Last month, Penn Highlands Brookville in Pennsylvania disclosed a breach affecting patients of Dr. Barry Snyder. The breach did not affect Dr. Snyder or PHB directly, but rather, it appeared that the firm hosting his patient records may have been compromised.
At the time, PHB did not name the third-party vendor. Nor did they indicate how many patients were being notified.
The incident was added to HHS’s public breach tool this week, and we now have answers to both those questions: the vendor was M&M Computer Services in Ohio, and 4,500 patients were notified.