San Antonio Institute for Women’s Health warns patients personal data compromised in network hack
The Institute for Women’s Health warned patients that hackers may have stolen some of their personal information or credit or debit card data, the physicians’ group said Thursday.
The San Antonio OBGYN practice said a so-called keylogger virus was installed on its network on June 5. The virus was discovered July 6 and the company took action to remove it “from the majority of all network computers and terminal servers by July 11, 2017, resolving it completely by July 13, 2017,” it said in a statement.
The company didn’t disclose how many patients might have been affected.
A keylogger virus “can be the equivalent of digital surveillance, revealing every click and touch,” according to virus protection company McAfee.
“If a patient paid for services with a credit or debit card from June 5, 2017 through July 11, 2017, some of their credit or debit information may have been captured,” the company said. “Other types of information found to be affected generally include the following: names, addresses, dates of birth, Social Security Numbers, scheduling notes, current procedural technology and other billing codes, and any other information that may have been keyed (typed) into the IFWH system during this time period.”
“Patient Portal information was not accessed at any point,” IFWH added.
The company sent letters to patients who could have been affected and is offering them identity theft protection services through ID Experts.
“MyIDCare services include: Twelve months of credit monitoring, a $1,000,000 insurance reimbursement policy, exclusive educational materials and fully managed ID theft recovery services,” the company said.
IFWH said it also notified both the Federal Bureau of Investigation and the Department of Health and Human Services.
“A variety of security measures were in place before this incident, including network filtering and security monitoring, firewalls, antivirus software and password protection,” the doctor’s office said. “After the incident, IFWH implemented additional safeguards to improve data security on its web server infrastructure and reduce the risk of exploitation. IFWH continues to assess its security systems and work with the appropriate law enforcement agencies to prevent future breaches.”
This Article originally appeared on MySanAntonio.Com