siParadigm Notifies 26,500 Patients About PHI Exposure
The New Jersey lab testing and diagnostic service provider, siParadigm, is notifying 26,534 individuals about the exposure of some of their protected health information. On June 11, 2024, siParadigm identified unauthorized access to its computer network. Its incident response procedures were initiated, and third-party cybersecurity experts were engaged to help secure its network, harden security, and investigate the breach.
The investigation confirmed that files related to diagnostics and related services were stored on the parts of the network that were accessed; however, no evidence has been found to indicate any sensitive information has been misused. The types of information exposed included names, addresses, dates of birth, Social Security numbers, and medical information. While there are no indications that the exposed data will be misused, the affected individuals have been offered complimentary credit monitoring services. siParadigm said it is focused on enhancing cyber preparedness and will update its policies and procedures and provide further security awareness training to the workforce.
Access Ambulatory Surgery Center, New Hampshire
Access Ambulatory Surgery Center in Auburn, NH, has alerted 5,205 patients about a recent cybersecurity incident. A specialized cybersecurity firm was engaged to investigate the incident and confirmed that files containing patient data were accessed by an unauthorized third party. A review of the affected files confirmed that the exposed data included names, dates of birth, medical information, Social Security numbers, health insurance information, and limited financial information. The affected individuals were identified on July 3 and July 19, 2024.
At the time of issuing notification letters, no evidence of misuse of patient data had been identified; however, as a precaution, the affected individuals have been offered complimentary access to credit monitoring services for 12 months. Access Ambulatory Surgery Center has changed its administrative credentials and has enhanced its security measures to prevent similar incidents in the future.
Get The FREE
HIPAA Compliance Checklist
Immediate Delivery of Checklist Link To Your Email Address
Please Enter Correct Email Address
Your Privacy Respected
HIPAA Journal Privacy Policy
Jefferson Health Pennsylvania Heart and Vascular Group
Jefferson Health’s Pennsylvania Heart and Vascular and Vascular Group has discovered a mailing error that resulted in letters being sent to incorrect addresses. According to its September 11, 2024, website notice, the mailing incident was identified on July 22, 2024. Letters had been mailed to patients to advise them about the retirement of a Jefferson Health physician, but 755 letters were sent to incorrect addresses. The letters included names, types of treatment, and the name of the physician. Jefferson Health is reviewing its privacy and security protocols and will take steps to reduce the risk of similar mailing errors in the future.
