Private Details Available For Months On The Centers For Osteopathic Research And Education Website
The Centers for Osteopathic Research and Education (CORE) at Ohio University removed a Web document last week that inadvertently contained personal information belonging to individuals who have provided academic programming for the medical education consortium. CORE is an osteopathic medical education consortium comprising member teaching hospitals, clinical training sites and osteopathic medical schools. The Ohio University College of Osteopathic Medicine is the central academic member of CORE.
CORE has identified, sent information to and developed resources for the 492 presenters affected, including doctors and nurses. The document was available to all for months. On July 16, CORE removed a spreadsheet that contained the information.
It had been accessible since March 20 and was discovered when a nurse found the information last week while conducting online research. A document that should have been posted did not contain personal information, according to CORE. The document that should have been posted was intended to help CORE’s Residency Program Advisory Committees (RPAC) directors, who coordinate education programs for physicians-in-training and identify and engage medical education speakers.
It was not intended to carry personal information. In addition to names and Social Security numbers, the spreadsheet included contact numbers, addresses, their speaking topics and federal employer identification numbers. The person responsible for posting the information was put on paid administrative leave and has no access to the Web site or to CORE data pending a review.
There is no indication that any of the personal information was misused, said CORE spokeswoman Karoline Lane. With the help of OU experts, CORE is examining what happened and how it happened.
Within one week of learning about the error, CORE has undertaken the following to assist those whose information was exposed: published an informational Web site (www.ohiocore.org/answers); provided a toll-free call-in number (866-437-8698); and offered credit monitoring service for one year.
More on CyberInsecure:
Leave a Reply
Comments with unsolicited links to other resources will be marked as spam. DO NOT leave links in comments. Please leave your real email, it wont be published.