The hacker, who took responsibility for the breach on Twitter, allegedly uploaded nearly 200GB of data onto a Google Drive.
An image released on the individual’s Twitter account allegedly revealed patients’ personal health records. But the majority of the files in the breach appeared to be internal documents relating to billing and insurance issues, according to the report.
Reporters at ZDNet said an initial search of the documents found non-password protected Excel documents containing log files detailing surgeries performed at the hospital. The information included physicians’ names, the times of various surgeries and the types of drugs used during the procedures, according to the report.
The attack was allegedly carried out using an SQL injection, in which hackers insert malicious code into a server that can read and extract data in a database. The hacker also claimed to carry out the attack for “political purposes,” according to the report.
More articles on health IT:
Yahoo investigates possible 200M user data breach
Carnegie Mellon University develops algorithm for cancer genome analysis
Newton Medical Center introduces new telehealth program