Limited Children’s Minnesota patient, donor data may have been breached
Patients and donors to a health care provider in Minnesota are being notified that their personal information may have been compromised.
The hack is part of a ransomware attack on a cloud computing company called Blackbaud, which manages databases for a number of nonprofits.
This latest potential data breach involves patients and donors at Children’s Minnesota.
A letter from Children’s Minnesota, as well as a statement on its website, reports the breach happened between February 7 and May 20. According to the statement, the incident "involved limited patient information that the (Children’s Minnesota) Foundation received in connection with its fundraising efforts, including: full names, addresses, phone numbers, age, dates of birth, gender, medical record numbers, dates of treatment, locations of treatment, names of treating clinicians and health insurance status."
The statement goes on to say, "financial account, credit card information and Social Security numbers were not contained in the affected Blackbaud database," and that the breach "did not involve any access to our medical systems or electronic health records."
Also locally, Como Friends, a nonprofit that supports Como Park Zoo and Conservatory, warned donors of a data breach involving Blackbaud earlier this summer.