PA: Independence Blue Cross and subsidiaries notifying members whose PHI was mistakenly exposed on public web site

John George reports:

Independence Blue Cross and its subsidiaries AmeriHealth HMO and AmeriHealth Insurance Co. of New Jersey have alerted certain members of a recent incident involving a potential privacy issue related to protected health information.

[…]

“We quickly launched an investigation to determine the nature and scope of this incident, working with a leading forensics investigation firm to confirm what happened and what information may have been affected,” IBC said in a statement. “The investigation determined that an Independence employee uploaded a file containing limited member information to a public-facing website that was publicly accessible between April 23 and July 20.

Read more on Philadelphia Business Journal.

Update: It’s reportedly about 17,000 people affected.

Another plastic surgery practice fell prey to a cyberattack that acquired patient photos and info
Two U.K. teenagers appear in court over Transport of London cyber attack
ModMed revealed they were victims of a cyberattack in July. Then some data showed up for sale.
JFL Lost Up to $800,000 Weekly After Cyberattack, CEO Says No Patient or Staff Data Was Compromised
Massachusetts hospitals Heywood, Athol say outage was a cybersecurity incident
Heritage Provider Network $49.99M Class Action Settlement

Related: