Affected information includes patient names, addresses, dates of birth and admission, telephone and fax numbers. E-mail addresses, medical information, medical record numbers, health plan data and beneficiary numbers were also included. Social Security numbers, State License numbers and full face photographic images were included in a few cases as well, the letter stated. Financial information, security codes, and passwords were not part of the exposed information.
California based Silverberg statement letter did not specify how the information appeared online, but simply mentioned that the document scanning device “inadvertently exposed some patient health records to the internet.” The information was immediately taken down upon the exposure discovery, according to the letter.
“We have undertaken an extensive investigation of the matter, including hiring a forensic specialist security firm to assist us in conducting a full investigation of the incident,” Silverberg Surgical and Medical Group explained. “We have taken steps to secure any data that was involved in this incident and we have notified the appropriate state and federal authorities, including the Federal Bureau of Investigation.”
According to the Silverberg. potentially affected individuals will receive complimentary identity monitoring services for one year.
Get your personal as well as office laptops encrypted by Alertsec
Unencrypted laptops present a major risk of data loss. 80% of information theft is due to lost or stolen laptops and other equipment. About 50% of network intrusions are performed with credentials gathered from lost or stolen devices. The penalties for a data breach are severe not only in terms of the monetary fines imposed on the organization, but also the potential loss of trust from customers and suppliers. Encryption software greatly enhances the security of your organization’s data as the information is not compromised if a laptop is lost or stolen.
Alertsec Xpress is the full disk encryption service that delivers a mobile data protection system for all information stored on laptops used throughout your organization.