The Physicians’ Spine and Rehabilitation Specialists of Georgia (PSRSG) has informed 38,765 patients about the potential compromise of some of their protected health information (PHI) in a cyberattack that happened approximately on July 11, 2022. A group of external cybersecurity specialists helped in the investigation and remediation work and successfully recovered its systems in a couple of days without having any material slowdowns to patient care.
PSRSG stated many security procedures were implemented before the attack, however, the attackers had bypassed those defenses. Action had been taken since to improve security and avoid the same breaches down the road. The forensic investigation affirmed that the attacker acquired access to its systems about one week prior to the discovery of the intrusion and its blockage.
The provider cannot figure out which files had been viewed or whether there was theft of any sensitive data during the attack. Nevertheless, the attacker professed to have taken sensitive information from its systems and warned the victim that it will disclose that information to the public. An analysis of the files on the breached systems revealed that they comprised PHI, such as names, dates of birth, contact details, driver’s license numbers, Social Security numbers, treatment data, guarantor details, and insurance data. The types of information contained in the files were different from one person to another. PSRSG mentioned that impacted persons were informed and provided with free credit monitoring and identity theft insurance via Experian, primarily to allow patients to have peace of mind.
One Medical, Inc. Reports Hacking Incident and Probable Data Breach
The healthcare provider One Medical Inc. based in Sherman, TX lately reported that it encountered a cyberattack wherein names, addresses, Social Security numbers, and medical records were likely exposed. On September 9, 2022, One Medical reported the data breach to the Attorney General of Texas as a hacking incident. There is limited detail currently available about the attack, but the breach seems to have affected no less than 964 Texas locals.
This is One Medical’s second data breach incident in the last year more or less. In July 2021, One Medical submitted an email error report that resulted in the impermissible disclosure of the PHI of 1,009 people.