Data Breaches Confirmed by South West Family Medicine Associates & Sango Family Dentistry
Cyberattacks have recently been confirmed by South West Family Medicine Associates in Texas and Sango Family Dentistry in Tennessee that involved unauthorized access to patient data.
South West Family Medicine Associates
South West Family Medicine Associates in Dallas, Texas, has notified 36,959 current and former patients and employees that some of their protected health information was compromised in an August security breach. Suspicious activity was identified within its network on August 7, 2024, and cybersecurity professionals were engaged to investigate the activity and confirmed that unauthorized individuals accessed its network and viewed or acquired files containing patient and employee information.
The affected files were reviewed, and on October 24, 2024, it was confirmed that they contained patient and employee information including names, addresses and zip codes, dates of birth, Social Security numbers, driver’s license numbers, medical histories, lab results, diagnosis/condition information, medication information, passwords, passport numbers, personal identification numbers or other access codes, numbers or information used to access financial resources, mother’s maiden name, unique private key used to authenticate or sign an electronic record, tax identification number or identity protection personal identification number, and/or health insurance policy number/subscriber information.
No evidence has been found to indicate any misuse of that data; however, due to the sensitive nature of the information compromised in the incident, the affected individuals should take steps to protect themselves against misuse of their information. South West Family Medicine Associates has offered complimentary credit monitoring and identity theft protection services, which include dark web monitoring and a $1,000,000 insurance policy against identity theft and identity theft recovery services.
Get The FREE
HIPAA Compliance Checklist
Immediate Delivery of Checklist Link To Your Email Address
Please Enter Correct Email Address
Your Privacy Respected
HIPAA Journal Privacy Policy
Sango Family Dentistry
Sango Family Dentistry in Clarksville, Tennessee, has recently confirmed that the protected health information of up to 27,000 patients was compromised in an August 2024 cyberattack. The security incident was detected on August 27, 2024, and disrupted its computer systems. Steps were taken to secure its computer systems and prevent further unauthorized access, and cybersecurity experts were engaged to determine the nature and scope of the intrusion.
The forensic investigation confirmed that an unknown actor accessed its network on or around August 27, 2024, and exfiltrated files. The file review has recently been completed and confirmed that patients’ protected health information was stolen. The types of data involved varied from individual to individual and may have included one or more of the following: name, date of birth, diagnosis, diagnosis code, treatment information, provider name(s), health insurance information, billing/claim information, health benefit plan number, subscriber member number, Social Security number, and/or driver’s license/state identification number.
Notification letters were mailed to the affected individuals on October 21, 2024, who had identifiable address information and complimentary identity protection services have been offered. At the time of issuing notifications, Sango Family Dentistry was unaware of any misuse of the compromised data.
