A misconfigured security setting on a radiology interface at Middletown Medical, a multi-specialty physicians group in New York, led to a security breach exposing patient data, including radiology images, reports and Social Security numbers, according to HIPAA Journal.
The security error was spotted Jan. 29, 2018, and corrected the follow day. But, according to the report, it is unclear how long the patient data was exposed.
According to a data breach summary submitted to the HHS's Office for Civil Rights, as many as 63,551 patients had their health information unsecured. HIPAA Journal reported this as one of the largest healthcare security incidents to be reported this year.