Breach, Data Security, Vulnerability Management

Website hack leads to credit card breach of nearly 10K at N.C. medical practice

Hackers exploited a vulnerability in a North Carolina medical practice's website to access a database with thousands credit card numbers and other personal information.

How many victims? 9,988 people.

What type of personal information? Credit card numbers and other personal information, including names, contact information and dates of birth.

What happened? A hacker penetrated a vulnerability in the website for Charlotte, N.C.-based Presbyterian Anesthesia Associates to access a database of personal information and credit card data.

On Tuesday, reached out to the practice to inquire as to whether the compromised data was encrypted or if the breach included staff and patients, but did not immediately hear back.

What was the response? The practice is providing free identity theft monitoring and insurance for those affected. It also hired a company to develop a more secure site and contracted with a security firm to audit its operations. In addition, the FBI has launched an investigation.

Details: According to the practice, no medical information was compromised.

Source:, The Charlotte Observer, Presbyterian Anesthesia reports data breach affecting nearly 10,000,” May 13, 2013.

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms and Conditions and Privacy Policy.