The August cyberattack on Gahanna-based Central Ohio Urology Group affected 300,000 patients, according to new information from the physician practice submitted to HHS.
Central Ohio Urology Group was the victim of a cyberattack in which an unauthorized person posted online files and documents from the practice's internal file server containing personal information. Original reports said the hackers stole more than 105,000 internal documents.
HHS' Office for Civil Rights' breach notification portal indicates the breach affects 300,000 patients, making it the eighth largest healthcare breach so far this year, according to The Columbus Dispatch.
The breach affects patients, employees and, in some cases, people that paid for medical services. The extent and type of information exposed varies by individual, but could include names, addresses, telephone numbers, emails, birthdates, Social Security numbers, driver's license and state identification numbers, patient identification numbers, medical and health plan information, account information, diagnosis and treatment information, health insurance information and employment-related information.
More articles on data breaches:
New Jersey Spine Center pays ransom to cyberattackers after 'seeing no other option'
Urgent Care Clinic of Oxford likely attacked by group of Russian hackers
Organizations largely unconfident in data breach response plans: 7 key findings from Ponemon Institute