Beaumont Hospital says thousands of people who may not qualify for a COVID-19 vaccine were “ in line ” after a security breach on their website.
Someone took advantage of a “planning tool vulnerability” on the hospital’s website on Saturday and shared an unauthorized planning path with others.
Hacker gets into Beaumont’s schedule, leading to 2,700 additional COVID-19 vaccine appointments
Beaumont Health is canceling thousands of unauthorized COVID-19 vaccination appointments after someone finds a way to hack into the hospital’s scheduling system and share it publicly.
The breach allowed 2,700 people to sign up for an unauthorized vaccination appointment.
“These appointments are in violation of the ethical distribution framework Beaumont established under Michigan State’s mandatory vaccine guidelines. We regret that 2,700 people in our community have been affected by this unfortunate incident. We remain committed to making the most of vaccinate people who meet state guidelines, ”Beaumont Health Senior Vice President & Chief Information Officer Hans Keil said.
The incident was first reported when “unusual activity” related to the hospital’s scheduling system was detected on Saturday.
The people using the “unauthorized ‘back door’ route” were informed that their appointment had been canceled.
The online infrastructure that Beaumont uses is operated by Epic, a Wisconsin electronic health record systems company.
The hospital said no one ‘s personal medical records had been compromised and no outside access to hospital records was possible.