Over 9,500 Tallahassee Memorial HealthCare Patients Affected in Vendor Breach

The data breach occurred with a third-party vendor TMH does business with.

By HFT Staff


Tallahassee Memorial HealthCare (TMH) is providing notice of a cybersecurity incident involving a contracted vendor that included certain patients’ personal identifiable information and personal health information. 

On September 28, 2023, ESO Solutions, Inc. (ESO) in Austin, Texas, detected and stopped a sophisticated cybersecurity incident, in which an unauthorized third party accessed and encrypted some of ESO’s computer systems. ESO immediately took its affected systems offline, secured its network environment and engaged third-party forensic specialists to assist with the investigation. 

TMH has a business associate agreement with ESO related to the transfer of patient data to the state of Florida and the Florida Trauma Registry. State law requires TMH, as a trauma center, to maintain a comprehensive database of all injured patients treated in the hospital because of a traumatic injury. ESO provides software services that help hospitals improve operations, quality and patient outcomes. For this reason, ESO has certain individuals’ information from when TMH provided emergency care to them in the past. 

While this incident did not occur on TMH servers and did not impact TMH computer systems or operations, it affected 9,566 TMH patients. ESO is a valued partner and has coordinated with TMH to begin providing notice to all patients for whom there are verifiable mailing addresses and resources so potentially impacted individuals can protect themselves. 

The investigation determined that the unauthorized third party may have acquired some personal data. The impacted data varied by individual, but it may have contained personal information, including names, phone numbers, addresses and some sensitive personal information and/or protected health information. 

ESO is mailing letters to affected individuals for whom it has verifiable addresses and is offering notice and information on its website. While, to date, ESO is unaware of any misuse of the involved information, as a precaution, ESO is offering complimentary credit monitoring and identity theft protection services to individuals whose information may have been impacted. 



December 21, 2023


Topic Area: Security

Recent Posts

Biofilm 'Life Raft' Changes C. Auris Risk

Microscopic survival structure protects fungal pathogen from disinfectants and help it survive for long periods.

How Healthcare Restrooms Are Rethinking Water Efficiency

Manufacturers discuss strategies, technologies and design approaches that help healthcare facilities meet their sustainability goals.

Northwell Health Finds Energy Savings in Steam Systems

Case study: A proactive steam trap maintenance program is delivering millions in savings, fast payback and measurable carbon reductions across one of the nation’s largest health systems.

The Difference Between Cleaning, Sanitizing and Disinfecting

Cleaning methods and products have various purposes in reducing the spread of germs.

Jupiter Medical Center Falls Victim to Third-Party Data Breach

The third party has determined through an investigation that, at least as early as January 22, 2025, an unauthorized third party gained access to personal health information on legacy systems.

 
 


FREE Newsletter Signup Form

News & Updates | Webcast Alerts
Building Technologies | & More!

 
 
 


All fields are required. This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

 
 
 
 

Healthcare Facilities Today membership includes free email newsletters from our facility-industry brands.

Facebook   Twitter   LinkedIn   Posts

Copyright © 2023 TradePress. All rights reserved.