Tandigm Health: Website vulnerability exposed patients' data

Conshohocken, Pa.-based Tandigm Health, a value-based care company formed by Independence Blue Cross and Davita Healthcare to collaborate with physicians to improve care, discovered a potential vulnerability on one of its websites Sept. 28 that may have allowed hackers to access patient data.

Here are five things to know:

1. Tandigm launched an investigation to determine whether the website vulnerability could have enabled someone to bypass existing security safeguards, and, if so, what information a hacker would be able to gain access to.

2. Tandigm could not determine whether any information had been accessed due to the vulnerability, but said it has no evidence of misuse. The company said it notified patients out of an abundance of caution.

3. The information — which included patients' names, dates of birth, medical information and health insurance information — was potentially accessible between April 24, 2017, and Dec. 31, 2017.

4. Tandigm added new security measures to its internet-based platforms and provided staff with additional data security training in response to the incident. The company also enhanced its existing security protections.

5. The company is encouraging patients to monitor their accounts for suspicious activity.

More articles on cybersecurity:

9 healthcare privacy incidents in November
Hackers indicted in SamSam ransomware attacks on Allscripts, hospitals
Ohio, West Virginia hospitals refuse to pay ransom after cyberattack

© Copyright ASC COMMUNICATIONS 2020. Interested in LINKING to or REPRINTING this content? View our policies by clicking here.


Featured Webinars

Featured Whitepapers