Eight months after data breach, UMass Amherst finally notifies affected patients

A malware infection of a hard drive at the University of Massachusetts Amherst that occurred last June, but wasn't discovered until October, resulted in a breach of health information for 942 University Health Services patients, Health Data Management reports. While entities are required to notify those affected in such situations within 60 days, the University waited until this week to begin notifying the patients, assuming that their 60-day window did not begin until Feb. 1, when their investigation of the matter ended. Among the data at risk is patient and insurer names, medical record numbers, medications and physician names. Article

Suggested Articles

Roche, which already owned a 12.6% stake in Flatiron Health, has agreed to buy the health IT company for $1.9 billion.

Allscripts managed to acquire two EHR platforms for just $50 million by selling off a portion of McKesson's portfolio for as much as $235 million.

Artificial intelligence could help physicians predict a patient's risk of developing a deadly infection.