CareCloud disclosed a March 16 incident in which an unauthorized third party temporarily accessed one of its electronic health record environments, causing a brief operational disruption. The company restored access the same day, engaged external forensic and law enforcement teams, and is still determining whether patient data was accessed or exfiltrated. #CareCloud #EHR
Keypoints
- An unauthorized actor gained temporary access to one CareCloud EHR environment on March 16.
- Access was restored within approximately eight hours and affected systems were brought back online the same day.
- The breach was limited to a single environment out of six operated by CareCloud Health, with other environments believed unaffected.
- CareCloud has engaged a Big Four cyber response team, notified its insurer, and reported the incident to law enforcement while conducting a forensic investigation.
- The incident is classified as material due to the sensitivity of EHR data, though there is no confirmed data theft or material financial impact reported yet.
Read More: https://thecyberexpress.com/carecloud-data-breach/