Serviceaide’s Hospital Data Oopsie: Half a Million Patients’ Info on Public Display!
Serviceaide has alerted HHS of a data leak impacting nearly half a million Catholic Health patients. A publicly available Elasticsearch database put names, SSNs, and medical info at risk. While no exfiltration evidence was found, affected individuals are offered credit monitoring. Just another day in the world of healthcare data breaches!
Hot Take:
Oopsie daisy! Looks like someone accidentally left the vault open at Catholic Health, and now nearly half a million patients are having a collective heart attack—and not the good kind that gets you a cute doctor’s attention. Serviceaide, the enterprise management solutions provider, has come forward to say ‘Oops, our bad!’ after an Elasticsearch database decided it wanted to be an extrovert for a while. But don’t worry, they’re offering free identity theft protection for a year—because nothing says ‘Sorry we leaked your personal info’ like complimentary credit monitoring. Here’s hoping they can plug the leak faster than they can say ‘Do you want fries with your breach?’
Key Points:
- Serviceaide discovered a data leak affecting nearly 500,000 Catholic Health patients.
- An Elasticsearch database was exposed from September 19 to November 5, 2024.
- No evidence of data exfiltration, but the possibility can’t be ruled out.
- Exposed information includes personal and medical details.
- Impacted individuals are being offered 12 months of free credit monitoring.