A registration employee at Miami-based West Kendall Baptist Hospital exploited patient credit card information to make personal purchases, the hospital discovered March 9.
Patients who were treated at West Kendall between August 2014 and March 2018 and made a payment with a credit card via the registration employee — whom the hospital did not name — may be at risk. Potentially compromised information includes names, addresses and credit card information.
The hospital said it immediately reported the individual to local authorities at the Miami-Dade Police Department and terminated the employee. Hospital officials notified the patients they believe were affected and offered them one year of identity protection and credit monitoring.
When Becker's Hospital Review reached out to West Kendall Baptist Hospital for comment, a hospital spokesperson referred to the public notice on the organization's website.
More articles on cybersecurity:
HHS issues new guidance on SamSam ransomware
Microsoft rolls out restore function to ease ransomware recovery
GAO: CMS needs to improve oversight of Medicare data security