A misconfigured backup server hosted by medical records technology vendor iHealth Solutions resulted in exposure of over 7,000 medical records, some containing sensitive information. The records, involving patients seen at Bronx-Lebanon Hospital Center in New York, New York, between 2014 – 2017, include patients’ names, addresses, HIV status, mental health diagnoses and addiction histories, as well as sexual assault and domestic violence reports. The leak was discovered by a team of researchers at MacKeeper Security Research Center, who were conducting a routine internet sweep. It is not clear how long the records were exposed. According to reports, there is no indication that the information has been used inappropriately.