"MetroHealth Data Breach Involved 1700 Patients"

The MetroHealth System in Cleaveland, Ohio, recently discovered that it had been the victim of a data breach involving 1700 of its patients.  In a recent statement, MetroHealth announced that on November 13, while the health system’s electronic medical records systems were being upgraded, 1700 patient records were unintentionally disclosed.  The breach involved patient names, care provider names, and appointment details.  MetroHealth noted that no personal, financial or health-related information was involved.  MetroHealth has mailed letters to the affected patients this week.  On February 10, the health system’s medical record partner informed it of the breach.  According to its annual report, MetroHealth saw more than 1.4 million patient visits in 2020.  Another data breach hit MetroHealth System via a connected vendor, CaptureRx, in June 2021, whose ransomware breach affected at least 16 other healthcare organizations.  Patient files were accessed without authorization during that breach, containing names, birthdates, and prescription information.

Infosecurity reports: "MetroHealth Data Breach Involved 1700 Patients"