Jackson County Hospital District Provides Notice of Data Privacy Incident

27
Jackson County Hospital District Provides Notice of Data Privacy Incident-01

Jackson County Hospital District (“Jackson Hospital”) is providing notice of a recent incident that may impact the privacy of some personal and/or medical information. Jackson Hospital is unaware of any misuse of individual information and is providing this notice out of an abundance of caution.

On or about January 9, 2022, Jackson Hospital observed unusual activity related to the inaccessibility of certain systems within its network. Jackson Hospital immediately began to investigate to better understand the nature and scope of this activity. The preliminary internal investigation revealed several systems were potentially subject to unauthorized access. Jackson Hospital began working with outside forensic specialists to determine the full scope and impact of this incident. On or about January 11, 2022, the investigation confirmed an unknown actor accessed Jackson Hospital’s systems and took certain, limited data from its systems. Jackson Hospital took immediate steps to contain the threat and enable hospital operations, including services to patients, to continue uninterrupted. A full investigation was simultaneously launched, designed to understand the nature and scope of what occurred, what information was stored on its impacted systems at the time of the incident, and to whom that information relates. The investigation remains ongoing at this time.

Also Read: Strategies to Set up Kubernetes Continuous Compliance

The types of personal information that may have been accessible to the unauthorized actor include: name, address, date of birth, contact information, Social Security number, medical history, medical condition or treatment information, medical record number, diagnosis code, patient account number, Medicare/Medicaid number, financial account information, and username/password.

Jackson Hospital takes the incident and security of personal information in its care seriously. Since discovering this incident, Jackson Hospital launched an extensive investigation, working with third-party specialists to assess the security of relevant systems and reduce the likelihood of a similar future incident. As part of its ongoing commitment to the privacy of personal information in its care, Jackson Hospital is working to review its existing policies and procedures and to implement additional administrative and technical safeguards to further secure the information in its systems. Jackson Hospital also notified federal law enforcement, the U.S. Department of Health and Human Services, and other state regulators.

Although Jackson Hospital is unaware of the misuse of any personal information impacted by this incident, individuals are encouraged to remain vigilant against incidents of identity theft by reviewing account statements and explanations of benefits for unusual activity. Any suspicious activity should be reported to the appropriate insurance company, health care provider, or financial institution.

For more such updates follow us on Google News ITsecuritywire News