Valley News - Gifford says vendor had data breach
Gifford says vendor had data breach
Staff report
Published: 5/3/2021 9:53:39 PM
Modified: 5/3/2021 9:53:38 PM
RANDOLPH – Gifford Health Care last month notified federal authorities of a data breach involving a vendor that helps administer one of the Randolph-based medical center’s drug-pricing programs.
Gifford notified the U.S. Department of Health and Human Services on April 23 of a “hacking/IT incident” involving a network server, according to HHS records.
Gifford spokeswoman Ashley Lincoln on Monday said a company called CaptureRX, which administers a program called 340B which helps rural health care providers purchase drugs at a discount for some needy patients, “experienced a ransomware attack on February 6.”
A ransomware attack occurs when a hacker infects an organization or person’s computer with software that blocks access until a “ransom” is paid to remove it.
Lincoln said via email that CaptureRx “did not find any evidence of actual or attempted misuse of the information which included name, date of birth, prescription information and for some patients a medical record number.”
CaptureRx had data on 6,777 Gifford patients who use the Rite Aid in Bethel and Randolph and will notify all of the patients who might have been impacted, as required, Lincoln said.
Staff report
Published: 5/3/2021 9:53:39 PM
Modified: 5/3/2021 9:53:38 PM
RANDOLPH – Gifford Health Care last month notified federal authorities of a data breach involving a vendor that helps administer one of the Randolph-based medical center’s drug-pricing programs.
Gifford notified the U.S. Department of Health and Human Services on April 23 of a “hacking/IT incident” involving a network server, according to HHS records.
Gifford spokeswoman Ashley Lincoln on Monday said a company called CaptureRX, which administers a program called 340B which helps rural health care providers purchase drugs at a discount for some needy patients, “experienced a ransomware attack on February 6.”
A ransomware attack occurs when a hacker infects an organization or person’s computer with software that blocks access until a “ransom” is paid to remove it.
Lincoln said via email that CaptureRx “did not find any evidence of actual or attempted misuse of the information which included name, date of birth, prescription information and for some patients a medical record number.”
CaptureRx had data on 6,777 Gifford patients who use the Rite Aid in Bethel and Randolph and will notify all of the patients who might have been impacted, as required, Lincoln said.
