MUSC Health, based in Charleston, S.C., said patients' protected health information may have been compromised as its research support and services provider, Westat, was caught in the massive MOVEit hack.
On May 30, Westat detected unusual activity within its MOVEit system and launched an investigation into the incident, according to a breach notification from the vendor.
Through the investigation, Westat learned that MUSC Health was among the affected data. The compromised data from MUSC patients included names, addresses, medical record numbers, provider names, dates of service, dates of birth, insurance coverage details and patient diagnosis codes related to hospital visits.
Although there is no evidence of misuse of the data at this time, Westat started notifying those who are affected on Oct. 13.