On September 3, ABC reported that Roper St. Francis was notifying 6,000 patients about a breach involving their protected health information.
This week, you may have read that Roper St. Francis is notifying almost 93,000 patients.
There are two unrelated incidents.
The first involved the compromise of an employee’s email account in June that the entity discovered in July.
The latter involved the by-now well-publicized incident where their business associate/vendor Blackbaud was attacked by threat actors using ransomware, and Blackbaud chose to pay the ransom to secure a promise that the data would be destroyed and not misused.