The practice, which now operates under the name AdventHealth Medical Group Surgical Specialists at Tampa, was alerted Dec. 22 of a cyberattack on its EHR system.
An investigation revealed the data breach exposed patients’ names, birth dates, death dates, sex, gender, martital status, addresses, email addresses, race, religion, Social Security numbers, medication lists, credit card and billing information, driver’s license information and clinical notes.
The EHR system was taken offline, and the new system used by AdventHealth Medical Group Surgical Specialists at Tampa is not affected by the security issue.
The practice will mail letters explaining the data breach to affected patients and will educate its staff about how to mitigate cybersecurity risks.
More articles on cybersecurity:
Ransomware attack on mailing service exposes info of 20,000+ Oregon clinic patients
Cyberattack knocks county health department’s IT systems offline in northern Washington
640,436 patients’ info exposed in Texas health system IT security breach
