Health system flags vulnerability in Epic COVID-19 vaccine scheduler
Healthcare IT News
Michigan-based Beaumont Health detected "unusual activity" on Saturday related to the online COVID-19 vaccine scheduling available through its Epic electronic health record system.
According to a press release shared on the system's website, a user took advantage of a vulnerability in Epic's scheduling tool, allowing for 2,700 people to "cut in line" and register for an unauthorized vaccine appointment. Those appointments have now been canceled.
"These appointments violate the ethical distribution framework Beaumont created based upon the State of Michigan’s mandatory vaccine guidelines," said Beaumont Health Chief Information Officer Hans Keil in a statement. "We regret that 2,700 people in our community became victims of this unfortunate incident."
WHY IT MATTERS
According to a statement from Epic, the issue occurred when...