By HFT Staff

On November 22, 2023, East River Medical Imaging (ERMI) began sending notification letters to patients and employees of a security incident involving some of their information. 

On September 20, 2023, ERMI identified suspicious activity within their IT network. They immediately initiated their incident response process, began an investigation with the assistance of a cybersecurity firm and notified law enforcement. The investigation determined that an unauthorized party accessed their network and, between August 31, 2023, and September 20, 2023, accessed and/or copied some documents on the system. 

The documents involved in this incident contained information that varied from person to person. Depending on the person, information impacted may have included name, contact information, insurance information, exam and/or procedure information, referring physician, and/or imaging results, and/or Social Security number. For employees, the information reflected names, contact information, financial account information, Social Security number and/or driver’s license number. 

ERMI has and will continue to take steps to enhance the security of their computer systems and the data they maintain. To help prevent something like this from happening again, ERMI has enhanced their network monitoring capabilities, and will continue to assess and supplement their security controls going forward. 

ERMI is offering individuals whose Social Security number or driver’s license number was impacted complimentary credit monitoring services. Enrollment information is included in notification letters sent to those individuals. ERMI recommends as a best practice that patients review statements they receive related to their healthcare. If they identify charges for services not received, they should contact the healthcare entity or health insurer immediately.