Data Breaches Announced by Wolfe Clinic, SERV Behavioral Health System and Reiter Affiliated Companies

Wolfe Clinic, P.C located in Iowa lately reported that it was impacted by the Eye Care Leaders’ data breach. The attack on the electronic medical record provider compromised the protected health information (PHI) of 542,776 present and past Wolfe Clinic patients.

Wolfe Clinic utilized the myCare Integrity medical records program, which an unauthorized party accessed on or about December 4, 2021. The attacker erased databases and system settings files. Forensic experts investigated the security breach, however, there was insufficient forensic evidence because of the removal of files. Hence, it cannot be determined if the attackers accessed or obtained the PHI of Wolfe Clinic patients. Potentially compromised information includes names, addresses, dates of birth, Social Security numbers, diagnostic data, and medical insurance data.

When issuing breach notifications, Wolfe Clinic did not receive any identity theft and fraud report associated with the data breach at Eye Care Leaders. Impacted persons were provided one year of free credit monitoring and identity theft protection services.

The data breach at Eye Care Leaders impacted about 40 eye care providers and led to the compromise of the PHI of approximately 3.6 million patients.

Reiter Affiliated Organizations Report Cyberattack in June 2022

Reiter Affiliated Companies, the biggest fresh, multi-berry manufacturer worldwide, lately affirmed that an unauthorized third party acquired access to its system from June 25, 2022 to July 4, 2022. The attack was identified on July 4, 2022, when selected systems became inaccessible. Immediate action was undertaken to protect its systems against continuing unauthorized access. An investigation was started to find out the nature and extent of the attack. It was confirmed by the forensic investigation that files were extracted from its systems at the time of unauthorized access, and those files involved the Health and Wellness Plan enrollment rosters with the names of plan members, birth dates, and Social Security numbers.

Impacted persons were informed by mail and were provided free credit monitoring and identity theft protection services. Reiter Affiliated Companies stated it took steps to enhance security and stop more data breaches later on.

Reiter Affiliated Companies, LLC’s breach report sent to the HHS’ Office for Civil Rights indicated that 45,000 people were affected. The Reiter Affiliated Health and Welfare Plan’s breach report indicated that 45,000 people were affected.

SERV Behavioral Health System Reports Cyberattack in May 2022

SERV Behavioral Health System located in New Jersey lately reported that it suffered a cyberattack whereby the PHI of 8,110 persons was likely exposed. The health system stated it discovered the attack on May 27, 2022, and conducted a forensic investigation that ended on August 4, 2022. SERV mentioned it did not find any proof of access or theft of any patient data during the attack. However, the possibility of data theft cannot be ruled out. The analysis of all files possibly exposed included names, contact details, driver’s license numbers, Social Security numbers, and health data.

The health system already notified the Impacted persons by mail and took steps to enhance security to prevent similar attacks. The Hive ransomware group professed to have launched the attack.