Social Security Numbers of US Health Care Providers Exposed via Public Database – Trump Administration Directory Designed to Modernize Medicare Hits Another Error

• Social Security numbers were exposed in a public database
• The database was used to populate a Medicare directory
• The directory was launched by CMS as part of the Trump administration’s plans to modernize Medicare.

A directory created by the Centers for Medicare and Medicaid Services (CMS) revealed the Social Security numbers of a number of U.S. health care providers.

The Trump administration has introduced a new Medicare portal as part of plans to modernize healthcare technology in the United States.

However, a database as part of the directory was left publicly available and revealed providers’ names and social security numbers.

Article continues below

Private data exposed

The directory, which included the database, was created to help seniors in need of care research which doctors and medical providers were compatible with their health insurers.

The database, downloaded and reviewed by the Washington Postwas publicly available as part of CMS’s efforts to adhere to data transparency efforts.

Unbeknownst to CMS, the database contained certain social security numbers of providers that CMS believed had been entered into the database in error. CMS explained that the error “results from incorrect entries of information provided by the provider or provider’s representative in the wrong locations.”

“The agency has taken steps to quickly address this and strengthen safeguards around data submission and validation,” CMS added.

CMS did not explain how many Social Security numbers were exposed, nor any information on whether providers were notified of the exposure. The database was deleted after the Post notified health officials.

Speaking to the Post, an anonymous doctor said: “I don’t even know how [Medicare officials] I would get my social security number.

The Trump administration’s modernization of U.S. health insurance has been plagued by a number of previous mistakes, including inadequate or duplicated insurance coverage, drawing criticism from some Democrats.

Senators Jeff Merkley (D- Oregon) and Ron Wyden (D- Oregon) wrote a letter to CMS in November, stating: “We are concerned that this rushed rollout will mislead millions of seniors when they compare plans, and could cause seniors and people with disabilities to incur medical bills that they reasonably thought would be covered.”

For healthcare providers who believe their Social Security number may have been disclosed, Microsoft recommends taking the following steps:

1. Place a temporary fraud alert on your credit to alert credit reporting agencies of any suspicious activity.
2. Download a current copy of your credit report
3. Transfer any unrecognized account to the Federal Trade Commission
4. File a police report so there is an official record of your stolen identity
5. File a complaint with the Internet Crime Complaint Center
6. Notify the Internal Revenue Service

Follow TechRadar on Google News And add us as your favorite source to get our news, reviews and expert opinions in your feeds.

Benedict is a senior security editor at TechRadar Pro, where he specializes in covering the intersection of geopolitics, cyber warfare and enterprise security.

Benedict provides in-depth analysis of state-sponsored threat actors, APT groups, and critical national infrastructure protection, his reports bridging the gap between technical threat intelligence and B2B security strategy.

Benedict holds a Masters (Distinction) in Security, Intelligence and Diplomacy from the University of Buckingham Center for Security and Intelligence Studies (BUCSIS), his specialization providing him with a strong academic framework for deconstructing complex international conflicts and intelligence operations, as well as the ability to translate complex security data into actionable insights.