NC: Security Breach at MedSolutions

[kirniki <kirniki () gmail com>]

http://www.ncmedsoc.org/blog/index.php/archives/2320

The NCMS received information today that a significant security breach
occurred involving the MedSolutions website. MedSolutions is the
vendor for NC Medicaid that administers the high-tech diagnostic
imaging pre-authorization program. For a period of time that has not
been clearly defined the name, address, email, and taxpayer ID number
(which in some cases is the physician’s Social Security number) for an
undetermined number of NC physicians could be viewed on the
MedSolutions website. Access to this information apparently was not
limited to physicians or physician staff. Based on the information
available at the time of this posting, any person with an email
address could enter physician names and view the information.

[..]
_______________________________________________
Dataloss Mailing List (dataloss () datalossdb org)
Archived at http://seclists.org/dataloss/

Get business, compliance, IT and security staff on the same page with
CREDANT Technologies: The Shortcut Guide to Understanding Data Protection
from Four Critical Perspectives. The eBook begins with considerations
important to executives and business leaders.
http://www.credant.com/campaigns/ebook-chpt-one-web.php