Chesapeake (Va.) Regional Healthcare notified 2,100 sleep center patients after discovering two unencrypted, portable hard drives containing their electronic protected health information were missing.
CRH learned the hard drives disappeared from its sleep center Feb. 6, and immediately launched an investigation into the incident. The hard drives contained patient names, dates of birth, unique medical record numbers, demographic information, medications prescribed and details of the procedures performed for patients who received medical services between April 2015 and February 2018. No Social Security numbers, addresses or billing information were included.
A hospital spokesperson referred to the press release when Becker's Hospital Review reached out for additional comment.
Affected patients were offered one year of free credit monitoring and identity theft protection services, and they will receive extra help should hospital officials determine their ePHI has been misused.
More articles on cybersecurity:
Former Google CEO Dr. Eric Schmidt shares his vision for the medical visit of the future
We asked 36 industry experts what role is missing in the IT C-suite — Here's what they think
Startup Insider: 4 questions with swyMed CEO Stefano Migliorisi on rolling out telemedicine to remote areas