Cloud Defense Logo

Products

Solutions

Company

Book A Live Demo

Breach
2022
Indiana-based Otolaryngology Associates, LLC notifies 316,802 patients about February cyberattack

Indiana-based Otolaryngology Associates, LLC notifies 316,802 patients about February cyberattack

Table of Contents

Incident Details

The information on the invoice comprised the individual's first and last name, OA medical record number, a code associated with the services rendered, service date(s), treating physician's name, appointment location, total charges, and the insurance company's name. Some people may have had their Social Security number, driver's license number, address, email address, phone number, date of birth, appointment schedules, referral forms, or insurance policy numbers exposed. In addition, OA employees' information that may have been affected could have included bank account and payroll details. OA has sent out letters to inform all potentially impacted parties, with each letter detailing the specific type of information that may have been compromised for that individual.

Incident

How Did the Breach Happen?

The cyber breach took place in February as a result of a targeted cyberattack.

What Data has been Compromised?

The information that was breached consists of individuals' first and last names, OA medical record numbers, codes pertaining to services, dates of services, names of physicians, locations of appointments, costs, names of insurance companies, and possibly, confidential details like Social Security numbers, driver's license numbers, addresses, email addresses, phone numbers, dates of birth, appointment timetables, referral documents, and insurance policy numbers. Furthermore, bank account details and payroll information for OA employees may have also been obtained.

Why Did the company's Security Measures Fail?

The description does not include specific information on the reasons for the failure of the company's security measures.

What Immediate Impact Did the Breach Have on the company?

316,802 patients had to be informed about the breach, leading to a substantial allocation of resources to rectify the situation.

How could this have been prevented?

To avoid such breaches in the future, it is important to enhance cybersecurity protocols, regularly review security measures, and safeguard sensitive information through encryption and strong access restrictions.

What have we learned from this data breach?

The recent security incident emphasized the crucial need for robust cybersecurity measures to protect sensitive data of patients and employees. It serves as a reminder for companies to focus on strengthening their cybersecurity and safeguarding data.

Summary of Coverage

Otolaryngology Associates, LLC, located in Indiana, faced a cyber incident in February that resulted in the exposure of confidential data belonging to patients and employees. This security breach required informing more than 300,000 people, highlighting the essential requirement for strong cybersecurity protocols in healthcare settings.

Is your System Free of Underlying Vulnerabilities?
Find Out Now