UT Southwestern Medical Center Hit in MOVEit Software Vulnerability

UTSW is another victim in a long line of cyberattacks due to vulnerabilities through the MOVEit software.

By HFT Staff


UT Southwestern Medical Center (UTSW) was one of the many organizations, both nationally and internationally, that experienced a cybersecurity attack affecting MOVEit software, which securely moves large data files between networks. On May 30, 2023, it was brought to the attention of the UTSW Privacy Office that on May 28, 2023, an unknown individual exploited a previously unidentified vulnerability within the software, which allowed access to the files stored within UTSW’s MOVEit server. 

As a result of this attack, the UTSW Privacy Office confirmed the theft of certain protected health information. Based on the analysis of the stolen files, patient data varied and may have included name, medical record number, date of birth, name of medication, dosage of medication, prescribing provider and, for a smaller number, Social Security information. 

UT Southwestern is in the process of contacting each impacted patient through direct mail with specifics on the information that was stolen. Once the attack was detected, UT Southwestern immediately took steps to secure systems and networks and limit the amount of information housed within its MOVEit server. A multidisciplinary team at UT Southwestern began identifying both individuals and types of data impacted to prepare notifications. UTSW is now sending personalized notifications to individuals affected to explain the type of data involved. Monitoring for any additional suspicious activities is ongoing and continuous.   



July 27, 2023


Topic Area: Information Technology , Safety , Security


Recent Posts

States Move Forward to Better Protect Senior Citizens

Senior citizens are among the most vulnerable population and require a certain level of care. States are trying to protect them.


Archer and REDA to Transform Newport Beach Building into Outpatient Center

Groundbreaking on the Newport Irvine Medical Center is scheduled for June 2025.


Sunflower Medical Group Facing Lawsuit Following January Data Breach

The lawsuit seeks a jury trial, damages, expanded credit monitoring services and security improvements at Sunflower Medical Group.


Nemours Children's Health Opens New Location in Lake Nona

The nearly 8,000-square-foot facility will increase access to primary and specialty care services.


Enhancing Safety at Hennepin Healthcare with a Screening System

Case study: The system was able to detect 2,500 risk items in less than five months.


 
 


FREE Newsletter Signup Form

News & Updates | Webcast Alerts
Building Technologies | & More!

 
 
 


All fields are required. This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.