Jack Hughston Memorial Hospital Reported Cyberattack
Jack Hughston Memorial Hospital based in Phoenix City, AL has just announced that attackers have obtained access to its network. Because of the cyberattack, the hospital needed to disconnect its computer systems from the web, which disallowed access to its electronic health records. The hospital has carried on to give patient care with emergency downtime protocols. A third-party computer forensics company helped with the investigation. At this point of the investigation, it’s not clear if, and to what level, patient information was compromised.
Eye Care Leaders Data Breach Affects A Few More Eye Care Practices
The number of eye care centers impacted by the security breach at Eye Care Leaders is continuing to increase. Aloha Laser Vision in Hawaii, Sight Partners Physicians in Washington, and Mattax Neu Prater Eye Center in Missouri are some of the most recently identified to be affected. A minimum of 33 eye care companies have mentioned they were impacted by the attack and the data of over 2.9 million people were possibly exposed.
Cyberattack Announced by Michigan Avenue Immediate Care
Michigan Avenue Immediate Care (MAIC) based in Chicago, IL, has just announced a hacking incident in which an unauthorized third-party acquired access to its computer system and extracted files comprising sensitive patient information. The cyberattack was discovered on May 1, 2022. MAIC announced on May 12, 2022 that the records extracted from its network included some patient data.
The types of records contained in the files differed from person to person and may perhaps include names, phone numbers, addresses, birth dates, driver’s license numbers, Social Security numbers, treatment details, and/or health insurance data. Affected persons were informed via mail and were provided a free membership to the Experian IdentityWorks Credit 3B service for 12 months.
The data breach is not yet published on the HHS’ Office for Civil Rights breach webpage, therefore it is presently uncertain how many people were affected.
OrthoNebraska Email Account Breach
Orthopedic clinic OrthoNebraska located in Omaha, NE has lately reported that an unauthorized person viewed the email account of a staff member. The breach took place at the beginning of December 2021 and was noticed because the account was employed to send out spam messages. An assessment of the impacted email account revealed that the email messages and attachments included protected health information (PHI) of a number of patients, and that sensitive information might have been read or stolen.
The compromised details contained names, demographic data, state ID numbers, Social Security numbers, driver’s license numbers, usernames/passwords, medical insurance, claims details, and health care records. Impacted persons were advised through the mail and credit monitoring and provided identity theft protection services. Thus far, there was no proof found that suggests the attempted or actual misuse of any patient information. OrthoNebraska stated it has given more data security training to the staff and put in place extra safety measures to strengthen email security.
The incident has not yet appeared on the HHS’ Office for Civil Rights breach portal, so it is currently unclear how many individuals have been affected.