PHI of 57,000 TriValley Primary Care Patients Possibly Exposed in Cyberattack

TriValley Primary Care based in Perkasie, PA has begun informing 57,596 patients concerning a cyberattack that resulted in the potential breach of their personal data and protected health information (PHI).

Suspicious activity was observed in its IT network on October 11, 2021. The healthcare company took action right away to protect its systems and block further unauthorized access. Third-party forensic professionals assisted in the conduct of an investigation to find out the nature and extent of the attack.

The investigation into the incident came to the conclusion on November 4 and though no proof of actual or attempted patient data misuse, unauthorized access and possible theft of protected health information cannot be overlooked. As a result, affected patients were told to stay alert for activities involving identity theft and fraud. The impacted persons were given free credit monitoring services.

An analysis of the files stored on the compromised systems affirmed that these types of patient information were probably exposed: Last and first name, sex, residence address, email address, telephone number, birth date, Social Security number, medical insurance policy/group plan number, group plan agency, claim details, medical background, diagnosis, treatment data, dates of service, laboratory test data, prescription details, medical account number, name of provider, and other facts included in the health records.

TriValley Primary Care stated it is aided by cybersecurity specialists to strengthen its cybersecurity guidelines, processes, and standards to lessen the risk of even more data breaches and the staff members will be given extra cybersecurity instruction.