The University of Wisconsin-Madison notified 1,000 patients Sept. 7 of a security incident involving a recent quality improvement survey project, the university confirmed to Becker's.
UW-Madison's department of family medicine and community health mailed a set of postcards July 10, which requested certain patients participate in a quality improvement survey research project. The postcards noted patients' names, mailing addresses and referenced prescription medications and family planning services. This information should have been delivered in sealed envelopes to comply with HIPAA guidelines, the university noted.
Upon discovering the postcard mailing, UW-Madison immediately began a review of the situation. The university has updated its workflows to provide additional review of direct mailings and is reinforcing education with its employees, according to a statement on the university's website.
More articles on cybersecurity:
Equifax hack compromises financial data of 143M
Hackers wipe 26k MongoDB databases, demand $200+ for each ransom: 5 things to know
DHS investigates cyberattack on energy grid: 5 things to know