Vendors lead the 10 biggest health care data breaches of 2021, so far scmagazine.com - get the latest breaking news, showbiz & celebrity photos, sport news & rumours, viral videos and top stories from scmagazine.com Daily Mail and Mail on Sunday newspapers.
A ransomware attack on the healthcare administrative-service provider CaptureRx has exposed patient information from multiple provider systems.
According to reporting from
HIPAA Journal, tens of thousands of patients from at least five health systems had their data stolen in the incident. The investigation determined that, at the time of the incident, the relevant files contained first name, last name, date of birth, and prescription information, said CaptureRx in a press statement.
WHY IT MATTERS
On February 6, attackers gained access to and acquired files that CaptureRx had received from healthcare providers.
From February 19 through March 19, CaptureRx began reviewing the contents of the files to confirm the scope of affected individuals and associated covered entities. On March 30, it began notifying healthcare providers of the incident.
CaptureRx Data Breach Impacts Healthcare Providers
At least three American healthcare providers have suffered a data breach after a cyber-attack on an administrative services company in Texas.
CaptureRx, which is based in San Antonio, fell victim to a ransomware attack on February 6. On February 19, an investigation into the attack determined that certain files had been accessed without authorization.
During the attack, cyber-criminals exfiltrated files containing the personal health information (PHI) of more than 24,000 individuals.
CaptureRx serves the Mohawk Valley Health System affiliate Faxton St. Luke’s Healthcare in New York, Thrifty Drug Stores (Thrifty White), and Gifford Health Care of Randolph, Vermont, among others.