JDC Healthcare Management LLC (“JDC”) is notifying individuals of an event that may affect the security of some personal information. While, to date, JDC has no evidence that information has been or will be misused, JDC is providing information about the event, JDC’s response to it, and resources available to help protect personal information. JDC will be mailing written notice to potentially impacted individuals for whom it has contact information. JDC also posted notice of this incident on its website
On or about August 9, 2021, JDC became aware of a malware incident impacting certain company systems. JDC immediately worked to restore its systems and launched an investigation, with assistance from third-party computer forensic specialists, to determine the nature and scope of the incident The investigation determined that certain JDC data was subject to unauthorized access and/or acquisition during the incident between July 27, 2021 and August 11, 2021. Therefore, JDC conducted a comprehensive programmatic and manual review of the potentially impacted information to determine the type of information and to whom it related. On January 10, 2022, JDC completed this review and began obtaining contact information to notify potentially impacted individuals about this event. We also worked to engage additional services and resources for these individuals.
JDC’s investigation determined that the following types of information may have been subject to unauthorized access and/or acquisition: clinical information, demographic information (including Social Security numbers, driver’s license numbers, and dates of birth), health insurance information, and financial information. To date JDC has not identified any evidence of actual or attempted misuse of data, but JDC is making its community aware in an abundance of caution.
Read More: Top Three Security Mistakes CISOs Make today
JDC takes the confidentiality, privacy and security of the personal information in its care seriously. Upon learning of this incident, JDC moved quickly to investigate and respond to this incident, assess the security of its systems, restore functionality to its environment, and notify potentially affected individuals. As part of JDC’s ongoing commitment to the security of information, JDC is reviewing and enhancing existing policies and procedures to reduce the likelihood of a similar future event and has reported this incident to law enforcement. JDC will also be reporting this incident to the U.S. Department of Health and Human Services and state regulators, as appropriate.
JDC encourages individuals to remain vigilant against incidents of identity theft and fraud, to review their account statements, and to monitor their credit reports for suspicious activity. Additional steps individuals can take is provided in the below “Steps You Can Take to Protect Personal Information.”
We recognize that individuals may have questions that were not addressed. If you have additional questions, please contact (855) 568-2158, Monday through Friday, from 8 a.m. to 5:30 p.m. Central Time.
Steps You Can Take to Protect Personal Information
Under U.S. law, individuals are entitled to one free credit report annually from each of the three major credit reporting bureaus. To order a free credit report, visit www.annualcreditreport.com or call, toll-free, 1-877-322-8228. Individuals may also contact the three major credit bureaus directly to request a free copy of their credit report.
Individuals have the right to place an initial or extended “fraud alert” on a credit file at no cost. An initial fraud alert is a 1-year alert that is placed on a consumer’s credit file. Upon seeing a fraud alert display on a consumer’s credit file, a business is required to take steps to verify the consumer’s identity before extending new credit. If you are a victim of identity theft, you are entitled to an extended fraud alert, which is a fraud alert lasting seven years. Should you wish to place a fraud alert, please contact any one of the three major credit reporting bureaus listed below.
As an alternative to a fraud alert, consumers have the right to place a “credit freeze” on a credit report, which will prohibit a credit bureau from releasing information in the credit report without the consumer’s express authorization. The credit freeze is designed to prevent credit, loans, and services from being approved in your name without your consent. However, you should be aware that using a credit freeze to take control over who gets access to the personal and financial information in your credit report may delay, interfere with, or prohibit the timely approval of any subsequent request or application you make regarding a new loan, credit, mortgage, or any other account involving the extension of credit. Pursuant to federal law, you cannot be charged to place or lift a credit freeze on your credit report. To request a security freeze, you will need to provide the following information:
For more such updates follow us on Google News ITsecuritywire News. Please subscribe to our Newsletter for more updates.