• Notice of Security of Informat...

Notice of Security of Information Breach Incident

On May 16, 2017, the Practice became aware that a virus had been installed on a server. The subsequent investigation of data access logs revealed that external hackers had access to data as far back as January 2017. While unauthorized access to the server was confirmed, the Practice was unable to determine if specific patient information was accessed. The Practice has received no notifications from current or former patients regarding any unauthorized use of protected health or personal information pertaining to this incident.

The files accessed may have included a patient's name, address, date of birth, Social Security numbers, lab test ordered, lab test results, telephone, gender, pregnancy status, medical record number, blood type, race, employer, payor information and physician. There was no access to the medical record system.

In response to this security incident, the Practice contacted the Federal Bureau of Investigation, removed the virus and computer from the network and engaged an independent IT consultant to investigate the matter and assist in improving processes. The Practice has taken steps to strengthen the security of its systems to reduce the chance this incident could happen in the future, including increasing technical controls, network security applications and policies to prevent unauthorized access.

Individuals whose information may have been affected by this incident will receive a letter with more information and the steps they can take to receive free credit monitoring and a free credit report. The Practice recommends these individuals review all financial account information closely and report any fraudulent activity or suspected incident of identity theft.

Individuals who believe they may be affected and have additional questions about this occurrence can submit questions to security@whcgpa.com .

Women's Health Care Group of Pennsylvania sincerely regrets this incident and has made significant improvements to continue improving security.

Ref# 0003324463-01
PostedJuly 14, 2017