More than 53,000 NewYork-Presbyterian Hospital Patients Have Data Exposed
Table of Contents
- By Steven
- Apr 18, 2023
The NewYork-Presbyterian Hospital is a leading academic hospital that delivers virtual and in-person care to a wide range of patients. The hospital offers urgent care services, as well as primary and specialized care. This facility recently discovered a data breach that exposed the information of more than 54,000 patients overall.
How Did the Attack Occur?
The NewYork-Presbyterian Hospital didn't suffer from an attack and instead began utilizing analytics tools designed to track its visitors and help with proper website maintenance and management. The software was giving away information that it shouldn't have been, and the software creators got access to private data for more than 54,000 patients that scheduled an urgent care visit on the website, requested appointments, or asked for second opinions through the website. Any NYP patients that completed those actions were at risk of being exposed by the tracking systems in place.
What Information Was Viewed or Stolen?
The tracking tools disclosed email addresses, first and last names, and the mailing addresses of patients. While this information isn't likely to be misused, and it isn't very damaging, it is a data breach that patients should be concerned about.
How Did Business Admit to the Breach?
The NewYork-Presbyterian Hospital released a website notification informing its users about how their data was leaked due to the tracking systems in place. The notice let everyone know exactly what data could have been leaked and explained where the data went. No letters or specific notices were sent to the individuals involved. If you believe you meet the requirements for your information to be disclosed, you should watch your email closely for any strange advertisements or unwarranted emails.
What Will Become of the Stolen Information?
The information taken through the tracking system isn't likely to be used in a fraudulent or harmful manner. The parent companies behind the tracking systems may release the information to advertising companies or use the information for advertising purposes themselves. This could lead to you receiving more commercial emails than you would like. If you notice you're getting more ads in your inbox, this may be a result of the information disclosed.
What Should Affected Parties Do in the Aftermath of the Breach?
Other than watching your email closely and avoiding giving away any personal or private information via email, there isn't much for you to do if your information is given away. The private information disclosed isn't likely to lead to identity theft or fraud, and you don't have to watch your credit or financial accounts because no attack is likely to come from the disclosure. If you are very concerned about your information being given away, you could consider a credit monitoring service for extra protection. Even though the data disclosure caused by this hospital wasn't major, you have likely given your information to other organizations as well. A good credit monitoring service will help you watch for any data issues and breaches in the future and help keep your information safe no matter what happens to it.