63,500 patient records breached by New York provider’s misconfigured database

New York-based healthcare provider Middletown Medical has notified 63,551 patients that their data may have been breached due to a misconfigured radiology interface. This incident highlights the ongoing problem of misconfigured databases in the healthcare sector. The company discovered the flaw in security setting on January 29 and fixed it the next day. Patient names, client identification numbers, birthdates, and radiology services may have been accessed, but no Social Security numbers or financial data. Middletown Medical has implemented additional security measures and is offering one year of free credit monitoring to affected patients.