CareNet Medical Group in New York has started notifying 3,359 patients that some of their protected health information has been stolen in a security incident. The breach notice does not state when the security incident was detected but the investigation revealed on April 26, 2023, that its network was accessed by an unauthorized individual between May 9, 2022, and June 4, 2022, during which time files were copied from its network.
The compromised information included full names, addresses, driver’s license numbers, bank account numbers/routing numbers, dates of birth, medical reference numbers, Medicare numbers, cell phone numbers, home phone numbers, health insurance information, email addresses and Social Security numbers. Notification letters were sent to affected individuals on June 2, 2023, and complimentary credit monitoring services have been offered to individuals whose Social Security numbers were exposed. No explanation was provided as to why it took almost 11 months to determine that patient data had been compromised.
ISSA Introduces Healthcare Platform to Advance Safer, Cleaner Patient Environments
Third-Party Tracking Settlement is a Compliance Wake-Up Call for Healthcare Facilities Managers
ECU Health Behavioral Health Hospital Hosts Ribbon-Cutting Ceremony for New Facility
Aspire Rural Health System Reports Data Security Incident
Fatal Flaws: Strategies for Active Attackers