On May 16, DataBreaches.net reported on a breach involving MedEvolve. The breach had been reported to this site by an independent researcher, who had found that some of MedEvolve’s clients’ patient information was exposed on a public FTP server with no login required.
The MedEvolve incident was included in the May statistics compiled for Protenus’s Breach Barometer report.
Now MedEvolve has issued a statement about the incident, which you can read in its entirety below. I will be interested to see how this is reported to HHS. As of the time of this posting, the incident is not yet listed on HHS’s breach tool.
MedEvolve Provides Notice of Data Breach