Data Breach at Home Monitoring Company Exposes 150K Patients’ Files | Healthcare Informatics Magazine | Health IT | Information Technology Skip to content Skip to navigation

Data Breach at Home Monitoring Company Exposes 150K Patients’ Files

October 11, 2017
by Rajiv Leventhal
| Reprints

Security researchers have uncovered a data breach linked to a healthcare services company, Patient Home Monitoring Corporation (PHM), in which patient files of some 150,000 Americans were exposed.

According to one report in Gizmodo, lab test results and other patient files, discovered by researchers at the Kromtech Security Center, had been stored on an unsecured Amazon S3 bucket. “According to Kromtech, the files were publicly accessible and unprotected by a password. A cursory examination of the contents revealed a wide range of sensitive details about patients whose names, addresses, phone numbers, diagnoses, and test results were exposed,” the report stated.

The report noted that the files were linked to Patient Home Monitoring Corporation, a Lafayette, La.-based company that provides U.S. patients with in-home monitoring and disease management services. The data breach contained about 47.5 GB-worth of data composed of roughly 316,000 PDF files.

On Oct. 5, PHM was alerted that sensitive medical records belonging to the company had been exposed. Following notification, the bucket was secured on the same day. PHM did not, however, respond to Kromtech’s inquiries, per the Gizmodo report.

Providing some additional information, MacKeeper Security Research Center reported that the breach “contained medical data in 316,363 PDF reports in the form of weekly blood test results. Many of these were multiple reports on individual patients. It appears that each patient had weekly test results totaling around 20 files each.”

Get the latest information on Health IT and attend other valuable sessions at this two-day Summit providing healthcare leaders with educational content, insightful debate and dialogue on the future of healthcare and technology.

Learn More

Topics

News

Study: 9 in 10 Clinicians to Use Mobile Devices at Bedside by 2022

A recent study indicates a rising adoption in clinical mobility in hospitals and clinicians increasingly see mobile devices as improving the quality of patient care and reducing medication administration errors.

AMGA Survey: Value-Based Care Driving C-Suite Compensation Incentives

A recent survey by the American Medical Group Association (AMGA) of executive and leadership compensation reveals several trends, including that incentive compensation plays an important role in increases and value-based care is driving executive compensation incentives.

Set to Launch in May, All of Us Research Program Gets 15 New Engagement Partners

The National Institute of Health’s (NIH) “All of Us” Research Program now has 15 more community organizations and healthcare provider associations that have signed on to raise awareness about the program and its potential to advance precision medicine.

Report: Advanced Hacker Group, Orangeworm, Targeting Healthcare Industry

A new attack group, dubbed Orangeworm, is conducting targeted cyber attacks against healthcare organizations in the United States, Europe and Asia, according to a new report from researchers at cybersecurity firm Symantec.

EHR Capabilities Impact Patient Satisfaction Levels, Report Finds

Electronic health record (EHR) technology and the ways that providers use it to communicate with their colleagues and with patients is affecting how satisfied consumers are with their hospital organizations, according to a new Black Book market research.

A New Massachusetts Study Finds Consumers Slow to Make Use of Cost Estimate Tools

A new report has found that, even as health insurers in Massachusetts, under pressure to provide cost-estimating tools for their members, are giving them more information, plan members are still largely not taking advantage of new tools