Cyberattacks Reported by Brooklyn Premier Orthopedics & Atlas Healthcare
Brooklyn Premier Orthopedics (BPO) in New York has confirmed the protected health information of 48,459 patients may have been viewed or obtained in a recent cyberattack. According to BPO’s October 5, 2023, breach notice, unauthorized individuals gained access to parts of its network where patient data was stored, including names, addresses, dates of birth, Social Security numbers, and medical treatment information.
The investigation did not uncover any evidence to indicate any of that information has been misused; however, the affected patients have been advised to be vigilant and monitor their accounts carefully. Complimentary credit monitoring and identity theft protection services have been offered. BPO has reviewed and enhanced its security policies and practices to reduce the likelihood of similar incidents occurring in the future.
Almost 11,000 Atlas Healthcare Residents and Patients Affected by Cyberattack
The Connecticut senior living and care provider, Atlas Healthcare, has warned 10,831 of its assisted living residents and rehabilitation patients that some of their protected health information was exposed in a January 2023 cyberattack. The exposed information includes names, addresses, dates of birth, Social Security numbers, medical and health insurance information, driver’s license numbers, and financial information. The affected individuals had received care at Arbors of Hop Brook or Manchester Rehabilitation and Healthcare Center in Manchester, CT, or Vernon Rehabilitation and Healthcare Center in Vernon, CT.
Atlas Healthcare did not disclose details of the nature of the attack, such as if this was a data theft and extortion incident. As a precaution against identity theft and fraud, affected individuals have been offered complimentary memberships to a credit monitoring service.
Get The FREE
HIPAA Compliance Checklist
Immediate Delivery of Checklist Link To Your Email Address
Please Enter Correct Email Address
Your Privacy Respected
HIPAA Journal Privacy Policy
Humana Members Affected by Breach at Subcontractor of Business Associate
Humana Inc. has recently confirmed there has been a data breach at a subcontractor of a business associate. Humana was notified about the incident on October 3, 2023, by its business associate PNC Bank. PNC handles funding for payments to its participating providers.
On August 9, 2023, PNC was informed by its payment processing subcontractor, Echo Health, about suspicious activity that was detected on its website. The investigation confirmed that an unauthorized individual accessed its website using valid payment information that had been obtained from a third-party billing company. That individual was able to access Explanation of Provider Payment documents, which included the PHI of 2,844 Humana members. The documents contained first and last names, Humana ID numbers, provider names, and dates of service.
Humana says Echo Health has implemented additional technical safeguards and controls on its applications to prevent similar incidents and has put additional alerts and fraud monitoring in place.
