Cyberattacks Reported by Core Dental Health; Midwest Covenant Home; Family Dynamics Counseling Services
Cyberattacks and data breaches have been reported by Core Dental Health in Tennessee, Midwest Covenant Home in Nebraska, and Family Dynamics Counseling Services in Washington.
Core Dental Health
Core Dental Health in Oak Ridge, TN, has warned 2,349 patients that their protected health information has been exposed and potentially stolen in a recent cyberattack. Core Dental Health was informed by its IT managed service provider (MSP) on April 24, 2024, that abnormal activity had been detected in its network. The investigation confirmed that an unauthorized individual first accessed its network on or around March 14, 2024, and started making configuration changes. An analysis of logs showed that there had been access to a data folder that contained sensitive patient information. The data folder contained information such as names, dates of birth, and dental treatment histories.
The Federal Bureau of Investigation was notified about the attack and is investigating, and Core Dental Health is working with a cybersecurity consultant to implement additional security measures to prevent similar incidents in the future. No evidence has been found to indicate any misuse of the exposed data; however, out of an abundance of caution, the affected individuals have been offered complimentary credit monitoring and identity theft protection services. Individual HIPAA notifications were mailed to the affected individuals on July 1, 2024.
Midwest Covenant Home
Midwest Covenant Home in Stromsburg, NE, has fallen victim to a ransomware attack that was detected on April 29, 2024. The attack caused disruption that affected the functionality and availability of some of its IT systems. Immediate action was taken to prevent further unauthorized access and a third-party cybersecurity firm was engaged to investigate the incident and confirmed that there may have been access to files containing employee and client data.
Get The FREE
HIPAA Compliance Checklist
Immediate Delivery of Checklist Link To Your Email Address
Please Enter Correct Email Address
Your Privacy Respected
HIPAA Journal Privacy Policy
The investigation and document review are ongoing, however, the types of information potentially compromised in the attack have been identified. Employees had their names, dates of birth, Social Security numbers, and financial account information exposed. Client information compromised in the incident includes first and last names, dates of birth, Social Security numbers, medical information, and health insurance information. The breach has been reported to the HHS’ Office for Civil Rights as involving the data of at least 500 individuals.
Family Dynamics Counseling Services
Family Dynamics Counseling Services in Spokane Valley, WA, has alerted patients to a cyberattack and data breach that was detected in May 2024. The investigation confirmed that files containing patient data were accessed and may have been obtained. The review of the affected files has been completed and individual notifications are being sent to the affected individuals. A press release was issued about the breach, although it contained no information about the types of data compromised in the attack. The breach has been reported to the HHS’ Office for Civil Rights as affecting 4,373 individuals.
