Nuance Communications, a healthcare artificial intelligence company owned by Microsoft, announced that 13 of its healthcare clients' data was affected by the MoveIt software breach, The HIPAA Journal reported Sept. 19.
The Clop ransomware group was responsible for the attack. The data breach, which occurred between May 28 and May 29, affected 1.2 million patients, according to a filing with the U.S. Department of Health and Human Services.
The 13 healthcare clients affected by the breach:
- Charlotte, N.C.-based Atrium Health
- Hickory, N.C.-based Catawba Valley Medical Center
- Charlotte (N.C.) Radiology
- Durham, N.C.-based Duke University Health System
- Sanford, N.C.-based DLP Central Carolina Medical Center
- Greenville, N.C.-based ECU Health
- Pinehurst, N.C.-based FirstHealth of the Carolinas
- Asheville, N.C.-based Mission Health System
- Winston-Salem, N.C.-based Novant Health
- Wilmington, N.C.-based Novant Health New Hanover Regional Medical Center
- Chapel Hill, N.C.-based UNC Health
- Raleigh, N.C.-based Wake Radiology Diagnostic Imaging
- Raleigh, N.C.-based WakeMed Health & Hospitals
Boise, Idaho-based St. Luke's Health System was also affected by the breach but chose to issue its own notification.