Catholic Health Buffalo patients potential victim to data breach
Take action: Proper and timely offboarding procedures and removal of access are critical, so that old accounts are not abused by the former employee or someone else since the account is not taken care of by anyone.
Learn More
Catholic Health in Buffalo, New York, has reported a data breach of a third party provider that occurred during the summer, affecting some of its long-term care residents. The breach targeted Minimum Data Set Consultants (MDS), a consulting firm for skilled nursing facilities. MDS became aware of unusual activity involving electronic health records in March and initiated an investigation. It is believed that a former MDS employee accessed the files without authorization on or around August 27, 2022. Law enforcement has been notified and is currently investigating the incident. MDS has taken measures to revoke the individual's access to the records. The specific accounts affected by the breach have not been disclosed, but the compromised files contained personal information such as names, birthdates, Social Security numbers, Medicare numbers, and diagnosis details. Although there is no evidence of identity theft, Catholic Health advises potential victims to monitor their financial information closely. MDS is in the process of notifying affected individuals or their families about the breach.
