2 min read

Data Breach: 1.3 Million Broward Health Patients and Staff at Risk of Medical Identity Theft

Alina BÎZGĂ

January 04, 2022

Ad One product to protect all your devices, without slowing them down.
Free 90-day trial
Data Breach: 1.3 Million Broward Health Patients and Staff at Risk of Medical Identity Theft

Over the weekend, Florida's Broward Health hospital system disclosed a data security incident that compromised the personal and medical information of over 1.3 million patients and staff.

According to a statement published on the Broward Health website, the data breach occurred on Oct. 15, when an unknown attacker accessed its network via an undisclosed third-party medical provider.

"An intruder gained entry to the Broward Health network through the office of a third-party medical provider permitted to access the system to provide healthcare services,” the data breach notification reads. “Broward Health discovered the intrusion on October 19, 2021, and promptly contained the incident, notified the FBI and the Department of Justice (DOJ), required a password reset for all employees and engaged an independent cybersecurity firm to conduct an investigation.”

Broward Health did not say in its public statement how many patients and employees were affected, but a data breach submission to the Maine Attorney General's office lists 1,357,879 impacted individuals.

Officials also noted that the delay in notifying affected individuals was necessary, and requested by the Department of Justice (DoJ) to ensure it did not compromise an ongoing police investigation.

So far, the investigation has revealed that the threat actor stole personally identifiable information (PII) and personal health information (PHI), including name, birth date, address, phone number, financial or bank account information, Social Security number, insurance information and account number, driver's license number, email address, medical history, condition, treatment and diagnosis and medical record number.

As a result, Broward Health is offering a 24-month subscription to an identity theft protection service, and said it has implemented two-factor authentication for all users, and "minimum-security requirements for devices not managed by Broward Health Information Technology with access to its network."

Plan your data breach recovery

Personal health information collected or created by healthcare entities are highly desirable in the cybercriminal community. Health information has a very long shelf life. Actually, it never changes, and malicious actors can easily monetize the data to conduct medical identity theft and other fraudulent activity. On top of stealing medical services and benefits from victims, a malicious actor can misuse patient data to conduct targeted extortion and blackmail attacks via email, phone or text.

If you’re a victim of a medical data breach, keep an eye on all your medical bills and review medical records for suspicious entries. You should also be wary of any unsolicited emails or suspicious messages, and immediately notify your healthcare provider of any unrecognized entries. Fraudulent charges or threats should immediately be reported to your local authorities.

Data breaches are a constant reminder that we shouldn’t rely on others to take care of our information. While there is no bulletproof solution to keep your data breach-free, knowing when and how to respond to a data breach can go a long way in preventing financial damages and speeding up your recovery process.

Bitdefender Digital Identity Protection is a privacy-focused service that helps you manage your digital footprint. You get real-time data breach notifications and learn about the information that you knowingly and unknowingly left behind online. The service only uses your email address and phone number to check for possible privacy-related issues and alerts you whenever data associated with your online accounts is leaked.

tags


Author



Right now

Top posts

John Oliver Shows the Dark Side of Data Brokerage on Last Week Tonight

John Oliver Shows the Dark Side of Data Brokerage on Last Week Tonight

April 15, 2022

3 min read
Bitdefender Labs Warns of Phishing Scams Targeting MetaMask Users

Bitdefender Labs Warns of Phishing Scams Targeting MetaMask Users

April 14, 2022

3 min read
Why and how to hide your IP address while traveling

Why and how to hide your IP address while traveling

April 13, 2022

2 min read
How Bitdefender Can Help Restore Your Privacy in the Digital Age

How Bitdefender Can Help Restore Your Privacy in the Digital Age

April 04, 2022

3 min read
How Strong is VPN Encryption?

How Strong is VPN Encryption?

February 28, 2022

3 min read
Top Three Ways Internet Users Unknowingly Help Cybercriminals

Top Three Ways Internet Users Unknowingly Help Cybercriminals

February 25, 2022

4 min read

FOLLOW US ON

SOCIAL MEDIA


You might also like

What is a credit freeze and when should you use it? What is a credit freeze and when should you use it?
Alina BÎZGĂ

May 17, 2022

2 min read
Are you a victim of identity theft? Five common signs that cybercrooks are using your identity Are you a victim of identity theft? Five common signs that cybercrooks are using your identity
Alina BÎZGĂ

May 17, 2022

2 min read
What you need to know about identity theft What you need to know about identity theft
Alina BÎZGĂ

May 17, 2022

2 min read