An attacker acquired access to BioPlus Specialty Pharmacy Services, an IT network located in Altamonte Springs, FL. Files containing sensitive patient data were accessed by the attacker. The pharmacy discovered the attack on November 11, 2021, and took prompt action to get rid of the hacker from its system. A third-party computer forensics agency aided BioPlus to verify the breach of its IT system on October 25, 2021, and took out the attacker from its network on November 11.
The investigation affirmed that the hacker accessed files that contain the protected health information (PHI) of selected patients, nevertheless, it wasn’t possible to exclude the likelihood that the hacker looked at the PHI of patients. The decision was consequently taken to inform all 350,000 present and former patients regarding the breach.
The records accessed by the attacker consist of patient names, birth dates, addresses, medical record numbers, existing/past health plan member ID numbers, claim details, diagnoses, and/or prescription data. Several patients furthermore had their Social Security number compromised. The sending of notification letters began on December 10, 2021. Those whose Social Security numbers were exposed were given free credit monitoring and identity protection services. BioPlus explained it has enforced more safety measures to stop the same breaches down the road.
Capital Region Medical Center IT Systems Still Not Available one week After Cyberattack
Capital Region Medical Center (CMRC) based in Jefferson City, MO, has affirmed it experienced a cyberattack that compelled the deactivation of its network and phone systems. The cyberattack was discovered on December 17, 2021, and its online and telephone systems continue to be inaccessible. The medical center is implementing its downtime protocols and patients can get treatment, however, a number of consultations were postponed. The cyberattack has likewise affected Capital Region’s pharmacies.
The Capital Region IT security team is working hard to reestablish its systems on the web as rapidly, and safely, as possible. The wellness and protection of its patients are deemed as really important and health care to patients will be made available as expected. There are downtime processes set up for doctors, nurses, and employees to provide care in these kinds of circumstances, and its personnel is determined to do all they could to offset disruption and give continuous health care to its patients.
5,356 People Impacted by Weddell Pediatric Dental Specialists Data Breach
Weddell Pediatric Dental Specialists located in Carmel, IN, has begun informing 5,356 persons that an unauthorized person obtained access to an employee’s email account that included their protected health information (PHI).
The email account breach was noticed on July 23, 2021, and the account was right away protected. Helped by third-party cybersecurity specialists, the dental practice established that the breach only impacted one worker’s email account. The review and examination of emails and attached files in the account were done on October 27, 2021, and showed the account comprised patient names, as well as at least one of these data elements: birth date, health diagnosis, medical treatment data, financial account details and in a number of cases Social Security numbers.
Persons whose Social Security number had been compromised were provided free credit monitoring services for one year. Weddell Pediatric Dental Specialists mentioned no data suggested the improper use of any patient information.