Sentara Health is notifying 741 patients of a data leak after a mistake by a Coronis Health employee
Sentara Health in Virginia reports that on Dec. 19, an anonymous person called their hotline to report that while searching for something online, the caller came across an exposed file with Medicare patient billing information.
Sentara quickly verified the caller’s report and determined that the file was uploaded to the Adobe Acrobat website by an employee of a Sentara business partner named Coronis Health. The employee uploaded the charge transfer file on October 17th.
The file contained protected patient health information that included: Medicare ID number, date of service, current procedural terminology or “CPT” codes, last four digits of account number, location of service (Sentara Laboratory) and any account balance.
Coronis reportedly fired the employee. Sentara, for its part, informs the 741 patients whose data was in the exposed file and offers them credit monitoring services.