Staten Island (N.Y.) University Hospital reported some patients' information was breached during Medibase's data security incident.
The hospital services company posted a substitute notice to inform patients about a criminal cyberattack against its systems that occurred around Jan. 26. Medibase took necessary protective actions to prevent unauthorized access to the system when the incident was identified.
Medibase conducted an investigation and found the unauthorized party likely didn't target any individual's personal information, but was rather targeting the company. The personal information breach includes names, Social Security numbers, birth dates, admissions and discharges. Payment information wasn't breached.
The company hasn't reported how many individuals were involved in the breach.