According to the Charlotte Observer, a breach at Charlotte, N.C.'s Presbyterian Anesthesia Associates may have exposed 9,988 people's names, contact information, birthdates and credit card numbers (h/t Becker's Hospital Review).
HealthITSecurity reports that the breach was discovered on April 18, 2013, and was reported to the North Carolina Attorney General's Office on May 8, 2013.
A hacker apparently leveraged a security flaw in the medical practice's Web site to access the information. Presbyterian Anesthesia says no medical information was compromised.
Presbyterian Anesthesia says the FBI has launched an investigation into the breach, and the medical practice is offering free monitoring and insurance to everyone affected.
The practice says it's working with a new company to build a more secure Web site, and has hired an IT security firm to conduct a security audit.