Robert Weisman reports:
Boston Medical Center said it has fired a transcription service after a health care provider reported that the medical records of about 15,000 patients at the hospital were posted without password protection on the vendor’s website used by physicians.
The records contained the names, addresses, and medical information about the patients, including the medications they were taking, but did not include Social Security numbers or financial information, said Jenni Watson, the hospital’s chief of staff.
Watson said Boston Medical Center sent letters to the patients notifying them of the data breach at the website operated by MDF Transcription Services and its subcontractors. She said the hospital had no reason to believe the information was viewed by outsiders or misused.
Read more on The Boston Globe. The hospital discovered the breach itself.