Posted On May 17, 2022 Consumer Privacy & Data Breaches
May 17, 2022 – FPS Medical Center (“FPS”) reported a data breach after the company was targeted in a recent cybersecurity attack. As a result of the breach, the full name, Social Security Number, address, date of birth, driver’s license, medical information, and health insurance information of certain individuals may have been compromised. The FPS Medical Center data breach is believed to have impacted as many as 28,024 individuals. On May 6, 2022, FPS Medical Center sent out data breach letters to those individuals whose information was affected by the breach.
The data breach lawyers at Console & Associates, P.C. are going to begin interviewing victims of the breach to determine what damages they sustained and what legal claims may be available to them. If you recently received a NOTICE OF DATA BREACH from FPS Medical Center, contact us at (866) 778-5500 to discuss your legal options, or submit a confidential contact form, for a free case evaluation.
Below is a portion of the letter that FPS Medical Center sent to individuals affected by the data breach:
Dear <<Name 1>>:
FPS Medical Center (“FPS”) writes to notify you of a recent event that may affect the security of some of your information. Although there is no indication that your information has been misused in relation to this event, we are providing you with information about the event, our response to it, and what you may do to better protect your personal information, should you feel it appropriate to do so.
What Happened? On or about March 3, 2022, we learned that certain systems in our computer network had become encrypted with malware deployed by an unknown actor. In response, we launched an investigation to determine the full nature and scope of the event. The investigation determined that our systems were accessible to the unknown actor between February 28, 2022 and March 3, 2022. Although the investigation was unable to determine whether patient information stored in the impacted systems had actually been viewed or taken by the unauthorized actor, we could not rule out the possibility of such activity. Therefore, out of an abundance of caution, a thorough review of the patient information stored within the impacted systems was performed to locate address information for potentially affected individuals in order to provide accurate and complete notices. This review was completed by April 25, 2022.
What Information was Involved? The following types of patient information were present in the impacted systems during the event: full name, address, date of birth, driver’s license, medical information, including treatment and diagnosis information, and health insurance information. For a limited number of individuals, Social Security number may have also been present. However, we currently have no indication any information has been misused as a result of this event.
What We Are Doing. We take this event and the security of information in our care very seriously. Upon learning of this event, we immediately took steps to restore our operations and further secure our systems. As part of our ongoing commitment to the privacy of information in our care, we are reviewing our existing policies and procedures and implementing additional administrative and technical safeguards to further secure the information in our systems and reduce the risk of recurrence. Further, we reported this event to law enforcement and are notifying appropriate governmental regulators, including the U.S. Department of Health and Human Services.
What You Can Do. We encourage you to remain vigilant against incidents of identity theft and fraud by reviewing your account statements, explanations of benefits, and monitoring your credit reports for suspicious activity and to detect errors.
