(POCATELLO, ID) – Idaho State University is being fined $400,000 for leaving electronically-stored medical records vulnerable to hackers. The alleged incident occurred during maintenance procedures in August of 2011 when firewalls were not put back in place. The move left medical records exposed for more than 17,000 patients over a ten-month period. ISU officials say it’s unlikely that any information was accessed illicitly, and that they undertook proper procedures to notify everyone affected.
Idaho State Journal staff