The network of medical practices agreed to pay the fine after a third-party vendor misconfigured a server to allow public access to medical information that was searchable on Google. State prosecutors alleged Virtua didn’t do enough to verify the vendor’s cybersecurity practices.

Source: Click here