TriHealth Physician Partners Confirms Patient Data Exposed in Cyberattack
Cyberattacks have recently been announced by TriHealth Physician Partners in Ohio and Harmac Medical Products in New York, and an insider breach has been discovered by North Texas Medical Specialists.
TriHealth Physician Partners
TriHealth, dba TriHealth Physician Partners (TriHealth), a primary care provider serving the greater Cincinnati area of Ohio, has warned patients about a security incident at one of its business associates that involved unauthorized access to patients’ protected health information. TriHealth said it learned about the incident at its vendor on October 23, 2024, and confirmed that there was no unauthorized access to its own network. The forensic investigation confirmed the attacker only had access to historical documents related to care provided by the OB/GYN group, For Women, prior to January 2020 when For Women joined TriHealth.
An analysis of the affected files confirmed they contained names, addresses, dates of birth, Social Security numbers, claims information, medical conditions, medications, lab results, and other treatment information. TriHealth is mailing notification letters to the affected individuals and is offering complimentary credit monitoring and identity theft protection services. The healthcare provider is working with its vendor to reduce the likelihood of similar incidents in the future.
The HHS’ Office for Civil Rights breach portal shows 27,426 individuals were affected.
Get The FREE
HIPAA Compliance Checklist
Immediate Delivery of Checklist Link To Your Email Address
Please Enter Correct Email Address
Your Privacy Respected
HIPAA Journal Privacy Policy
Harmac Medical Products Inc.
Harmac Medical Products Inc., a Buffalo, NY-based single-use medical device manufacturer, has detected unauthorized access to its network. Suspicious network activity was detected on September 13, 2024, and the forensic investigation confirmed that an unknown actor had accessed its network on September 13, 2024, and may have viewed or obtained files containing the names and Social Security numbers of 4,679 individuals.
Notification letters have been mailed to the affected individuals and complimentary credit monitoring and identity theft protection services have been offered. Harmac said it is reviewing its security policies and procedures and will be evaluating additional security measures to prevent similar incidents in the future.
North Texas Medical Specialists
North Texas Medical Specialists has notified 933 patients about an insider data breach detected on or around August 30, 2024. North Texas Medical Specialists learned that a former employee who voluntarily left employment at North Texas Medical Specialists had accessed the records of the patients without authorization between April 1 and April 9, 2024.
The information in the records varied from individual to individual and may have included one or more of the following: name, address, date of birth, demographic and/or health-related information, and other information commonly found in medical / billing records. A limited number of Social Security numbers may also have been viewed. The reason for the unauthorized access is unclear.
North Texas Medical Specialists said the unauthorized access was reported to law enforcement and no evidence has been found to indicate any misuse of patient data. As a precaution, individuals whose Social Security numbers were involved have been offered complimentary credit monitoring and identity theft protection services. North Texas Medical Specialists said it is taking steps to prevent similar insider breaches in the future.
