Report: Breach leads to online data posting

September 9, 2011 - 3:40 AM

NEW YORK (AP) — Stanford Hospital in California has confirmed that a privacy breach led to medical information for thousands of emergency room patients to be posted online. That's according to a report on the New York Times' website Friday.

The paper says the data for 20,000 patients, including names and diagnosis codes, remained on a commercial website for nearly a year until the breach was discovered late last month.

The Palo Alto hospital has been investigating how the material made its way from one of its vendors to a website that allows students to solicit paid assistance with their schoolwork.

Hospital spokesman Gary Migdol tells the paper that the data first appeared on the site as an attachment. He says it did not include Social Security and credit-card numbers or other information used to perpetrate identity theft.