Albany-based Med Associates suffered a hack that may have exposed the patient records of more than 270,000 patients. The breach was discovered on March 22 when an employee workstation showed unusual activity, and investigation revealed that a hacker may have accessed patient data. The affected data included demographic information, addresses, dates of service, medical data, and insurance identification numbers, but not financial information. Med Associates is continuing to investigate the incident and is offering impacted patients a year of free credit monitoring.
Traditional cyber insurance policies do not cover physical damage or bodily injury resulting from a cyberattack. It covers electronic data loss, privacy violation, and first-party