Medisys Health Group and its affiliate Copeman Healthcare say they paid an unspecified ransom to recover personal information from about 60,000 customers after detecting a security breach on August 31.
An email from Medisys headquarters in Montreal says privacy officials were notified on September 4, four days after the breach was discovered, and began notifying customers last week.
They say the hackers obtained demographic information, such as ages and addresses, and some personal health numbers, but not financial information or social security numbers.
In some cases, test results, consultation reports, and prescribing information were obtained, but recovered after paying a ransom.
The Medisys and Copeman websites, which they claim to belong to Telus, say their security cons...