A customer of the medical practice management software firm MedEvolve had the PII of at least 15 patients, and possibly more, were exposed when a file on an FTP server was left open to the internet.
MedEvolve reported an FTP containing a file from Premier Immediate Medical Care was left accessible from the internet between March 29, 2018 and May 4, 2018 with part of the data being accessed by someone from outside the organization on March 29.
While MedEvolve is unaware if all the content left exposed has been viewed, it knows for certain the PII of 15 people was definitely compromised. This took place when a screenshot containing the data of these 15 individuals was posted online in a news article covering the breach.
The information in the screenshot included first names, city, state and zip code, but not patients’ last names or street addresses.
However, the patient information available overall in the file was much more extensive with names, billing addresses, telephone numbers, the identification of patient’s primary health insurer and some Social Security numbers being listed. No clinical information or payment information was stored in the file.
MedEvolve immediately secured the portal and started a forensic investigation with a third-party provider, began informing those involved in the breach and
The server involved was not associated with MedEvolve’s customer-facing products hosting operations, or medical billing services.