Carle Foundation Hospital in Urbana, Ill., is notifying patients of a data breach stemming from a hospital vendor, according to The News-Gazette.
One of Carle's vendors reportedly placed files containing 1,185 patients' medical records on a server intended to share large documents, according to the report. The incident took place Feb. 17.
The files contained patient names, medical record number, dates of service, reason for patient visit, physician names, Carle account number, diagnoses and treatment codes, according to the report. No Social Security numbers or financial information was included.
The hospital learned of the incident June 14. Its investigation suggests the incident affects patients discharged from the hospital between Nov. 1, 2015 and Jan. 31, 2016.
The hospital indicates there is no reason to believe the information was shared in any way, and the information likely could only be viewed by vendors with log in credentials.
More articles on data breaches:
Advocate to pay largest HIPAA settlement to date
Banner Health suffers year's largest data breach; 3.7M affected
Yahoo investigates possible 200M user data breach