Mission Health sends letter warning of website data breach spanning years

WLOS reports:

A data breach on the Mission Health store website spanning years has many on edge across Western North Carolina and beyond.

In a statement mailed to patients, Mission Health says they found a malicious code present on the store website that was sending the payment information to an unauthorized person. According to the letter, that malicious code was in place from March 2016 till June of 2019.

Mission promises there was no access to any medical records, however, credit card information may have been stolen at any point during that time frame.

Read more on WLOS.  I could not spot any breach notification on the home page of their web site.  And disturbingly, if you attempt to go to the e-commerce urls that were compromised, you only see a notice that says “The server is temporarily unable to service your request due to maintenance downtime or capacity problems. Please try again later.”  Nowhere does it say there that customers should check mail for notification concerning a breach.

About the author: Dissent

Comments are closed.