Ransomware Attack on Texas Ophthalmology Practice Exposes Data of 80,000 Patients
A Texas ophthalmology practice has experienced a ransomware attack that resulted in the encryption of files on its computer systems. The attack affected Victoria Surgery Center, Victoria Eye Center, and Victoria Vision Center and involved the personal and protected health information of 80,122 individuals.
The attack was detected on March 21, 2024, when the file encryption made certain computer systems inaccessible. Third-party forensics specialists were engaged to assist with the investigation and help secure systems, restore access to patient information, and determine the extent to which patient information was involved. The investigation confirmed that there had been unauthorized access to systems and that certain files containing patient data were accessed in the attack.
The file review has recently been completed and confirmed that names, addresses, and medical identification were compromised. The affected individuals have now been notified and offered 12 months of credit monitoring and identity theft protection services. Steps have been taken to prevent similar incidents in the future, including reviewing and revising internal data management and protocols and enhancing security measures.
Texas Panhandle Centers Notifies Patients About October 2023 Data Breach
Texas Panhandle Centers, an Amarillo, TX-based Certified Community Behavioral Health Clinic, has discovered there has been unauthorized access to its computer systems and the exposure of the personal and health information of 16,394 patients. The substitute breach notice does not state when the unauthorized access was detected, only that it occurred on or around October 17, 2023. The forensic investigation confirmed on or around April 19, 2024, that some files containing patient information were potentially acquired by an unauthorized individual.
Get The FREE
HIPAA Compliance Checklist
Immediate Delivery of Checklist Link To Your Email Address
Please Enter Correct Email Address
Your Privacy Respected
HIPAA Journal Privacy Policy
The review of those files revealed they contained patient names, dates of birth, medical record numbers, state ID numbers, driver’s license numbers, diagnosis/condition information, lab test results, medications, healthcare claims information, and clinical/treatment information. A subset of those individuals also had their Social Security numbers exposed. While patient data has been exposed, Texas Panhandle Centers said it is unaware of any misuse of patient data. Individual notifications were mailed to the affected individuals on May 9, 2024, and individuals who had their Social Security numbers exposed have been offered complimentary credit monitoring services.
