A KPRC 2 viewer sent us a letter he got from Harris Health System saying his information was compromised.
This is something Harris Health System was warning about a few weeks ago. The breach involves software Harris Health uses called MOVEit. The software allows the hospital system to send a receive files. MOVEit customer data was taken across the United States and around the world.
“On June 2, 2023, Harris Health learned that a vulnerability in the MOVEit software allowed an unauthorized actor to access its MOVEit server. Upon learning of the vulnerability, Harris Health immediately implemented security safeguards to address the vulnerability and secure its MOVEit server. Harris Health also promptly launched an investigation into the nature and scope of the event with the assistance of third-party cybersecurity experts,” the Harris Health statement reads.
“The unauthorized access to our MOVEit service happened on May 28, 2023, during which time certain files were downloaded from that system.”
The letter explains that customer data included address, date of birth, medical record number, driver’s license number or other government-issued ID numbers. Patients are being asked to review statements from health insurers and providers to check for charges for services they did not get.
This is something Harris Health System was warning about a few weeks ago. The breach involves software Harris Health uses called MOVEit. The software allows the hospital system to send a receive files. MOVEit customer data was taken across the United States and around the world.
“On June 2, 2023, Harris Health learned that a vulnerability in the MOVEit software allowed an unauthorized actor to access its MOVEit server. Upon learning of the vulnerability, Harris Health immediately implemented security safeguards to address the vulnerability and secure its MOVEit server. Harris Health also promptly launched an investigation into the nature and scope of the event with the assistance of third-party cybersecurity experts,” the Harris Health statement reads.
“The unauthorized access to our MOVEit service happened on May 28, 2023, during which time certain files were downloaded from that system.”
The letter explains that customer data included address, date of birth, medical record number, driver’s license number or other government-issued ID numbers. Patients are being asked to review statements from health insurers and providers to check for charges for services they did not get.
