A Florida based cancer treatment facility announced that an unknown hacker has stolen more than 2 million patient records. In a statement 21st Century Oncology said the data breach took place on October 3, 2015, but was not discovered until November 13. The company was notified by the FBI who spotted some of the records being exchanged on hacker websites.
The stolen data contains information on both staff members and current and former cancer patients.
21st Century reported the stolen included patient names, social security numbers, physician names, diagnosis details, treatment information, and insurance plans details and affects patients in all fifty states.
Details of the breach have been withheld until now because the FBI wanted to investigate leads that might have uncovered the culprit.