Touchstone Medical Imaging, a Tennessee-based medical firm who provides services such as MRI, CT scans, Ultrasound and Mammography, has announced that it suffered a data breach as the result of an open share that was exposed to the internet.
This shared folder contained billing information of patients including Social Security numbers, names, addresses, date of birth and phone numbers. It stated that no medical information records were stored in this folder, but they make no mention of possible financial information being stored.
The company became aware of the breach in May of 2014. It only released details five months later as they did not think that any of the data had been accessed. But, in September they “obtained new information” that suggested that the information could have been accessed. They further note that “health insurer name, radiology procedure and diagnosis” was included while saying that medical information was not affected.
VIEW FULL STORY