Note: This post started out being about Mary Free Bed being impacted by the Wolverine Solutions breach previously discussed on this site, but as other entities affected have been identified, this post is being updated to name them.
Fox17 reports on yet another victim entity caught up in the Wolverine Solutions breach:
Thousands of patients at Mary Free Bed Rehabilitation Hospital have been impacted by a data breach at a medical billing company.
Wolverine Services Group said 4,755 patients may have had their private information compromised, and it will be sending letters to those people.
Read more on Fox17, who reports that Mary Free Bed no longer uses Wolverine’s services. But is that because of the breach or for other reasons? DataBreaches.net did not get an immediate reply to a query sent to the hospital on that point, but will update this post when a reply is received.
Update 1: A spokesperson for MFBRH tells DataBreaches.net that the decision to terminate the contract with Wolverine had been made before they knew of any incident, so the two events are unrelated.
Update 2: More entities are named in news reports:
The company is saying more that 45,000 patients from Covenant were impacted, 120,000 from HAP, and about 54,000 from McLaren.
Sparrow Hospital was reported as also impacted, while more on McLaren can be found here.
North Ottawa Community Health System had about 15,000 patients affected.
Detroit Free Press also mentions Warren General Hospital and the University of Pittsburgh Medical Center Kane.
To clarify: DataBreaches.net is not adding and naming entities to shame them or Wolverine, but merely to make sure we don’t misattribute any breach reports we might see on HHS’s breach tool to being new or unrelated breaches if they are all part of this one incident.
Update of March 14:
About 60,000 patients of Spectrum Health Lakeland were potentially impacted.