John Muir Health Breach
Date: July, 2021John Muir Health is a network of hospitals and medical services that work together to treat patients with a variety of conditions. These facilities are based around Walnut Creek, California, and serve thousands of patients annually. The facility recently suffered from a data breach that may have released medical data for some patients staying at one of the facilities in the network.
What Was the Breach?
- First and Last Name
- Room Number
- Diagnosis and Condition
- Dates of Stay
- Facility
How Did the Breach Occur?
The JMH data breach occurred because an employee created a website linking to patient data on an Excel spreadsheet. The site made it possible for external users to access the data, and there is a possibility that third parties accessed the data after the site was put up. It was later taken down to resolve this issue, but that was after being up for an extended period.
When Did This Breach Occur?
The John Muir Health data breach was first an issue on July 1, 2021, and the information provided remained accessible until September 27, 2022. After that point, no third-party users accessed the site, and it was later taken down. All these details were confirmed by a third-party security firm, and no Social Security numbers or financial data were ever accessible through the website.
Who Does the Breach Impact?
This JMH data breach impacts patients that stayed at the John Muir Health Center during the time period listed above. If you were a patient at the center at that time, there is a good chance that your information was accessible to third parties.
How Many Files Does the Breach Affect?
As far as we know, the JMH breach only made a single Excel file available to the outside world. The spreadsheet contained a large amount of data about many patients, but no financial or Social Security data was accessible via this spreadsheet. If you were impacted by the breach, you are unlikely to experience any issues because of it, but you should be aware that some of your medical information was made accessible.
Recent Breaches
Cisco Duo Breach
Cisco Duo is an access security provider that offers solutions for small business and commercial control products, including multi-factor authentication (MFA), single sign-on, and access control services....
AT&T Breach
American Telephone and Telegraph Company (AT&T) is the fourth-largest telecommunications provider, behind Verizon, Comcast, and China’s state-funded communications solution...
Fujitsu Limited Breach
Fujitsu Limited is the world’s sixth-largest IT service provider. Based in the Minato City ward of Tokyo, Japan, Fujitsu offers various technology solutions for personal and commercial use...
Cybersecurity and Infrastructure Security Agency Breach
The CISA collaborates with other government agencies to notify victims of breaches and respond to threats. These include the Federal Bureau of Investigation, the Multi-State Information Sharing & Analysis...
Roku Inc. Breach
Roku is a global streaming and entertainment organization. It offers solutions for direct streaming, live channels, music, niche channel entertainment, smart home devices, travel technology, audio options,...