On Jan. 3, Rady Children’s discovered the data security incident. Upon investigation, the children’s hospital determined that between June 20, 2019, and Jan. 3 a limited amount of patient data may have been accessed without authorization through an internet port.
Patient data that may have been exposed included names, genders, types of imaging studies, dates of birth, medical record numbers, parent/guardian names and referring physicians. No Social Security numbers, credit card numbers, radiology images, radiology reports or diagnoses information was affected in the incident.
“We are notifying the appropriate state and federal regulatory agencies. Any patient or parent or legal guardian who receives a letter should review the steps outlined in the letter to protect their personal information,” said Rady Children’s in an online statement.
More articles on cybersecurity:
Texas provider alerts 6,500 patients of phishing attack
Connecticut payer alerts 1,100 members of phishing attack
10 tips for hospitals to mitigate ransomware attacks