Fairfield Memorial Hospital is informing patients via mail about a potential misuse of personal data following a significant data breach earlier this year. While officials state they have not discovered any instances of actual or attempted misuse of patient information for financial fraud, they are providing an overview of the incident, their response, and resources to help patients protect their information.
The breach was detected on June 20th, when the hospital noticed suspicious activity in its computer network. In response, they secured the system and enlisted a cybersecurity firm for a thorough investigation. The incident affected nearly every department, particularly the emergency department, where diagnostic testing requiring imaging, such as CT scans, had to be sent to another facility. During this period, patients in need of CT scans were transported by ambulance from Fairfield to Clay County Hospital in Flora. The hospital covered the costs associated with this disruption. It wasn’t until mid-July that the computer systems were restored, allowing the hospital to resume essential services, including CT scans, mammograms, and other radiology procedures.
The breach may have compromised personal information for some patients, including names, birth dates, medical diagnoses and treatments, health insurance details, medical record numbers, and service dates. To help safeguard affected individuals, the hospital is offering complimentary Single Bureau Credit Monitoring through Cyberscout, a TransUnion company specializing in fraud prevention and remediation. Patients with questions about the breach and the credit monitoring services can reach a dedicated assistance line at 1-855-577-8593.
Additionally, Console & Associates, a law firm based in Philadelphia, is reaching out to those who received the data breach notification, encouraging them to contact the firm to discuss potential legal options or to submit a confidential case evaluation form.
Currently, there has been no litigation filed against the hospital, its IT service providers, or anyone connected to the cyberattack.
Comments