Midwives of Windsor patient data breach

A cybersecurity incident at the Midwives of Windsor has led to the unauthorized exposure of sensitive personal and pregnancy information of various clients. The Midwives of Windsor is a health practice in Ontario, Canada, dedicated to treating childbirth as a normal, healthy, and family-involved event. They have supported over 2,000 births since 2003.

The incident was caused by an email account breach that occurred in April 2023. The practice had detected the breach and reported it to the Information and Privacy Commissioner of Ontario well before informing clients.

The compromised data includes:

• names,
• contact details,
• birth dates,
• pregnancy specifics,
• other medical information,

The exposed data could potentially extend to the clients' children.

The breach's scope, whether it includes past or only current clients, and the duration of the exposure remain uncertain. The number of impacted individuals remains undisclosed.

The practice has issued a statement acknowledging the breach and cautioning clients to be vigilant against possible fraudulent communications.