A misconfigured radiology interface put at risk the data of more than 63,500 patients at New York-based Middletown Medical, reports Healthcare IT News.
The database contained patient names, client identification numbers, birthdates, radiology services received by the patient and the date services were provided. This type of data can be used by cybercriminals for medical fraud, if the database was indeed accessed.
For a limited number of patients, diagnosis codes, radiology images and radiology reports were included. Social Security numbers and financial data were not breached.
