web
Change Healthcare faces second ransom as cybercriminals leak stolen data
This week in the Change Healthcare situation: A recap and update in 10 notable quotes

Design by Adaptive Theme
Trimed Popup
Trimed Popup